JacaSTW utworzono 18 sierpnia 2010 utworzono 18 sierpnia 2010 Opcja "Pokaż ukryte pliki i foldery" nie chce się zapisać. Po potwierdzeniu ustawień ukryte pliki się nie pokazują. Do tego system zawiesza się na niektórych aplikacjach, zauważyłem przy gg, google chrome, ale po przeinstalowaniu gg odinstalowaniu chrome'a i zainstalowaniu firefoxa jak narazie nic się nie wiesza. Wcześniej system wieszał się też przy programach do ściągania (uTorrent, JDownloader), dlatego też przestałem ich używać. OTL.Txt [log]OTL logfile created on: 2010-08-18 11:54:29 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 9,82 Gb Free Space | 33,51% Space Free | Partition Type: NTFS Drive D: | 29,29 Gb Total Space | 23,82 Gb Free Space | 81,33% Space Free | Partition Type: NTFS Drive E: | 53,16 Gb Total Space | 50,32 Gb Free Space | 94,65% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: STW-02DBAFED083 Current User Name: M&J Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe PRC - [2010-07-23 04:15:35 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-06-29 06:00:16 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-04-03 11:34:05 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:52 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-05-10 12:08:06 | 016,342,528 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () -- C:\WINDOWS\system32\wintab32.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2003-09-25 14:11:44 | 000,380,928 | ---- | M] (Ralink Technology, Corp.) -- C:\WINDOWS\system32\RaConfig.exe PRC - [2002-07-04 13:49:48 | 000,020,480 | ---- | M] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\system32\zpoint32.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-18 11:28:30 | 000,075,776 | RHS- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Temp\dsoqq0.dll MOD - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe MOD - [2010-07-27 08:30:33 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-06-24 14:12:35 | 000,669,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-09-04 23:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:51:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2008-04-14 22:51:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:18 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007-11-06 22:22:26 | 000,092,792 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\wintab32.exe -- (Wintab32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - File not found [Kernel | On_Demand | Stopped] -- F:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\cpu.sys -- (cpu) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\TBPANEL.SYS -- (Cardex) DRV - [2010-07-26 23:34:31 | 000,020,992 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\Temporary\cpu.sys -- (cpudriver) DRV - [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\SVKP.sys -- (SVKP) DRV - [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2009-04-03 11:34:05 | 006,280,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007-11-06 22:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2007-05-10 12:28:08 | 004,419,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-04-14 10:28:00 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2006-07-01 23:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-05-02 22:35:58 | 000,023,552 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w2acehid.sys -- (W2acehid) DRV - [2005-05-01 02:19:48 | 000,012,800 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wtcls2k.sys -- (Wtcls2k) DRV - [2003-10-08 13:14:38 | 000,051,712 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RT2400.sys -- (RT2400) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2405280 IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.update: false FF - prefs.js..browser.startup.homepage: "http://www.google.com" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-18 07:54:44 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-18 07:54:26 | 000,000,000 | ---D | M] [2010-08-18 07:55:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Extensions [2010-08-18 08:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions [2010-08-18 08:38:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{48e23fba-bb14-4745-b768-382150cd83fb} [2010-08-18 08:30:28 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-08-18 07:54:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found O4 - HKLM..\Run: [Acecad.Wtxpload] C:\WINDOWS\Acecad\Wtxpload.exe (GATI) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKLM..\Run: [ZPOINT32] C:\WINDOWS\system32\zpoint32.exe (ACE CAD Enterprise Co., Ltd.) O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe File not found O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [dso32] C:\Documents and Settings\M&J\Ustawienia lokalne\Temp\dsoqq.exe () O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk = C:\WINDOWS\system32\RaConfig.exe (Ralink Technology, Corp.) O4 - Startup: C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-08-18 11:54:22 | 000,000,059 | RHS- | M] () - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-08-18 11:54:22 | 000,000,059 | RHS- | M] () - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-08-18 11:54:22 | 000,000,059 | RHS- | M] () - E:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\AutoRun\command - "" = H:\cgaqyi.exe -- File not found O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\open\Command - "" = H:\cgaqyi.exe -- File not found O33 - MountPoints2\{c350bdbd-8452-11df-8a75-0080c6e85048}\Shell\AutoRun\command - "" = H:\9rfpp.exe -- File not found O33 - MountPoints2\{c350bdbd-8452-11df-8a75-0080c6e85048}\Shell\open\Command - "" = H:\9rfpp.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: nm - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation) SafeBootNet: nm.sys - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation) SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-18 10:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Reklama gówno i śmieci [2010-08-18 08:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-18 07:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie [2010-08-18 07:56:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Pobieranie [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla [2010-08-18 07:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-08-18 07:53:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Nowy folder [2010-08-18 07:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2010-08-18 07:10:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-08-17 20:50:26 | 000,020,480 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\zpoint32.exe [2010-08-17 20:50:25 | 000,061,440 | ---- | C] (GATI) -- C:\WINDOWS\System32\wintab32.dll [2010-08-17 20:50:25 | 000,028,992 | ---- | C] (GATI ) -- C:\WINDOWS\System32\wintab.dll [2010-08-17 20:50:25 | 000,012,800 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\wtcls2k.sys [2010-08-17 20:50:24 | 000,987,136 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\lcs.cpl [2010-08-17 20:50:24 | 000,023,552 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\w2acehid.sys [2010-08-17 20:50:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Acecad [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Help [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Help [2010-08-12 11:03:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-08-12 11:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-08-12 10:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-12 10:54:12 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2010-08-12 10:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2010-08-12 10:53:53 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2010-08-12 10:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-09 18:42:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\cd 2 instrumntale [2010-08-09 18:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\CD2 [2010-08-09 00:29:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\aukcja [2010-08-06 14:38:10 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\rewire.dll [2010-08-06 14:38:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Image-Line [2010-08-06 14:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\VstPlugins [2010-08-06 14:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\Outsim [2010-08-06 14:30:52 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line [2010-07-28 21:30:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-07-26 23:34:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-07-26 23:34:31 | 000,000,000 | ---D | C] -- C:\Program Files\Temporary [2010-07-26 23:34:30 | 000,000,000 | ---D | C] -- C:\Program Files\Temp [2010-07-26 23:24:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-26 23:23:16 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap [2010-07-26 23:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\Conceiva [2010-07-25 04:51:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Media Player Classic [2010-07-25 04:50:26 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-07-25 04:50:25 | 000,630,784 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp7vfw.dll [2010-07-25 04:50:25 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-07-25 04:50:25 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-07-25 04:50:25 | 000,039,936 | ---- | C] (Disappearing Inc.) -- C:\WINDOWS\System32\huffyuv.dll [2010-07-25 04:50:21 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-07-25 04:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\MarBit [2010-07-18 11:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-07-17 09:35:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-07-17 09:35:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-07-16 16:50:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-07-16 08:31:29 | 000,000,000 | ---D | C] -- C:\Allok3GPFolder [2010-07-16 08:19:12 | 000,002,368 | ---- | C] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-16 07:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\.gstreamer-0.10 [2010-07-14 15:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-07-14 15:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-07-13 13:35:52 | 017,611,767 | ---- | C] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 12:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\kaneandlynch [2010-07-13 10:59:52 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-07-13 10:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-07-13 10:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010-07-10 18:57:10 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010-07-10 18:50:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-07-10 02:50:16 | 000,470,528 | ---- | C] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:09:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-09 08:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-07-09 08:20:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Winamp [2010-07-09 07:32:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Nowy folder [2010-07-06 13:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-07-06 13:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Sun [2010-07-03 11:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Updater [2010-07-03 11:44:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe Systems [2010-07-03 11:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Adobe [2010-07-03 11:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Adobe PDF [2010-07-03 11:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-07-03 11:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-07-02 11:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft [2010-07-02 10:50:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Identities [2010-07-02 10:45:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\WinRAR [2010-07-02 10:45:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-07-02 10:38:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit [2010-06-30 10:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\cache [2010-06-30 10:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-06-30 10:47:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-06-29 23:30:11 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-06-29 23:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-06-29 23:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-06-29 23:30:06 | 000,000,000 | R--D | C] -- C:\Program Files [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-06-29 23:29:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-06-29 23:27:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-06-29 23:27:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-06-29 23:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-06-29 23:27:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-06-29 23:21:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-06-29 23:21:11 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-06-29 23:21:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-06-29 23:21:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-06-29 22:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\gothic3 [2010-06-29 22:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Downloads [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Macromedia [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Adobe [2010-06-29 22:28:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Temp [2010-06-29 22:27:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Google [2010-06-29 22:27:42 | 000,000,000 | ---D | C] -- C:\Program Files\Gothic III [2010-06-29 22:26:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\UserData [2010-06-29 22:22:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-06-29 22:16:41 | 000,380,928 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\RaConfig.exe [2010-06-29 22:16:41 | 000,051,712 | ---- | C] (Ralink Technology Inc.) -- C:\WINDOWS\System32\drivers\RT2400.sys [2010-06-29 22:16:35 | 000,000,000 | ---D | C] -- C:\Program Files\RALINK [2010-06-29 22:13:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje wideo [2010-06-29 22:11:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-06-29 22:08:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-06-29 22:08:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-06-29 22:05:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-06-29 22:04:58 | 000,000,000 | ---D | C] -- C:\Program Files\EXPERTool [2010-06-29 22:02:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-06-29 22:01:48 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-06-29 22:01:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-06-29 22:01:46 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-06-29 22:00:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-06-29 21:58:29 | 000,094,592 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [2010-06-29 21:57:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\InstallShield [2010-06-29 21:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010-06-29 21:56:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-06-29 21:56:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-06-29 21:52:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Identities [2010-06-29 21:52:16 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje obrazy [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moja muzyka [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Microsoft [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Cookies [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\SendTo [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Recent [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Dane aplikacji [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Ulubione [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Menu Start [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Szablony [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\PrintHood [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\NetHood [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-06-29 21:50:35 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-06-29 21:50:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-06-29 21:50:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-06-29 21:50:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:12 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-06-29 21:48:41 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-06-29 21:47:17 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-06-29 21:45:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-06-29 21:45:11 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-06-29 21:45:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-06-29 21:45:02 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-06-29 21:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-06-29 21:44:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-06-29 21:44:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-06-29 21:44:16 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-06-29 21:44:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-06-29 21:44:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-06-29 21:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-06-29 21:44:01 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-06-29 21:43:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-06-29 21:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-06-29 21:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-06-29 21:43:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-06-29 21:43:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-06-29 21:43:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-06-29 21:42:41 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-06-29 21:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-06-29 21:42:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-06-29 21:42:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-06-29 21:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-06-29 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-06-29 21:41:43 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-06-29 21:41:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-06-29 21:41:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-06-29 21:41:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-06-29 21:41:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-18 11:56:02 | 000,000,059 | RHS- | M] () -- C:\autorun.inf [2010-08-18 11:28:27 | 000,215,383 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-08-18 11:28:21 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010-08-18 11:28:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-18 11:28:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-18 11:27:39 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-08-18 10:23:24 | 001,010,260 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-18 07:20:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-08-18 07:20:11 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-08-18 07:20:11 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-08-18 06:53:05 | 000,000,745 | ---- | M] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 08:59:13 | 000,008,628 | -H-- | M] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:04:42 | 000,764,054 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-12 11:04:42 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-08-12 11:04:42 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-08-12 11:04:42 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-08-12 11:04:42 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-08-12 11:03:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-12 08:31:35 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-12 07:46:34 | 000,566,304 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-12 07:45:12 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-08-10 17:51:49 | 000,235,808 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-08-09 18:16:46 | 000,985,617 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-06 14:38:09 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:48:30 | 001,846,196 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-06 00:20:40 | 005,890,750 | -H-- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-05 21:48:32 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-01 15:30:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | M] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:02 | 008,038,134 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:25:35 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:45:38 | 031,424,512 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-14 10:00:00 | 000,108,032 | ---- | M] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-14 10:00:00 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.ini [2010-07-13 18:49:18 | 000,000,502 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 13:36:10 | 017,611,767 | ---- | M] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 11:00:00 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 01:29:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:50:19 | 000,470,528 | ---- | M] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:12:56 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | M] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-06-29 23:33:36 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:04 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-06-29 22:37:57 | 000,001,557 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:11:10 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:10:16 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 22:07:34 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\BOOT.BKK [2010-06-29 21:50:15 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 21:46:17 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:16 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-06-29 21:46:02 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:42:49 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:42:38 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-06-29 21:42:38 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-18 10:22:52 | 001,010,260 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-17 20:50:28 | 000,000,745 | ---- | C] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 20:50:25 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\wintab32.exe [2010-08-17 08:59:09 | 000,008,628 | -H-- | C] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:03:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-09 18:15:51 | 000,985,617 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-08 23:12:46 | 000,114,688 | RHS- | C] () -- C:\cgaqyi.exe [2010-08-08 23:12:46 | 000,000,059 | RHS- | C] () -- C:\autorun.inf [2010-08-06 14:38:09 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:46:55 | 001,846,196 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-01 15:30:41 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | C] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:01 | 008,038,134 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:50:27 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-07-25 04:50:26 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-07-25 04:50:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-07-25 04:50:25 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-07-25 04:50:25 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-07-25 04:50:25 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-25 04:50:25 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-07-25 04:25:35 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:34:50 | 031,424,512 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-18 11:09:53 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-07-13 18:49:18 | 000,000,502 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 11:00:00 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 10:59:59 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 01:29:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:12:56 | 000,000,000 | R--- | C] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | C] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-07-02 11:29:27 | 000,000,223 | RHS- | C] () -- C:\BOOT.BKK [2010-07-02 11:19:17 | 000,000,244 | ---- | C] () -- C:\WINDOWS\System32\dllcache\uxtheme_patch.bak [2010-06-30 16:33:14 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-06-29 23:33:36 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:15 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-06-29 23:30:08 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-06-29 23:30:08 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-06-29 23:30:07 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-06-29 23:30:07 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-06-29 23:29:42 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-06-29 23:27:51 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-06-29 23:27:51 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-06-29 23:27:51 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-06-29 23:27:51 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-06-29 23:27:51 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-06-29 23:27:51 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-06-29 23:27:51 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-06-29 23:27:51 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-06-29 23:27:51 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-06-29 23:27:51 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-06-29 23:27:51 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-06-29 23:27:51 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-06-29 23:27:51 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-06-29 23:27:50 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-06-29 23:27:50 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-06-29 23:27:50 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-06-29 23:27:49 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-06-29 23:27:04 | 000,566,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-06-29 23:26:23 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2010-06-29 23:26:19 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 22:37:57 | 000,001,557 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:16:41 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\install.dll [2010-06-29 22:16:41 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\WRLSetup.exe [2010-06-29 22:16:41 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\SmartInstallCfg2.dll [2010-06-29 22:16:41 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\CCS24.exe [2010-06-29 22:16:41 | 000,010,227 | ---- | C] () -- C:\WINDOWS\System32\RaConfig.hlp [2010-06-29 22:11:10 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:08:50 | 000,215,383 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-06-29 22:08:00 | 000,019,054 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-06-29 22:07:00 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 22:02:28 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-06-29 21:57:25 | 000,001,864 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010-06-29 21:52:02 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 21:52:01 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\M&J\ntuser.dat.LOG [2010-06-29 21:52:00 | 003,407,872 | -H-- | C] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-06-29 21:50:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-06-29 21:49:18 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-06-29 21:48:33 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-06-29 21:48:12 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-06-29 21:48:11 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-06-29 21:48:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-06-29 21:48:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-06-29 21:47:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-06-29 21:47:44 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-06-29 21:47:39 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-06-29 21:47:33 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-06-29 21:47:20 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-06-29 21:47:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-06-29 21:47:15 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-06-29 21:47:15 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-06-29 21:47:14 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-06-29 21:47:11 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-06-29 21:47:11 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-06-29 21:47:11 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-06-29 21:47:11 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-06-29 21:47:10 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-06-29 21:47:10 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-06-29 21:47:10 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-06-29 21:47:08 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-06-29 21:47:08 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-06-29 21:47:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-06-29 21:47:08 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-06-29 21:47:07 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-06-29 21:47:07 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-06-29 21:46:17 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:12 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-06-29 21:46:12 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-06-29 21:46:12 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:44:49 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-06-29 21:44:22 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-06-29 21:43:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-06-29 21:42:50 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:41:56 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-06-29 21:41:56 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-06-29 21:41:56 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-06-29 21:41:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-06-29 21:41:56 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-06-29 21:41:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-06-29 21:41:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-06-29 21:41:56 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-06-29 21:41:55 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-06-29 21:41:55 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-06-29 21:41:55 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-06-29 21:41:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-06-29 21:41:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-06-29 21:41:55 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-06-29 21:41:54 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-06-29 21:41:54 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-06-29 21:41:54 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-06-29 21:41:54 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-06-29 21:41:54 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-06-29 21:41:52 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-06-29 21:41:52 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-06-29 21:41:50 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-06-29 21:41:44 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-04-03 11:34:05 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-04-03 11:34:05 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-04-03 11:34:05 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-04-03 11:34:05 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-04-03 11:34:05 | 000,007,244 | ---- | C] () -- C:\WINDOWS\cadx2.ini [2008-10-07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-11-06 22:19:28 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [color=#E56717]========== LOP Check ==========[/color] [2010-07-13 10:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-06-30 10:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-12 10:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-12 10:55:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-18 10:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-12 11:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-07-26 23:24:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-13 11:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-07-09 06:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-07-16 07:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:51:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-08-12 11:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-07-10 02:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-26 23:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-08-18 11:28:21 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-18 11:56:27 | 000,000,059 | RHS- | M] () -- C:\autorun.inf [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\BOOT.BKK [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-05-30 21:21:04 | 000,114,688 | RHS- | M] () -- C:\cgaqyi.exe [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-07-10 02:12:56 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [2010-08-18 08:31:09 | 000,007,528 | ---- | M] () -- C:\mksbasel.cpp.log [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-08-18 11:28:09 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] Extras.Txt (bo może będzie potrzebne) [log]OTL Extras logfile created on: 2010-08-18 11:54:29 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 9,82 Gb Free Space | 33,51% Space Free | Partition Type: NTFS Drive D: | 29,29 Gb Total Space | 23,82 Gb Free Space | 81,33% Space Free | Partition Type: NTFS Drive E: | 53,16 Gb Total Space | 50,32 Gb Free Space | 94,65% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: STW-02DBAFED083 Current User Name: M&J Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "E:\Kane and Lynch\kaneandlynch.exe" = E:\Kane and Lynch\kaneandlynch.exe:*:Enabled:Kane & Lynch - Dead Men -- File not found "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- File not found "D:\Soldat\Soldat.exe" = D:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl -- (Michal Marcinkowski) "C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater -- File not found "C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process -- File not found [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution "{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer "{9198A23F-C33C-4907-9715-96DE7D4AF27D}" = RT2400 Wireless LAN Card "{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0 "{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX "{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Acecad" = USB Tablet Driver "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2 "ALLPlayer V3.2_is1" = ALLPlayer V3.X "FL Studio 9" = FL Studio 9 "Gadu-Gadu 10" = Gadu-Gadu 10 "KLiteCodecPack_is1" = K-Lite Codec Pack 6.2.0 (Full) "Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8) "NVIDIA Drivers" = NVIDIA Drivers "Sawer" = Sawer "SkanerOnline" = Skaner on-line mks_vir "Soldat_is1" = Soldat 1.5.0 "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 "Winamp" = Winamp "WinPcapInst" = WinPcap 4.0.2 "WinRAR archiver" = Archiwizator WinRAR "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Winamp Detect" = Winamp Detector Plug-in [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-07-28 12:53:48 | Computer Name = STW-02DBAFED083 | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2010-07-28 12:53:48 | Computer Name = STW-02DBAFED083 | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2010-07-30 09:33:05 | Computer Name = STW-02DBAFED083 | Source = Google Update | ID = 20 Description = Error - 2010-08-12 04:53:14 | Computer Name = STW-02DBAFED083 | Source = MsiInstaller | ID = 11931 Description = Product: MSXML 6.0 Parser -- Error 1931. The Windows Installer service cannot update the system file C:\WINDOWS\system32\msxml6r.dll because the file is protected by Windows. You may need to update your operating system for this program to work correctly. Package version: 6.0.3883.0, OS Protected version: 6.0.3883.0 Error - 2010-08-12 05:02:48 | Computer Name = STW-02DBAFED083 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca winamp.exe, wersja 5.5.8.2975, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2010-08-16 11:33:14 | Computer Name = STW-02DBAFED083 | Source = Google Update | ID = 20 Description = Error - 2010-08-18 01:00:18 | Computer Name = STW-02DBAFED083 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.5512, moduł powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x018a18ca. Error - 2010-08-18 01:33:14 | Computer Name = STW-02DBAFED083 | Source = Google Update | ID = 20 Description = [ System Events ] Error - 2010-08-18 02:37:08 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Generate Activation Context nie powiodło się dla C:\Program Files\Gadu-Gadu 10\gg.exe. Odpowiedni komunikat o błędzie: Operacja ukończona pomyślnie. . Error - 2010-08-18 02:37:10 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842784 Description = Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT; ostatni błąd: Odnośny zestaw nie jest zainstalowany w tym systemie. Error - 2010-08-18 02:37:10 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Resolve Partial Assembly nie powiodło się dla Microsoft.VC80.CRT. Odpowiedni komunikat o błędzie: Odnośny zestaw nie jest zainstalowany w tym systemie. . Error - 2010-08-18 02:37:10 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Generate Activation Context nie powiodło się dla C:\Program Files\Gadu-Gadu 10\gg.exe. Odpowiedni komunikat o błędzie: Operacja ukończona pomyślnie. . Error - 2010-08-18 02:58:32 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842784 Description = Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT; ostatni błąd: Odnośny zestaw nie jest zainstalowany w tym systemie. Error - 2010-08-18 02:58:32 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Resolve Partial Assembly nie powiodło się dla Microsoft.VC80.CRT. Odpowiedni komunikat o błędzie: Odnośny zestaw nie jest zainstalowany w tym systemie. . Error - 2010-08-18 02:58:32 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Generate Activation Context nie powiodło się dla C:\Program Files\Gadu-Gadu 10\gg.exe. Odpowiedni komunikat o błędzie: Operacja ukończona pomyślnie. . Error - 2010-08-18 02:59:48 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842784 Description = Nie można odnaleźć zestawu zależnego Microsoft.VC80.CRT; ostatni błąd: Odnośny zestaw nie jest zainstalowany w tym systemie. Error - 2010-08-18 02:59:48 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Resolve Partial Assembly nie powiodło się dla Microsoft.VC80.CRT. Odpowiedni komunikat o błędzie: Odnośny zestaw nie jest zainstalowany w tym systemie. . Error - 2010-08-18 02:59:48 | Computer Name = STW-02DBAFED083 | Source = SideBySide | ID = 16842811 Description = Generate Activation Context nie powiodło się dla C:\DOCUME~1\M&J\USTAWI~1\Temp\nse29.tmp\CloseGG.dll. Odpowiedni komunikat o błędzie: Operacja ukończona pomyślnie. . < End of report > [/log]
Sohei komentarz 18 sierpnia 2010 komentarz 18 sierpnia 2010 podłączasz wszystkie pamięci przenośne do komputera i używasz narzędzia flash desinfector. Potem dajesz nowego loga z OTL
JacaSTW komentarz 18 sierpnia 2010 Autor komentarz 18 sierpnia 2010 (edytowane) OTL [log]OTL logfile created on: 2010-08-18 13:46:20 - Run 2 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 71,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 9,78 Gb Free Space | 33,40% Space Free | Partition Type: NTFS Drive D: | 29,29 Gb Total Space | 23,82 Gb Free Space | 81,33% Space Free | Partition Type: NTFS Drive E: | 53,16 Gb Total Space | 50,32 Gb Free Space | 94,65% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded Drive H: | 1,84 Gb Total Space | 0,54 Gb Free Space | 29,44% Space Free | Partition Type: FAT I: Drive not present or media not loaded Drive J: | 3,74 Gb Total Space | 2,53 Gb Free Space | 67,63% Space Free | Partition Type: FAT32 Computer Name: STW-02DBAFED083 Current User Name: M&J Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe PRC - [2010-07-23 04:15:35 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-07-23 04:15:35 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-06-29 06:01:20 | 001,592,672 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winamp.exe PRC - [2010-06-29 06:00:16 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-04-03 11:34:05 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:52 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-05-10 12:08:06 | 016,342,528 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () -- C:\WINDOWS\system32\wintab32.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2003-09-25 14:11:44 | 000,380,928 | ---- | M] (Ralink Technology, Corp.) -- C:\WINDOWS\system32\RaConfig.exe PRC - [2002-07-04 13:49:48 | 000,020,480 | ---- | M] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\system32\zpoint32.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe MOD - [2010-07-27 08:30:33 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007-11-06 22:22:26 | 000,092,792 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\wintab32.exe -- (Wintab32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - File not found [Kernel | On_Demand | Stopped] -- F:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\cpu.sys -- (cpu) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\TBPANEL.SYS -- (Cardex) DRV - [2010-07-26 23:34:31 | 000,020,992 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\Temporary\cpu.sys -- (cpudriver) DRV - [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\SVKP.sys -- (SVKP) DRV - [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2009-04-03 11:34:05 | 006,280,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007-11-06 22:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2007-05-10 12:28:08 | 004,419,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-04-14 10:28:00 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2006-07-01 23:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-05-02 22:35:58 | 000,023,552 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w2acehid.sys -- (W2acehid) DRV - [2005-05-01 02:19:48 | 000,012,800 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wtcls2k.sys -- (Wtcls2k) DRV - [2003-10-08 13:14:38 | 000,051,712 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RT2400.sys -- (RT2400) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2405280 IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.update: false FF - prefs.js..browser.startup.homepage: "http://www.google.com" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-18 07:54:44 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-18 07:54:26 | 000,000,000 | ---D | M] [2010-08-18 07:55:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Extensions [2010-08-18 08:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions [2010-08-18 08:38:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{48e23fba-bb14-4745-b768-382150cd83fb} [2010-08-18 08:30:28 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-08-18 07:54:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found O4 - HKLM..\Run: [Acecad.Wtxpload] C:\WINDOWS\Acecad\Wtxpload.exe (GATI) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKLM..\Run: [ZPOINT32] C:\WINDOWS\system32\zpoint32.exe (ACE CAD Enterprise Co., Ltd.) O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe File not found O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [dso32] C:\Documents and Settings\M&J\Ustawienia lokalne\Temp\dsoqq.exe () O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk = C:\WINDOWS\system32\RaConfig.exe (Ralink Technology, Corp.) O4 - Startup: C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-08-18 13:31:27 | 000,000,059 | RHS- | M] () - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-08-18 13:31:27 | 000,000,059 | RHS- | M] () - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-08-18 13:31:27 | 000,000,059 | RHS- | M] () - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-08-18 13:44:28 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ FAT ] O32 - AutoRun File - [2010-08-18 09:12:48 | 000,000,059 | RHS- | M] () - J:\autorun.inf -- [ FAT32 ] O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\AutoRun\command - "" = I:\cgaqyi.exe -- File not found O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\open\Command - "" = I:\cgaqyi.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-18 10:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Reklama gówno i śmieci [2010-08-18 08:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-18 07:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie [2010-08-18 07:56:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Pobieranie [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla [2010-08-18 07:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-08-18 07:53:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Nowy folder [2010-08-18 07:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2010-08-18 07:10:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-08-17 20:50:26 | 000,020,480 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\zpoint32.exe [2010-08-17 20:50:25 | 000,061,440 | ---- | C] (GATI) -- C:\WINDOWS\System32\wintab32.dll [2010-08-17 20:50:25 | 000,028,992 | ---- | C] (GATI ) -- C:\WINDOWS\System32\wintab.dll [2010-08-17 20:50:25 | 000,012,800 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\wtcls2k.sys [2010-08-17 20:50:24 | 000,987,136 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\lcs.cpl [2010-08-17 20:50:24 | 000,023,552 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\w2acehid.sys [2010-08-17 20:50:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Acecad [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Help [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Help [2010-08-12 11:03:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-08-12 11:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-08-12 10:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-12 10:54:12 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2010-08-12 10:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2010-08-12 10:53:53 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2010-08-12 10:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-09 18:42:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\cd 2 instrumntale [2010-08-09 18:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\CD2 [2010-08-09 00:29:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\aukcja [2010-08-06 14:38:10 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\rewire.dll [2010-08-06 14:38:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Image-Line [2010-08-06 14:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\VstPlugins [2010-08-06 14:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\Outsim [2010-08-06 14:30:52 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line [2010-07-28 21:30:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-07-26 23:34:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-07-26 23:34:31 | 000,000,000 | ---D | C] -- C:\Program Files\Temporary [2010-07-26 23:34:30 | 000,000,000 | ---D | C] -- C:\Program Files\Temp [2010-07-26 23:24:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-26 23:23:16 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap [2010-07-26 23:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\Conceiva [2010-07-25 04:51:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Media Player Classic [2010-07-25 04:50:26 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-07-25 04:50:25 | 000,630,784 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp7vfw.dll [2010-07-25 04:50:25 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-07-25 04:50:25 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-07-25 04:50:25 | 000,039,936 | ---- | C] (Disappearing Inc.) -- C:\WINDOWS\System32\huffyuv.dll [2010-07-25 04:50:21 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-07-25 04:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\MarBit [2010-07-18 11:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-07-17 09:35:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-07-17 09:35:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-07-16 16:50:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-07-16 08:31:29 | 000,000,000 | ---D | C] -- C:\Allok3GPFolder [2010-07-16 08:19:12 | 000,002,368 | ---- | C] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-16 07:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\.gstreamer-0.10 [2010-07-14 15:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-07-14 15:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-07-13 13:35:52 | 017,611,767 | ---- | C] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 12:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\kaneandlynch [2010-07-13 10:59:52 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-07-13 10:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-07-13 10:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010-07-10 18:57:10 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010-07-10 18:50:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-07-10 02:50:16 | 000,470,528 | ---- | C] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:09:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-09 08:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-07-09 08:20:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Winamp [2010-07-09 07:32:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Nowy folder [2010-07-06 13:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-07-06 13:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Sun [2010-07-03 11:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Updater [2010-07-03 11:44:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe Systems [2010-07-03 11:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Adobe [2010-07-03 11:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Adobe PDF [2010-07-03 11:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-07-03 11:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-07-02 11:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft [2010-07-02 10:50:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Identities [2010-07-02 10:45:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\WinRAR [2010-07-02 10:45:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-07-02 10:38:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit [2010-06-30 10:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\cache [2010-06-30 10:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-06-30 10:47:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-06-29 23:30:11 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-06-29 23:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-06-29 23:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-06-29 23:30:06 | 000,000,000 | R--D | C] -- C:\Program Files [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-06-29 23:29:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-06-29 23:27:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-06-29 23:27:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-06-29 23:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-06-29 23:27:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-06-29 23:21:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-06-29 23:21:11 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-06-29 23:21:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-06-29 23:21:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-06-29 22:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\gothic3 [2010-06-29 22:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Downloads [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Macromedia [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Adobe [2010-06-29 22:28:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Temp [2010-06-29 22:27:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Google [2010-06-29 22:27:42 | 000,000,000 | ---D | C] -- C:\Program Files\Gothic III [2010-06-29 22:22:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-06-29 22:16:41 | 000,380,928 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\RaConfig.exe [2010-06-29 22:16:41 | 000,051,712 | ---- | C] (Ralink Technology Inc.) -- C:\WINDOWS\System32\drivers\RT2400.sys [2010-06-29 22:16:35 | 000,000,000 | ---D | C] -- C:\Program Files\RALINK [2010-06-29 22:13:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje wideo [2010-06-29 22:11:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-06-29 22:08:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-06-29 22:08:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-06-29 22:05:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-06-29 22:04:58 | 000,000,000 | ---D | C] -- C:\Program Files\EXPERTool [2010-06-29 22:02:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-06-29 22:01:48 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-06-29 22:01:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-06-29 22:01:46 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-06-29 22:00:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-06-29 21:58:29 | 000,094,592 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [2010-06-29 21:57:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\InstallShield [2010-06-29 21:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010-06-29 21:56:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-06-29 21:56:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-06-29 21:52:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Identities [2010-06-29 21:52:16 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje obrazy [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moja muzyka [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Microsoft [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Cookies [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\SendTo [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Recent [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Dane aplikacji [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Ulubione [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Menu Start [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Szablony [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\PrintHood [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\NetHood [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-06-29 21:50:35 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-06-29 21:50:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-06-29 21:50:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-06-29 21:50:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:12 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-06-29 21:48:41 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-06-29 21:47:17 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-06-29 21:45:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-06-29 21:45:11 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-06-29 21:45:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-06-29 21:45:02 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-06-29 21:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-06-29 21:44:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-06-29 21:44:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-06-29 21:44:16 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-06-29 21:44:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-06-29 21:44:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-06-29 21:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-06-29 21:44:01 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-06-29 21:43:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-06-29 21:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-06-29 21:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-06-29 21:43:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-06-29 21:43:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-06-29 21:43:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-06-29 21:42:41 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-06-29 21:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-06-29 21:42:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-06-29 21:42:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-06-29 21:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-06-29 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-06-29 21:41:43 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-06-29 21:41:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-06-29 21:41:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-06-29 21:41:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-06-29 21:41:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-18 13:31:27 | 000,000,059 | RHS- | M] () -- C:\autorun.inf [2010-08-18 11:28:27 | 000,215,383 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-08-18 11:28:21 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010-08-18 11:28:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-18 11:28:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-18 11:27:39 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-08-18 10:23:24 | 001,010,260 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-18 07:20:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-08-18 07:20:11 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-08-18 07:20:11 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-08-18 06:53:05 | 000,000,745 | ---- | M] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 08:59:13 | 000,008,628 | -H-- | M] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:04:42 | 000,764,054 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-12 11:04:42 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-08-12 11:04:42 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-08-12 11:04:42 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-08-12 11:04:42 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-08-12 11:03:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-12 08:31:35 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-12 07:46:34 | 000,566,304 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-12 07:45:12 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-08-10 17:51:49 | 000,235,808 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-08-09 18:16:46 | 000,985,617 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-06 14:38:09 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:48:30 | 001,846,196 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-06 00:20:40 | 005,890,750 | -H-- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-05 21:48:32 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-01 15:30:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | M] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:02 | 008,038,134 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:25:35 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:45:38 | 031,424,512 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-14 10:00:00 | 000,108,032 | ---- | M] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-14 10:00:00 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.ini [2010-07-13 18:49:18 | 000,000,502 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 13:36:10 | 017,611,767 | ---- | M] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 11:00:00 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 01:29:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:50:19 | 000,470,528 | ---- | M] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:12:56 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | M] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-06-29 23:33:36 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:04 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-06-29 22:37:57 | 000,001,557 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:11:10 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:10:16 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 22:07:34 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\BOOT.BKK [2010-06-29 21:50:15 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 21:46:17 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:16 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-06-29 21:46:02 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:42:49 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:42:38 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-06-29 21:42:38 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-18 10:22:52 | 001,010,260 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-17 20:50:28 | 000,000,745 | ---- | C] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 20:50:25 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\wintab32.exe [2010-08-17 08:59:09 | 000,008,628 | -H-- | C] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:03:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-09 18:15:51 | 000,985,617 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-08 23:12:46 | 000,114,688 | RHS- | C] () -- C:\cgaqyi.exe [2010-08-08 23:12:46 | 000,000,059 | RHS- | C] () -- C:\autorun.inf [2010-08-06 14:38:09 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:46:55 | 001,846,196 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-01 15:30:41 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | C] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:01 | 008,038,134 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:50:27 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-07-25 04:50:26 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-07-25 04:50:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-07-25 04:50:25 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-07-25 04:50:25 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-07-25 04:50:25 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-25 04:50:25 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-07-25 04:25:35 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:34:50 | 031,424,512 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-18 11:09:53 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-07-13 18:49:18 | 000,000,502 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 11:00:00 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 10:59:59 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 01:29:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:12:56 | 000,000,000 | R--- | C] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | C] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-07-02 11:29:27 | 000,000,223 | RHS- | C] () -- C:\BOOT.BKK [2010-07-02 11:19:17 | 000,000,244 | ---- | C] () -- C:\WINDOWS\System32\dllcache\uxtheme_patch.bak [2010-06-30 16:33:14 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-06-29 23:33:36 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:15 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-06-29 23:30:08 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-06-29 23:30:08 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-06-29 23:30:07 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-06-29 23:30:07 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-06-29 23:29:42 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-06-29 23:27:51 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-06-29 23:27:51 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-06-29 23:27:51 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-06-29 23:27:51 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-06-29 23:27:51 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-06-29 23:27:51 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-06-29 23:27:51 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-06-29 23:27:51 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-06-29 23:27:51 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-06-29 23:27:51 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-06-29 23:27:51 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-06-29 23:27:51 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-06-29 23:27:51 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-06-29 23:27:50 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-06-29 23:27:50 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-06-29 23:27:50 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-06-29 23:27:49 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-06-29 23:27:04 | 000,566,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-06-29 23:26:23 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2010-06-29 23:26:19 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 22:37:57 | 000,001,557 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:16:41 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\install.dll [2010-06-29 22:16:41 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\WRLSetup.exe [2010-06-29 22:16:41 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\SmartInstallCfg2.dll [2010-06-29 22:16:41 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\CCS24.exe [2010-06-29 22:16:41 | 000,010,227 | ---- | C] () -- C:\WINDOWS\System32\RaConfig.hlp [2010-06-29 22:11:10 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:08:50 | 000,215,383 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-06-29 22:08:00 | 000,019,054 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-06-29 22:07:00 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 22:02:28 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-06-29 21:57:25 | 000,001,864 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010-06-29 21:52:02 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 21:52:01 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\M&J\ntuser.dat.LOG [2010-06-29 21:52:00 | 003,407,872 | -H-- | C] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-06-29 21:50:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-06-29 21:49:18 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-06-29 21:48:33 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-06-29 21:48:12 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-06-29 21:48:11 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-06-29 21:48:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-06-29 21:48:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-06-29 21:47:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-06-29 21:47:44 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-06-29 21:47:39 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-06-29 21:47:33 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-06-29 21:47:20 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-06-29 21:47:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-06-29 21:47:15 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-06-29 21:47:15 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-06-29 21:47:14 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-06-29 21:47:11 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-06-29 21:47:11 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-06-29 21:47:11 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-06-29 21:47:11 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-06-29 21:47:10 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-06-29 21:47:10 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-06-29 21:47:10 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-06-29 21:47:08 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-06-29 21:47:08 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-06-29 21:47:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-06-29 21:47:08 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-06-29 21:47:07 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-06-29 21:47:07 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-06-29 21:46:17 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:12 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-06-29 21:46:12 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-06-29 21:46:12 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:44:49 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-06-29 21:44:22 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-06-29 21:43:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-06-29 21:42:50 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:41:56 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-06-29 21:41:56 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-06-29 21:41:56 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-06-29 21:41:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-06-29 21:41:56 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-06-29 21:41:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-06-29 21:41:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-06-29 21:41:56 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-06-29 21:41:55 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-06-29 21:41:55 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-06-29 21:41:55 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-06-29 21:41:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-06-29 21:41:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-06-29 21:41:55 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-06-29 21:41:54 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-06-29 21:41:54 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-06-29 21:41:54 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-06-29 21:41:54 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-06-29 21:41:54 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-06-29 21:41:52 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-06-29 21:41:52 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-06-29 21:41:50 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-06-29 21:41:44 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-04-03 11:34:05 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-04-03 11:34:05 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-04-03 11:34:05 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-04-03 11:34:05 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-04-03 11:34:05 | 000,007,244 | ---- | C] () -- C:\WINDOWS\cadx2.ini [2008-10-07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-11-06 22:19:28 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [color=#E56717]========== LOP Check ==========[/color] [2010-07-13 10:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-06-30 10:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-12 10:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-12 10:55:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-18 10:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-12 11:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-07-26 23:24:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-13 11:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-07-09 06:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-07-16 07:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:51:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-08-12 11:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-07-10 02:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-26 23:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-08-18 11:28:21 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] < End of report > [/log]
Tomek01 komentarz 18 sierpnia 2010 komentarz 18 sierpnia 2010 W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...&ctid=CT2405280 O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [dso32] C:\Documents and Settings\M&J\Ustawienia lokalne\Temp\dsoqq.exe () O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\AutoRun\command - "" = I:\cgaqyi.exe -- File not found O33 - MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\Shell\open\Command - "" = I:\cgaqyi.exe -- File not found :Files C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit C:\cgaqyi.exe :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzucasz log z usuwania oraz nowe logi OTL i RSIT.
JacaSTW komentarz 19 sierpnia 2010 Autor komentarz 19 sierpnia 2010 Log z usuwania [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry value HKEY_USERS\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Run\\dso32 not found. File C:\Documents and Settings\M&J\Ustawienia lokalne\Temp\dsoqq.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{552ff468-9a70-11df-8ada-0080c6e85048}\ not found. File I:\cgaqyi.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{552ff468-9a70-11df-8ada-0080c6e85048}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{552ff468-9a70-11df-8ada-0080c6e85048}\ not found. File I:\cgaqyi.exe not found. ========== FILES ========== C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar\Facebook folder moved successfully. C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar folder moved successfully. C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Conduit folder moved successfully. File\Folder C:\cgaqyi.exe not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: M&J ->Temp folder emptied: 600836960 bytes ->Temporary Internet Files folder emptied: 25405410 bytes ->Java cache emptied: 4366387 bytes ->FireFox cache emptied: 80682231 bytes ->Google Chrome cache emptied: 7120668 bytes ->Flash cache emptied: 22195 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2352022 bytes %systemroot%\System32 .tmp files removed: 3206692 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 5234688 bytes RecycleBin emptied: 4473451522 bytes Total Files Cleaned = 4 962,00 mb OTL by OldTimer - Version 3.2.10.0 log created on 08192010_143129 Files\Folders moved on Reboot... Registry entries deleted on Reboot... [/log] OTL [log]OTL logfile created on: 2010-08-19 14:37:59 - Run 3 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 78,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 91,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 11,55 Gb Free Space | 39,44% Space Free | Partition Type: NTFS Drive D: | 29,29 Gb Total Space | 26,67 Gb Free Space | 91,06% Space Free | Partition Type: NTFS Drive E: | 53,16 Gb Total Space | 50,25 Gb Free Space | 94,53% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: STW-02DBAFED083 Current User Name: M&J Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe PRC - [2010-07-23 04:15:35 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-06-29 06:00:16 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe PRC - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe PRC - [2010-04-07 21:07:04 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-04-03 11:34:05 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-05-10 12:08:06 | 016,342,528 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () -- C:\WINDOWS\system32\wintab32.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2003-09-25 14:11:44 | 000,380,928 | ---- | M] (Ralink Technology, Corp.) -- C:\WINDOWS\system32\RaConfig.exe PRC - [2002-07-04 13:49:48 | 000,020,480 | ---- | M] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\system32\zpoint32.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-18 09:59:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe MOD - [2010-07-27 08:30:33 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-04-07 21:10:38 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2007-11-06 22:22:26 | 000,092,792 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2005-05-02 13:59:32 | 000,122,880 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\wintab32.exe -- (Wintab32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - File not found [Kernel | On_Demand | Stopped] -- F:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\cpu.sys -- (cpu) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\TBPANEL.SYS -- (Cardex) DRV - [2010-07-26 23:34:31 | 000,020,992 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\Temporary\cpu.sys -- (cpudriver) DRV - [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\SVKP.sys -- (SVKP) DRV - [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis) DRV - [2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-04-07 21:03:44 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2009-04-03 11:34:05 | 006,280,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007-11-06 22:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2007-05-10 12:28:08 | 004,419,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-04-14 10:28:00 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2006-07-01 23:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-05-02 22:35:58 | 000,023,552 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w2acehid.sys -- (W2acehid) DRV - [2005-05-01 02:19:48 | 000,012,800 | ---- | M] (GATI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wtcls2k.sys -- (Wtcls2k) DRV - [2003-10-08 13:14:38 | 000,051,712 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RT2400.sys -- (RT2400) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.update: false FF - prefs.js..browser.startup.homepage: "http://www.google.com" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-18 07:54:44 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-18 07:54:26 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010-08-18 16:14:08 | 000,000,000 | ---D | M] [2010-08-18 07:55:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Extensions [2010-08-19 13:12:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions [2010-08-18 08:38:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{48e23fba-bb14-4745-b768-382150cd83fb} [2010-08-18 08:30:28 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla\Firefox\Profiles\h8veb4dk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-08-18 07:54:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found O4 - HKLM..\Run: [Acecad.Wtxpload] C:\WINDOWS\Acecad\Wtxpload.exe (GATI) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKLM..\Run: [ZPOINT32] C:\WINDOWS\system32\zpoint32.exe (ACE CAD Enterprise Co., Ltd.) O4 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk = C:\WINDOWS\system32\RaConfig.exe (Ralink Technology, Corp.) O4 - Startup: C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-1004336348-1644491937-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-19 14:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-08-19 14:31:29 | 000,000,000 | ---D | C] -- C:\_OTL [2010-08-18 17:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2010-08-18 17:20:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\UserData [2010-08-18 16:22:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\ESET [2010-08-18 16:22:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\ESET [2010-08-18 16:18:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2010-08-18 16:14:06 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2010-08-18 16:14:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-08-18 14:20:37 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010-08-18 14:20:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-08-18 10:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Reklama gówno i śmieci [2010-08-18 08:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-18 07:57:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie [2010-08-18 07:56:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Pobieranie [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-08-18 07:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla [2010-08-18 07:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-08-18 07:53:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Nowy folder [2010-08-18 07:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2010-08-18 07:10:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-08-17 20:50:26 | 000,020,480 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\zpoint32.exe [2010-08-17 20:50:25 | 000,061,440 | ---- | C] (GATI) -- C:\WINDOWS\System32\wintab32.dll [2010-08-17 20:50:25 | 000,028,992 | ---- | C] (GATI ) -- C:\WINDOWS\System32\wintab.dll [2010-08-17 20:50:25 | 000,012,800 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\wtcls2k.sys [2010-08-17 20:50:24 | 000,987,136 | ---- | C] (ACE CAD Enterprise Co., Ltd.) -- C:\WINDOWS\System32\lcs.cpl [2010-08-17 20:50:24 | 000,023,552 | ---- | C] (GATI) -- C:\WINDOWS\System32\drivers\w2acehid.sys [2010-08-17 20:50:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Acecad [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Help [2010-08-17 08:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Help [2010-08-12 11:03:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-08-12 11:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-08-12 10:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-12 10:54:12 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2010-08-12 10:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2010-08-12 10:53:53 | 000,092,672 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2010-08-12 10:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-09 18:42:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\cd 2 instrumntale [2010-08-09 18:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\CD2 [2010-08-09 00:29:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\aukcja [2010-08-06 14:38:10 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\rewire.dll [2010-08-06 14:38:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Image-Line [2010-08-06 14:37:51 | 000,000,000 | ---D | C] -- C:\Program Files\VstPlugins [2010-08-06 14:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\Outsim [2010-08-06 14:30:52 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line [2010-07-28 21:30:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-07-26 23:34:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-07-26 23:34:31 | 000,000,000 | ---D | C] -- C:\Program Files\Temporary [2010-07-26 23:34:30 | 000,000,000 | ---D | C] -- C:\Program Files\Temp [2010-07-26 23:24:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-26 23:23:16 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap [2010-07-26 23:22:54 | 000,000,000 | ---D | C] -- C:\Program Files\Conceiva [2010-07-25 04:51:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Media Player Classic [2010-07-25 04:50:26 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-07-25 04:50:25 | 000,630,784 | ---- | C] (On2.com) -- C:\WINDOWS\System32\vp7vfw.dll [2010-07-25 04:50:25 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-07-25 04:50:25 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-07-25 04:50:25 | 000,039,936 | ---- | C] (Disappearing Inc.) -- C:\WINDOWS\System32\huffyuv.dll [2010-07-25 04:50:21 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-07-25 04:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\MarBit [2010-07-18 11:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-07-17 09:35:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-07-17 09:35:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-07-16 16:50:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-07-16 08:31:29 | 000,000,000 | ---D | C] -- C:\Allok3GPFolder [2010-07-16 08:19:12 | 000,002,368 | ---- | C] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-16 07:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\.gstreamer-0.10 [2010-07-14 15:51:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-07-14 15:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-07-13 13:35:52 | 017,611,767 | ---- | C] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 12:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\kaneandlynch [2010-07-13 10:59:52 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-07-13 10:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-07-13 10:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-07-13 01:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010-07-10 18:57:10 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010-07-10 18:50:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-07-10 02:50:16 | 000,470,528 | ---- | C] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:09:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-09 08:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-07-09 08:20:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-07-09 08:20:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Winamp [2010-07-09 07:32:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit\Nowy folder [2010-07-06 13:32:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-07-06 13:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Sun [2010-07-03 11:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Updater [2010-07-03 11:44:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe Systems [2010-07-03 11:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Adobe [2010-07-03 11:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Adobe PDF [2010-07-03 11:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-07-03 11:29:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-07-03 11:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-07-02 11:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft [2010-07-02 10:50:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Identities [2010-07-02 10:45:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\WinRAR [2010-07-02 10:45:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-06-30 10:49:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\cache [2010-06-30 10:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-06-30 10:47:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-06-29 23:30:11 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-06-29 23:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-06-29 23:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-06-29 23:30:06 | 000,000,000 | R--D | C] -- C:\Program Files [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-06-29 23:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-06-29 23:29:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-06-29 23:29:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-06-29 23:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-06-29 23:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-06-29 23:27:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-06-29 23:27:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-06-29 23:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-06-29 23:27:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-06-29 23:21:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-06-29 23:21:11 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-06-29 23:21:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-06-29 23:21:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-06-29 23:21:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-06-29 22:57:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\gothic3 [2010-06-29 22:37:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Downloads [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Macromedia [2010-06-29 22:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Adobe [2010-06-29 22:28:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Temp [2010-06-29 22:27:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Google [2010-06-29 22:27:42 | 000,000,000 | ---D | C] -- C:\Program Files\Gothic III [2010-06-29 22:22:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-06-29 22:16:41 | 000,380,928 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\RaConfig.exe [2010-06-29 22:16:41 | 000,051,712 | ---- | C] (Ralink Technology Inc.) -- C:\WINDOWS\System32\drivers\RT2400.sys [2010-06-29 22:16:35 | 000,000,000 | ---D | C] -- C:\Program Files\RALINK [2010-06-29 22:13:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje wideo [2010-06-29 22:11:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-06-29 22:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-06-29 22:08:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-06-29 22:08:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-06-29 22:05:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-06-29 22:04:58 | 000,000,000 | ---D | C] -- C:\Program Files\EXPERTool [2010-06-29 22:02:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-06-29 22:01:48 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-06-29 22:01:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-06-29 22:01:46 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-06-29 22:00:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-06-29 21:58:29 | 000,094,592 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [2010-06-29 21:57:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\InstallShield [2010-06-29 21:56:28 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010-06-29 21:56:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-06-29 21:56:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-06-29 21:52:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Identities [2010-06-29 21:52:16 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moje obrazy [2010-06-29 21:52:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty\Moja muzyka [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Dane aplikacji\Microsoft [2010-06-29 21:52:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\M&J\Cookies [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\SendTo [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Recent [2010-06-29 21:52:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\M&J\Dane aplikacji [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Ulubione [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Moje dokumenty [2010-06-29 21:52:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\M&J\Menu Start [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\Szablony [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\PrintHood [2010-06-29 21:52:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\M&J\NetHood [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Pulpit [2010-06-29 21:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-06-29 21:50:35 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-06-29 21:50:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-06-29 21:50:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-06-29 21:50:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-06-29 21:50:12 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-06-29 21:48:41 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-06-29 21:48:41 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-06-29 21:47:17 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-06-29 21:46:41 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-06-29 21:45:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-06-29 21:45:11 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-06-29 21:45:11 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-06-29 21:45:02 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-06-29 21:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-06-29 21:44:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-06-29 21:44:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-06-29 21:44:16 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-06-29 21:44:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-06-29 21:44:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-06-29 21:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-06-29 21:44:01 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-06-29 21:43:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-06-29 21:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-06-29 21:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-06-29 21:43:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-06-29 21:43:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-06-29 21:43:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-06-29 21:42:41 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-06-29 21:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-06-29 21:42:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-06-29 21:42:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-06-29 21:42:19 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-06-29 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-06-29 21:41:43 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-06-29 21:41:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-06-29 21:41:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-06-29 21:41:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-06-29 21:41:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-19 14:33:32 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010-08-19 14:33:29 | 000,215,383 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-08-19 14:33:15 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-19 14:33:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-19 14:32:35 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-08-18 17:24:06 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-18 15:51:14 | 000,010,034 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Are_You_Fucking_Kidding_Me_HD.png [2010-08-18 15:49:15 | 000,013,446 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Trollface_HD.jpg [2010-08-18 15:25:45 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-08-18 10:23:24 | 001,010,260 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-18 07:20:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-08-18 07:20:11 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-08-18 07:20:11 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-08-18 06:53:05 | 000,000,745 | ---- | M] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 08:59:13 | 000,008,628 | -H-- | M] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:04:42 | 000,764,054 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-12 11:04:42 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-08-12 11:04:42 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-08-12 11:04:42 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-08-12 11:04:42 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-08-12 11:03:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-12 08:31:35 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-12 07:46:34 | 000,566,304 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-12 07:45:12 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-08-10 17:51:49 | 000,235,808 | ---- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-08-09 18:16:46 | 000,985,617 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-06 14:38:09 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:48:30 | 001,846,196 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-06 00:20:40 | 005,890,750 | -H-- | M] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-01 15:30:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | M] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:02 | 008,038,134 | ---- | M] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:25:35 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:45:38 | 031,424,512 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-16 08:19:12 | 000,002,368 | ---- | M] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys [2010-07-14 10:00:00 | 000,108,032 | ---- | M] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-14 10:00:00 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.ini [2010-07-13 18:49:18 | 000,000,502 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 13:36:10 | 017,611,767 | ---- | M] (AppWork UG (haftungsbeschränkt)) -- C:\Documents and Settings\M&J\Pulpit\JDownloaderSetup.exe [2010-07-13 11:00:00 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 11:00:00 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 01:29:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:50:19 | 000,470,528 | ---- | M] (Sauron) -- C:\Documents and Settings\M&J\Pulpit\Soldat FPS Tool.exe [2010-07-10 02:12:56 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | M] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | M] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-06-29 23:33:36 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:04 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-06-29 22:37:57 | 000,001,557 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:11:10 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:10:16 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 22:07:34 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2010-06-29 21:56:20 | 000,000,223 | RHS- | M] () -- C:\BOOT.BKK [2010-06-29 21:50:15 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:16 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-06-29 21:46:02 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:42:49 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:42:38 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-06-29 21:42:38 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-18 15:48:58 | 000,013,446 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Trollface_HD.jpg [2010-08-18 15:48:23 | 000,010,034 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Are_You_Fucking_Kidding_Me_HD.png [2010-08-18 10:22:52 | 001,010,260 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\img070.jpg [2010-08-18 09:55:15 | 000,000,208 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\FIX.reg [2010-08-18 09:00:23 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-18 07:54:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-08-18 07:54:29 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-08-17 20:50:28 | 000,000,745 | ---- | C] () -- C:\WINDOWS\WINTAB.INI [2010-08-17 20:50:25 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\wintab32.exe [2010-08-17 08:59:09 | 000,008,628 | -H-- | C] () -- C:\WINDOWS\System32\RaConfig.GID [2010-08-12 11:03:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2010-08-12 11:03:17 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2010-08-09 18:15:51 | 000,985,617 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus Hadouken (remix).mp3 [2010-08-06 14:38:09 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\FL Studio 9.lnk [2010-08-06 13:46:55 | 001,846,196 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\Fokus-Desperados (remix).mp3 [2010-08-01 15:30:41 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-07-29 09:55:58 | 000,000,023 | ---- | C] () -- C:\WINDOWS\DownloadStudio.INI [2010-07-25 11:48:01 | 008,038,134 | ---- | C] () -- C:\Documents and Settings\M&J\Moje dokumenty\KOMIKS.bmp [2010-07-25 04:50:27 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-07-25 04:50:26 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-07-25 04:50:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-07-25 04:50:25 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-07-25 04:50:25 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-07-25 04:50:25 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-07-25 04:50:25 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-07-25 04:25:35 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\ALLPlayer V3.2.lnk [2010-07-22 19:37:42 | 000,000,440 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat.lnk [2010-07-21 16:34:50 | 031,424,512 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Wideo0128.3gp [2010-07-18 11:09:53 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-07-13 18:49:18 | 000,000,502 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Kane and Lynch - Dead Men.lnk [2010-07-13 13:39:09 | 000,000,540 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-07-13 11:00:00 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-07-13 10:59:59 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-07-13 01:29:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2010-07-10 02:12:56 | 000,000,000 | R--- | C] () -- C:\logwmemory.bin [2010-07-10 02:07:22 | 000,000,292 | ---- | C] () -- C:\Documents and Settings\M&J\Pulpit\Soldat_member.rar [2010-07-09 08:21:24 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-07-03 11:30:41 | 000,000,988 | ---- | C] () -- C:\Documents and Settings\M&J\Menu Start\Programy\Autostart\Adobe Gamma.lnk [2010-07-02 11:29:27 | 000,000,223 | RHS- | C] () -- C:\BOOT.BKK [2010-07-02 11:19:17 | 000,000,244 | ---- | C] () -- C:\WINDOWS\System32\dllcache\uxtheme_patch.bak [2010-06-30 16:33:14 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\M&J\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-06-29 23:33:36 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-06-29 23:30:15 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-06-29 23:30:08 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-06-29 23:30:08 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-06-29 23:30:07 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-06-29 23:30:07 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-06-29 23:30:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-06-29 23:30:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-06-29 23:30:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-06-29 23:29:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-06-29 23:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-06-29 23:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-06-29 23:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-06-29 23:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-06-29 23:29:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-06-29 23:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-06-29 23:29:42 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-06-29 23:27:51 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-06-29 23:27:51 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-06-29 23:27:51 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-06-29 23:27:51 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-06-29 23:27:51 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-06-29 23:27:51 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-06-29 23:27:51 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-06-29 23:27:51 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-06-29 23:27:51 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-06-29 23:27:51 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-06-29 23:27:51 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-06-29 23:27:51 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-06-29 23:27:51 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-06-29 23:27:50 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-06-29 23:27:50 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-06-29 23:27:50 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-06-29 23:27:49 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-06-29 23:27:04 | 000,566,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-06-29 23:26:23 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2010-06-29 23:26:19 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-06-29 22:37:57 | 000,001,557 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic III.lnk [2010-06-29 22:32:05 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-06-29 22:32:04 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-06-29 22:21:48 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Netbit.lnk [2010-06-29 22:16:45 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RaConfig.lnk [2010-06-29 22:16:41 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\install.dll [2010-06-29 22:16:41 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\WRLSetup.exe [2010-06-29 22:16:41 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\SmartInstallCfg2.dll [2010-06-29 22:16:41 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\CCS24.exe [2010-06-29 22:16:41 | 000,010,227 | ---- | C] () -- C:\WINDOWS\System32\RaConfig.hlp [2010-06-29 22:11:10 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-06-29 22:11:10 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-06-29 22:08:50 | 000,215,383 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-06-29 22:08:00 | 000,019,054 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-06-29 22:07:00 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-06-29 22:02:28 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-06-29 21:57:25 | 000,001,864 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010-06-29 21:52:02 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\M&J\ntuser.ini [2010-06-29 21:52:01 | 000,016,384 | -H-- | C] () -- C:\Documents and Settings\M&J\ntuser.dat.LOG [2010-06-29 21:52:00 | 003,407,872 | -H-- | C] () -- C:\Documents and Settings\M&J\NTUSER.DAT [2010-06-29 21:50:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-06-29 21:49:26 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-06-29 21:49:18 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-06-29 21:48:35 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-06-29 21:48:33 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-06-29 21:48:12 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-06-29 21:48:11 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-06-29 21:48:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-06-29 21:48:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-06-29 21:47:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-06-29 21:47:44 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-06-29 21:47:39 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-06-29 21:47:33 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-06-29 21:47:20 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-06-29 21:47:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-06-29 21:47:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-06-29 21:47:15 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-06-29 21:47:15 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-06-29 21:47:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-06-29 21:47:14 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-06-29 21:47:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-06-29 21:47:13 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-06-29 21:47:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-06-29 21:47:11 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-06-29 21:47:11 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-06-29 21:47:11 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-06-29 21:47:11 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-06-29 21:47:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-06-29 21:47:10 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-06-29 21:47:10 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-06-29 21:47:10 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-06-29 21:47:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-06-29 21:47:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-06-29 21:47:08 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-06-29 21:47:08 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-06-29 21:47:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-06-29 21:47:08 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-06-29 21:47:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-06-29 21:47:07 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-06-29 21:47:07 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-06-29 21:46:17 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-06-29 21:46:17 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-06-29 21:46:17 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-06-29 21:46:12 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-06-29 21:46:12 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-06-29 21:46:12 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-06-29 21:45:11 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-06-29 21:45:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-06-29 21:44:49 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-06-29 21:44:30 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-06-29 21:44:22 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-06-29 21:43:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-06-29 21:42:50 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-06-29 21:41:56 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-06-29 21:41:56 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-06-29 21:41:56 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-06-29 21:41:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-06-29 21:41:56 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-06-29 21:41:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-06-29 21:41:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-06-29 21:41:56 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-06-29 21:41:55 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-06-29 21:41:55 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-06-29 21:41:55 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-06-29 21:41:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-06-29 21:41:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-06-29 21:41:55 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-06-29 21:41:54 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-06-29 21:41:54 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-06-29 21:41:54 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-06-29 21:41:54 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-06-29 21:41:54 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-06-29 21:41:52 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-06-29 21:41:52 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-06-29 21:41:50 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-06-29 21:41:44 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-04-03 11:34:05 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-04-03 11:34:05 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-04-03 11:34:05 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-04-03 11:34:05 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-04-03 11:34:05 | 000,007,244 | ---- | C] () -- C:\WINDOWS\cadx2.ini [2008-10-07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-11-06 22:19:28 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [color=#E56717]========== LOP Check ==========[/color] [2010-08-18 14:20:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-07-13 10:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-08-18 16:14:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-06-30 10:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-12 10:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-08-12 10:55:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-08-18 10:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-12 11:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-07-26 23:24:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva [2010-07-13 11:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\DAEMON Tools Lite [2010-08-18 16:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\ESET [2010-07-09 06:51:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Gadu-Gadu 10 [2010-07-16 07:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRight [2010-07-16 07:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\GetRightToGo [2010-07-14 15:51:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\OpenFM [2010-08-12 11:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite [2010-07-10 02:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Soldat [2010-07-26 23:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue [2010-08-19 14:33:32 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] < End of report > [/log] RSIT: info [log]info.txt logfile of random's system information tool 1.08 2010-08-19 14:40:26 ======Uninstall list====== -->MsiExec /X{DD1865F0-AD73-40FB-B23E-1822E02396FF} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-1033-0000-0000-000000000001} Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001} Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D} Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001} Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2183461)-->"C:\WINDOWS\$NtUninstallKB2183461$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" ALLPlayer V3.X-->"C:\Program Files\MarBit\ALLPlayer\unins000.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe FL Studio 9-->C:\Program Files\Image-Line\FL Studio 9\uninstall.exe Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe Gothic III-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}\setup.exe" -l0x15 -removeonly Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" K-Lite Codec Pack 6.2.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe" Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Mozilla Firefox (3.6.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe NodEnabler 3.2.4-->C:\Program Files\ESET\ESET Smart Security\NodEnabler\Uninstall.exe NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI NVIDIA PhysX-->MsiExec.exe /X{DD1865F0-AD73-40FB-B23E-1822E02396FF} Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_642960B49F5985230DB9B953682A9431120601FA\amdk8.inf Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf PC Connectivity Solution-->MsiExec.exe /I{089DD780-DB3F-4CDB-A0C2-111360247298} Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly RT2400 Wireless LAN Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9198A23F-C33C-4907-9715-96DE7D4AF27D}\Setup.exe" -l0x9 Sawer-->C:\Program Files\Image-Line\Sawer\uninstall.exe Skaner on-line mks_vir-->C:\WINDOWS\system32\SkanerOnlineUninstall.exe Soldat 1.5.0-->"D:\Soldat\unins000.exe" USB Tablet Driver-->C:\WINDOWS\Acecad\Remove.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" WinPcap 4.0.2-->C:\Program Files\WinPcap\uninstall.exe ======System event log====== Computer Name: STW-02DBAFED083 Event Code: 7035 Message: Do usługi Zgodność szybkiego przełączania użytkowników został pomyślnie wysłany kod sterowania uruchom. Record Number: 4573 Source Name: Service Control Manager Time Written: 20100803080908.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: STW-02DBAFED083 Event Code: 7036 Message: Usługa Usługi terminalowe weszła w stan uruchomienia. Record Number: 4572 Source Name: Service Control Manager Time Written: 20100803080908.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 7035 Message: Do usługi Konfiguracja zerowej sieci bezprzewodowej został pomyślnie wysłany kod sterowania zatrzymaj. Record Number: 4571 Source Name: Service Control Manager Time Written: 20100803080906.000000+120 Event Type: informacje User: STW-02DBAFED083\M&J Computer Name: STW-02DBAFED083 Event Code: 4202 Message: System wykrył, że karta sieciowa \DEVICE\TCPIP_{0A3B9613-E85C-4CC2-B401-8BDB0FB8C3B0} została rozłączona z siecią, a jej konfiguracja została zwolniona. Jeśli karta sieciowa nie została rozłączona, może wskazywać to na wadliwe działanie karty. Skontaktuj się z dostawcą, aby uzyskać zaktualizowane sterowniki. Record Number: 4570 Source Name: Tcpip Time Written: 20100803080855.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 4569 Source Name: EventLog Time Written: 20100803080852.000000+120 Event Type: informacje User: =====Application event log===== Computer Name: STW-02DBAFED083 Event Code: 1003 Message: Instalacja nie powiodła się. Kod = 0x800704c7, Błąd = Operacja została anulowana przez użytkownika. Record Number: 5 Source Name: WgaSetup Time Written: 20100726225616.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 1005 Message: Użytkownik odrzucił Umowę Licencyjną Użytkownika Oprogramowania (EULA). Record Number: 4 Source Name: WgaSetup Time Written: 20100726225616.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 1004 Message: Użytkownik zaakceptował Umowę Licencyjną Użytkownika Oprogramowania (EULA). Record Number: 3 Source Name: WgaSetup Time Written: 20100726225610.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 1002 Message: Starting interactive setup. Record Number: 2 Source Name: WgaSetup Time Written: 20100726225610.000000+120 Event Type: informacje User: Computer Name: STW-02DBAFED083 Event Code: 1006 Message: Umowa Licencyjna Użytkownika Oprogramowania (EULA) została wcześniej zaakceptowana. Record Number: 1 Source Name: WgaSetup Time Written: 20100726225610.000000+120 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Adobe\AGL "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 2, AuthenticAMD "PROCESSOR_REVISION"=6b02 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log] log [log]Logfile of random's system information tool 1.08 (written by random/random) Run by M&J at 2010-08-19 14:39:53 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 12 GB (39%) free of 30 GB Total RAM: 2047 MB (80% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:40:24, on 2010-08-19 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Wintab32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\notepad.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ZPOINT32.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\RaConfig.exe C:\Program Files\ESET\ESET Smart Security\ekrn.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\OTL.exe C:\Documents and Settings\M&J\Pulpit\Mozilla Firefox Pobieranie\RSIT.exe C:\Program Files\trend micro\M&J.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing) O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (file missing) O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [Acecad.Wtxpload] C:\WINDOWS\Acecad\Wtxpload.exe Acecad O4 - HKLM\..\Run: [ZPOINT32] C:\WINDOWS\system32\ZPOINT32.exe O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: RaConfig.lnk = C:\WINDOWS\system32\RaConfig.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{F9E219F6-2626-454B-A4E1-56967D87D84F}: NameServer = 194.204.159.1 194.204.152.34 O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: NexTab (Wintab32) - Unknown owner - C:\WINDOWS\system32\Wintab32.exe -- End of file - 4707 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\WGASetup.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-05-10 16342528] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-04-03 13684736] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-04-03 86016] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-06-29 74752] "Acecad.Wtxpload"=C:\WINDOWS\Acecad\Wtxpload.exe [2005-04-30 57344] "ZPOINT32"=C:\WINDOWS\system32\ZPOINT32.exe [2002-07-04 20480] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-04-07 2145000] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun [] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart RaConfig.lnk - C:\WINDOWS\system32\RaConfig.exe C:\Documents and Settings\M&J\Menu Start\Programy\Autostart Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoDriveAutoRun"=0xFFFFFFFF [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "E:\Kane and Lynch\kaneandlynch.exe"="E:\Kane and Lynch\kaneandlynch.exe:*:Enabled:Kane & Lynch - Dead Men" "C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "D:\Soldat\Soldat.exe"="D:\Soldat\Soldat.exe:*:Enabled:http://soldat.pl" "C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater" "C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process " [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======File associations====== .reg - open - "regedit.exe" "%1" ======List of files/folders created in the last 1 months====== 2010-08-19 14:39:53 ----D---- C:\rsit 2010-08-19 14:39:53 ----D---- C:\Program Files\trend micro 2010-08-19 14:31:29 ----D---- C:\_OTL 2010-08-18 17:22:33 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage 2010-08-18 16:22:05 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\ESET 2010-08-18 16:14:06 ----D---- C:\Program Files\ESET 2010-08-18 16:14:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESET 2010-08-18 14:20:37 ----D---- C:\Program Files\Alwil Software 2010-08-18 14:20:37 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software 2010-08-18 08:59:54 ----D---- C:\Program Files\Gadu-Gadu 10 2010-08-18 07:54:43 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Mozilla 2010-08-18 07:54:25 ----D---- C:\Program Files\Mozilla Firefox 2010-08-18 07:40:53 ----D---- C:\Program Files\SkanerOnline 2010-08-18 07:10:38 ----D---- C:\WINDOWS\system32\appmgmt 2010-08-17 20:50:28 ----A---- C:\WINDOWS\WINTAB.INI 2010-08-17 20:50:26 ----A---- C:\WINDOWS\system32\zpoint32.exe 2010-08-17 20:50:25 ----A---- C:\WINDOWS\system32\wintab32.exe 2010-08-17 20:50:25 ----A---- C:\WINDOWS\system32\wintab32.dll 2010-08-17 20:50:25 ----A---- C:\WINDOWS\system32\wintab.dll 2010-08-17 20:50:25 ----A---- C:\WINDOWS\system32\drivers\wtcls2k.sys 2010-08-17 20:50:24 ----D---- C:\WINDOWS\Acecad 2010-08-17 20:50:24 ----A---- C:\WINDOWS\system32\drivers\w2acehid.sys 2010-08-17 08:59:09 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Help 2010-08-12 11:03:35 ----A---- C:\WINDOWS\system32\drivers\usbser.sys 2010-08-12 11:03:28 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite 2010-08-12 11:03:22 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\PC Suite 2010-08-12 11:03:11 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll 2010-08-12 11:03:07 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$ 2010-08-12 10:55:59 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nokia 2010-08-12 10:54:12 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys 2010-08-12 10:54:06 ----D---- C:\Program Files\PC Connectivity Solution 2010-08-12 10:53:53 ----A---- C:\WINDOWS\system32\nmwcdcls.dll 2010-08-12 10:52:19 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Installations 2010-08-12 07:45:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2183461$ 2010-08-12 07:45:00 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-08-12 07:44:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-08-12 07:44:49 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-08-12 07:44:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-08-12 07:44:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$ 2010-08-12 07:44:36 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-08-12 07:44:32 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-08-12 07:44:26 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-08-06 14:38:10 ----A---- C:\WINDOWS\system32\rewire.dll 2010-08-06 14:37:51 ----D---- C:\Program Files\VstPlugins 2010-08-06 14:37:49 ----D---- C:\Program Files\Outsim 2010-08-06 14:30:52 ----D---- C:\Program Files\Image-Line 2010-08-04 15:49:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-07-29 09:55:58 ----A---- C:\WINDOWS\DownloadStudio.INI 2010-07-28 21:30:29 ----D---- C:\WINDOWS\Sun 2010-07-26 23:34:56 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Uniblue 2010-07-26 23:34:31 ----D---- C:\Program Files\Temporary 2010-07-26 23:34:30 ----D---- C:\Program Files\Temp 2010-07-26 23:24:04 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Conceiva 2010-07-26 23:23:16 ----D---- C:\Program Files\WinPcap 2010-07-26 23:22:54 ----D---- C:\Program Files\Conceiva 2010-07-25 04:51:23 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Media Player Classic 2010-07-25 04:50:27 ----A---- C:\WINDOWS\system32\unrar.dll 2010-07-25 04:50:26 ----A---- C:\WINDOWS\avisplitter.ini 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\xvidcore.dll 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\vp7vfw.dll 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\huffyuv.dll 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2010-07-25 04:50:25 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2010-07-25 04:50:21 ----D---- C:\Program Files\K-Lite Codec Pack 2010-07-25 04:25:19 ----D---- C:\Program Files\MarBit 2010-07-20 10:22:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-07-20 10:22:37 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ ======List of files/folders modified in the last 1 months====== 2010-08-19 14:40:00 ----D---- C:\WINDOWS\Temp 2010-08-19 14:39:53 ----RD---- C:\Program Files 2010-08-19 14:38:48 ----D---- C:\WINDOWS\Prefetch 2010-08-19 14:34:40 ----D---- C:\WINDOWS 2010-08-19 14:32:32 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-08-19 14:31:53 ----D---- C:\WINDOWS\system32 2010-08-19 13:00:55 ----D---- C:\WINDOWS\system32\CatRoot2 2010-08-19 12:51:09 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-08-19 12:51:09 ----HD---- C:\WINDOWS\inf 2010-08-19 12:51:09 ----D---- C:\WINDOWS\system32\CatRoot 2010-08-18 17:20:47 ----D---- C:\WINDOWS\SoftwareDistribution 2010-08-18 16:18:42 ----SHD---- C:\WINDOWS\Installer 2010-08-18 16:18:27 ----SHD---- C:\Config.Msi 2010-08-18 16:18:14 ----D---- C:\WINDOWS\system32\drivers 2010-08-18 15:06:44 ----D---- C:\WINDOWS\WinSxS 2010-08-18 10:37:56 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM 2010-08-18 09:00:21 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-08-18 08:33:01 ----SD---- C:\WINDOWS\Tasks 2010-08-18 08:05:03 ----D---- C:\Program Files\Gothic III 2010-08-18 08:04:48 ----D---- C:\Program Files\DAEMON Tools Lite 2010-08-18 07:40:54 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-08-18 07:19:49 ----D---- C:\Program Files\Windows Media Player 2010-08-18 07:19:49 ----D---- C:\Program Files\EXPERTool 2010-08-18 07:18:30 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-08-18 07:14:38 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-08-18 07:11:03 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-08-18 07:10:40 ----D---- C:\Program Files\Common Files 2010-08-12 11:04:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-08-12 07:45:12 ----A---- C:\WINDOWS\imsins.BAK 2010-08-12 07:44:59 ----HD---- C:\WINDOWS\$hf_mig$ 2010-08-12 07:44:33 ----D---- C:\Program Files\Movie Maker 2010-08-07 00:12:22 ----RSD---- C:\WINDOWS\Fonts 2010-07-30 07:35:05 ----D---- C:\Documents and Settings\M&J\Dane aplikacji\Adobe 2010-07-29 09:56:13 ----HD---- C:\Program Files\InstallShield Installation Information 2010-07-27 08:30:33 ----A---- C:\WINDOWS\system32\shell32.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-07-13 691696] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] R1 AmdK8;Sterownik procesora AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43520] R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-04-07 114984] R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-04-07 55232] R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-06-29 271360] R2 cpudriver;cpudriver; \??\C:\Program Files\Temporary\cpu.sys [] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-04-07 139192] R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-04-07 134488] R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-06-29 18048] R2 SVKP;SVKP; \??\C:\WINDOWS\system32\SVKP.sys [] R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-04-07 32584] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-10 4419584] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-04-03 6280416] R3 RT2400;RT2400 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2400.sys [2003-10-08 51712] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-04-14 94592] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] S3 a8eqqajs;a8eqqajs; C:\WINDOWS\system32\drivers\a8eqqajs.sys [] S3 AVPsys;AVPsys; \??\C:\WINDOWS\system32\drivers\cdaudio.sys [] S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS [] S3 cpu;cpu; \??\C:\cpu.sys [] S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS [] S3 nm;Sterownik monitora sieci; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320] S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [] S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [] S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 W2acehid;Acecad HID; C:\WINDOWS\system32\DRIVERS\W2acehid.sys [2005-05-02 23552] S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2005-01-28 18944] S3 Wtcls2k;Wtcls2k; C:\WINDOWS\system32\DRIVERS\Wtcls2k.sys [2005-05-01 12800] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-04-07 810120] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-04-03 163908] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912] R2 Wintab32;NexTab; C:\WINDOWS\system32\Wintab32.exe [2005-05-02 122880] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-07-03 72704] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-04-07 33560] S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2007-11-06 92792] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936] -----------------EOF----------------- [/log]
Tomek01 komentarz 19 sierpnia 2010 komentarz 19 sierpnia 2010 Jest czysto. W OTL użyj funkcji Clean Up. Profilaktycznie możesz zrobić pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i wyniki podaj na forum.
JacaSTW komentarz 20 sierpnia 2010 Autor komentarz 20 sierpnia 2010 Anti-Malware [log]Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Wersja bazy: 4451 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 6.0.2900.5512 2010-08-20 16:38:00 mbam-log-2010-08-20 (16-38-00).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|) Przeskanowano obiektów: 162465 Upłynęło: 26 minut(y), 39 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 1 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 2 Zainfekowanych folderów: 1 Zainfekowanych plików: 56 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> Quarantined and deleted successfully. Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. Zainfekowanych folderów: C:\Program Files\Temporary (Trojan.Agent) -> Quarantined and deleted successfully. Zainfekowanych plików: C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP48\A0065926.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP49\A0065934.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP50\A0066136.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP51\A0066182.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP52\A0066220.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP53\A0066245.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP54\A0066252.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP55\A0066323.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066434.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066615.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066911.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066925.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP60\A0067971.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0067975.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0068927.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP64\A0069746.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP45\A0065620.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP46\A0065634.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP47\A0065886.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP48\A0065928.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP49\A0065936.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP50\A0066138.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP51\A0066184.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP52\A0066222.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP53\A0066247.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP54\A0066254.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP55\A0066325.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066436.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066617.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066913.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066927.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP60\A0067972.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0067977.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0068929.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP64\A0069754.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. D:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP64\A0069756.exe (Trojan.Downloader) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP45\A0065622.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP46\A0065636.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP47\A0065888.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP48\A0065930.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP49\A0065938.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP50\A0066140.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP51\A0066186.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP52\A0066224.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP53\A0066249.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP54\A0066256.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP55\A0066327.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066438.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066619.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066915.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP56\A0066929.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP60\A0067973.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0067979.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP61\A0068931.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. E:\System Volume Information\_restore{3DDEE7D3-F37A-4EA5-97E1-F64195AA1469}\RP64\A0069757.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\Program Files\Temporary\cpu.sys (Trojan.Agent) -> Quarantined and deleted successfully. [/log] Po zeskanowaniu Malwarebytes Anti-Malware problem zniknął Co zrobić żeby zaradzić takim problemom na przyszłość, jak się zabezpieczyć?
Tomek01 komentarz 20 sierpnia 2010 komentarz 20 sierpnia 2010 Po wszystkim w OTL zastosuj w OTL opcję Clean Up. Wyłącz a następnie włącz porzywracanie systemu na wszystkich partycjach. Zastosuj ATFCleaner, zaznacz trzy pierwsze fajki i Empty Selcted. Teraz będzie czyściutko. Po pierwsze trzeba uważać co się ściąga czy podpina. I profilaktycznie skan Mbam raz na miesiąc.
JacaSTW komentarz 21 sierpnia 2010 Autor komentarz 21 sierpnia 2010 (edytowane) [quote]Wyłącz a następnie włącz porzywracanie systemu na wszystkich partycjach.[/quote] Jak to zrobić? EDIT: Udało się. Nie wiem jak wy to robicie i nie będę wiedział, jestem bardzo wdzięczny wszystkim za pomoc, wszystko śmiga jak należy;)) dzięki!
Sohei komentarz 22 sierpnia 2010 komentarz 22 sierpnia 2010 [b]wyłącz i włącz Przywracanie systemu[/b] na wszystkich dyskach. Instrukcja [url=http://support.microsoft.com/kb/310405/pl][b]XP[/b][/url] lub [url=http://windowshelp.microsoft.com/Windows/pl-PL/Help/517d3b8e-3379-46c1-b479-05b30d6fb3f01045.mspx][b]Vista[/b][/url]
JacaSTW komentarz 22 sierpnia 2010 Autor komentarz 22 sierpnia 2010 [quote]EDIT: Udało się.[/quote] Wyłączyłem i włączyłem.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.