HQ19 utworzono 28 sierpnia 2010 utworzono 28 sierpnia 2010 Potrzeba sprawdzić moje logi (nie mojego kompa). Ostatnio stawiałem na nim system, a podobno są jakieś problemy z prawidłowym działaniem (jakieś zamulanie). Chcę się upewnić czy przypadkiem nie ma tam żadnego syfu. [color="#0000ff"][b]OTL[/b][/color] [log]OTL logfile created on: 2010-08-27 19:38:48 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Mama\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 015,00 Mb Total Physical Memory | 507,00 Mb Available Physical Memory | 50,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 20,54 Gb Free Space | 70,10% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 91,56 Gb Free Space | 93,76% Space Free | Partition Type: NTFS Drive E: | 22,09 Gb Total Space | 6,71 Gb Free Space | 30,39% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: DOM-717C9CA7F59 Current User Name: Mama Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe PRC - [2010-08-25 02:15:35 | 001,380,352 | ---- | M] (Netlog) -- C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe PRC - [2010-08-21 23:10:31 | 000,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe PRC - [2010-08-17 12:08:45 | 001,728,456 | ---- | M] () -- C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe PRC - [2010-08-17 11:50:45 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-08-17 11:46:40 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-08-17 11:46:39 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-08-17 11:46:39 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-08-17 11:46:39 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-08-17 11:46:36 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe PRC - [2010-08-17 11:46:36 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-02-11 14:01:40 | 005,150,504 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TeamViewer.exe PRC - [2010-01-14 00:44:52 | 000,037,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe PRC - [2009-11-02 12:53:30 | 018,782,720 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2008-04-14 22:51:52 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2008-04-14 22:51:52 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-02-28 09:00:20 | 000,141,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe PRC - [2008-02-28 09:00:16 | 000,256,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe PRC - [2008-02-28 09:00:14 | 000,137,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe PRC - [2008-02-28 09:00:04 | 000,166,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe PRC - [2007-04-30 03:00:00 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\V0420Mon.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe MOD - [2010-02-11 14:25:16 | 000,103,720 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TV.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:48 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2008-04-14 22:50:32 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:50:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-04-14 22:49:16 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - [2010-08-21 23:10:31 | 000,181,312 | ---- | M] () [Auto | Running] -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe -- (ScsiAccess) SRV - [2010-08-17 11:46:36 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2010-08-17 11:46:36 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-08-17 11:46:52 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-08-17 11:46:46 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-08-17 11:46:45 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-04-12 10:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2009-11-03 13:39:04 | 005,940,736 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-07-28 10:55:00 | 000,143,360 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008-08-05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008-04-14 02:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008-02-15 07:12:06 | 005,854,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2007-05-31 03:32:34 | 000,099,648 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\V0420Vid.sys -- (V0420VID) Live! Cam Vista IM (VF0420) DRV - [2006-01-04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {12e4c684-c03e-4e4d-85bc-0c065e7a9489}:5.23.2.10 FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-23 15:23:11 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-17 12:05:21 | 000,000,000 | ---D | M] [2010-08-17 12:01:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Extensions [2010-08-25 22:10:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions [2010-08-17 12:01:41 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-08-17 12:01:40 | 000,000,000 | ---D | M] (SHOUTcast Radio Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489} [2010-08-17 12:01:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-08-17 12:01:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\netlog-toolbar@netlog.com [2010-01-03 21:14:27 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\searchplugins\netlog-pl.xml [2010-08-26 22:20:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O4 - HKLM..\Run: [V0420Mon.exe] C:\WINDOWS\V0420Mon.exe (Creative Technology Ltd.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Netlog 24] C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe (Netlog) O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Netlog Music Tool] C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe () O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.228.7.226 217.172.224.92 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-27 19:35:53 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe [2010-08-26 23:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\marlena [2010-08-26 23:52:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\ja i pawel [2010-08-25 12:13:06 | 000,000,000 | -H-D | C] -- C:\$AVG [2010-08-24 22:10:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Kolaże [2010-08-24 21:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\2010-08-24 [2010-08-23 18:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\.thumbnails [2010-08-23 18:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0 [2010-08-23 18:23:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\.gimp-2.6 [2010-08-23 18:23:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\gegl-0.0 [2010-08-23 18:22:50 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0 [2010-08-23 18:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Adobe [2010-08-23 10:44:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-08-22 04:11:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\MAXON [2010-08-21 23:36:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup [2010-08-21 23:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup [2010-08-21 23:10:35 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex Presenter [2010-08-21 23:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Netscape [2010-08-21 23:10:19 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex [2010-08-21 23:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Photodex [2010-08-21 23:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\Photoshine [2010-08-21 22:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Nufsoft [2010-08-21 22:29:47 | 000,000,000 | ---D | C] -- C:\Program Files\Zeallsoft [2010-08-20 23:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\My PSP Files [2010-08-20 22:28:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall [2010-08-20 18:21:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\agatka [2010-08-20 14:35:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-20 14:35:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM [2010-08-20 12:33:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\przerobione [2010-08-18 14:59:43 | 000,000,000 | ---D | C] -- C:\insight__empty-empty_world [2010-08-17 18:15:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Creative [2010-08-17 18:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\Creative [2010-08-17 13:19:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-08-17 13:19:10 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-08-17 13:19:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-08-17 13:19:05 | 000,000,000 | R--D | C] -- C:\Program Files [2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-08-17 13:18:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-08-17 13:18:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-08-17 13:18:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-08-17 13:18:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-08-17 13:18:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-08-17 13:18:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-08-17 13:18:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-08-17 13:18:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-08-17 13:18:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-08-17 13:17:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-08-17 13:17:44 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-08-17 13:12:52 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-08-17 13:12:52 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-08-17 13:12:52 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-08-17 13:12:52 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-08-17 13:12:52 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-08-17 12:47:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2010-08-17 12:46:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje wideo [2010-08-17 12:33:42 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-08-17 12:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\Canon [2010-08-17 12:17:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2010-08-17 12:17:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information [2010-08-17 12:17:26 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ [2010-08-17 12:17:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\programy [2010-08-17 12:16:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\klipy [2010-08-17 12:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-08-17 12:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\fotki [2010-08-17 12:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\gry [2010-08-17 12:16:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Czyszczące [2010-08-17 12:10:18 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2010-08-17 12:09:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Pobieranie [2010-08-17 12:09:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Macromedia [2010-08-17 12:09:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Adobe [2010-08-17 12:08:54 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog Uploader [2010-08-17 12:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog Music Tool [2010-08-17 12:08:31 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog 24 [2010-08-17 12:08:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Netlog [2010-08-17 12:07:56 | 000,000,000 | ---D | C] -- C:\Program Files\NPCC3 [2010-08-17 12:07:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010-08-17 12:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-08-17 12:05:11 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-08-17 12:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-08-17 12:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-08-17 12:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-08-17 12:01:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Gadu-Gadu [2010-08-17 12:01:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\skypePM [2010-08-17 12:01:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla [2010-08-17 12:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10 [2010-08-17 11:59:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-08-17 11:59:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-08-17 11:59:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-08-17 11:59:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-08-17 11:58:57 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010-08-17 11:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Skype [2010-08-17 11:58:07 | 000,000,000 | ---D | C] -- C:\Program Files\Skype [2010-08-17 11:58:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-08-17 11:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-08-17 11:57:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\WinRAR [2010-08-17 11:57:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-08-17 11:57:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-08-17 11:56:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-08-17 11:56:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-08-17 11:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-08-17 11:56:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Winamp [2010-08-17 11:55:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer [2010-08-17 11:55:49 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer [2010-08-17 11:54:41 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2010-08-17 11:54:26 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-08-17 11:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2010-08-17 11:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2010-08-17 11:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google [2010-08-17 11:52:41 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-08-17 11:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Malwarebytes [2010-08-17 11:51:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-08-17 11:51:49 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-08-17 11:51:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-08-17 11:51:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-08-17 11:51:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-08-17 11:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-08-17 11:51:12 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-08-17 11:51:11 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-08-17 11:51:11 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-08-17 11:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-08-17 11:50:41 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-08-17 11:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Sun [2010-08-17 11:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-17 11:49:40 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-17 11:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\FastStone [2010-08-17 11:49:06 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Image Viewer [2010-08-17 11:48:15 | 000,000,000 | ---D | C] -- C:\Program Files\CWK [2010-08-17 11:47:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000 [2010-08-17 11:47:01 | 000,000,000 | ---D | C] -- C:\Program Files\foobar2000 [2010-08-17 11:46:54 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010-08-17 11:46:52 | 000,243,024 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010-08-17 11:46:46 | 000,216,400 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-08-17 11:46:45 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010-08-17 11:46:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg [2010-08-17 11:46:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9 [2010-08-17 11:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-08-17 11:45:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-08-17 11:45:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-08-17 11:45:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-08-17 11:41:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-08-17 11:41:01 | 000,352,256 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2010-08-17 11:40:53 | 000,122,880 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2010-08-17 11:40:42 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2010-08-17 11:40:41 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2010-08-17 11:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-08-17 11:37:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-08-17 11:37:20 | 000,143,360 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [2010-08-17 11:37:19 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-08-17 11:37:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-08-17 11:36:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-08-17 11:36:33 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll [2010-08-17 11:36:33 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2010-08-17 11:36:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-08-17 11:36:15 | 000,000,000 | ---D | C] -- C:\Intel [2010-08-17 11:32:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Identities [2010-08-17 11:32:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje obrazy [2010-08-17 11:32:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moja muzyka [2010-08-17 11:32:54 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-08-17 11:32:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-08-17 11:32:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Microsoft [2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\SendTo [2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\Recent [2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\Dane aplikacji [2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Ulubione [2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty [2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Menu Start [2010-08-17 11:32:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mama\Cookies [2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne [2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\Szablony [2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\PrintHood [2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\NetHood [2010-08-17 11:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit [2010-08-17 11:32:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-08-17 11:31:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-08-17 11:31:58 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-08-17 11:31:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-08-17 11:31:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-08-17 11:31:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-08-17 11:31:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-08-17 11:30:23 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-08-17 11:30:22 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-08-17 11:30:22 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-08-17 11:29:12 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-08-17 11:28:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-08-17 11:27:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-08-17 11:27:13 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-08-17 11:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-08-17 11:26:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-08-17 11:26:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-08-17 11:26:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-08-17 11:26:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-08-17 11:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-08-17 11:26:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-08-17 11:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-08-17 11:25:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-08-17 11:25:27 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-08-17 11:25:23 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-08-17 11:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-08-17 11:25:12 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-08-17 11:25:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-08-17 11:24:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-08-17 11:24:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-08-17 11:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-08-17 11:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-08-17 11:24:08 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-08-17 11:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-08-17 11:23:28 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-08-17 11:23:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-08-17 11:23:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-08-17 11:23:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-08-17 11:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe [2010-08-27 19:30:52 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-27 19:30:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-27 18:39:45 | 064,013,829 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-08-27 15:41:28 | 002,883,584 | -H-- | M] () -- C:\Documents and Settings\Mama\NTUSER.DAT [2010-08-27 15:41:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Mama\ntuser.ini [2010-08-27 15:40:12 | 005,323,210 | -H-- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-27 03:52:37 | 000,064,378 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282756579_by_Stahu1990_500.jpg [2010-08-27 03:51:15 | 000,102,537 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1251149737_by_wmordedacmogedac_500.jpg [2010-08-27 03:48:20 | 000,039,101 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282822924_by_oskartarczest_500.jpg [2010-08-25 23:11:17 | 000,147,456 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\catchme.exe [2010-08-25 22:00:44 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\jbiou1vl.exe [2010-08-25 02:15:35 | 000,159,744 | ---- | M] () -- C:\WINDOWS\System32\Netlog24Uninstaller.exe [2010-08-24 23:54:55 | 000,008,606 | ---- | M] () -- C:\Documents and Settings\Mama\.recently-used.xbel [2010-08-24 22:37:00 | 000,036,151 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282667320_by_Skoczu7_500.jpg [2010-08-23 18:35:01 | 000,000,118 | ---- | M] () -- C:\Documents and Settings\Mama\.gtk-bookmarks [2010-08-23 18:23:16 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk [2010-08-23 16:32:41 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-21 22:21:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\System32\BASSMOD.dll [2010-08-20 23:38:24 | 000,830,802 | ---- | M] () -- C:\Documents and Settings\Mama\Moje dokumenty\dla Haniiii1_xvid.avi [2010-08-20 23:36:25 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\dla Haniiii1_xvid.avi [2010-08-20 05:34:12 | 000,000,638 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Skrót do Goya - Pewność.lnk [2010-08-19 13:52:13 | 000,765,938 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-19 13:52:13 | 000,359,178 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-08-19 13:52:13 | 000,314,644 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-08-19 13:52:13 | 000,050,968 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-08-19 13:52:13 | 000,040,972 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-08-17 18:22:47 | 000,002,389 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-08-17 17:57:04 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-08-17 17:09:36 | 000,068,456 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-08-17 17:08:27 | 000,266,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-17 13:19:14 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-08-17 13:19:04 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-08-17 12:07:46 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\Install.job [2010-08-17 12:00:35 | 000,000,582 | ---- | M] () -- C:\WINDOWS\win.ini [2010-08-17 11:46:54 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010-08-17 11:46:52 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010-08-17 11:46:46 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-08-17 11:46:45 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm [2010-08-17 11:46:45 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010-08-17 11:42:31 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-08-17 11:42:31 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-08-17 11:40:56 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-08-17 11:32:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-17 11:31:49 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-08-17 11:30:58 | 000,000,672 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-08-17 11:28:22 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-17 11:28:16 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-08-17 11:28:16 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-08-17 11:28:14 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-08-17 11:28:06 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-08-17 11:27:20 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-08-17 11:27:20 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-08-17 11:24:42 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-08-17 11:24:32 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-08-17 11:24:32 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-08-17 11:22:21 | 000,000,211 | -HS- | M] () -- C:\boot.ini [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-27 03:52:36 | 000,064,378 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282756579_by_Stahu1990_500.jpg [2010-08-27 03:51:11 | 000,102,537 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1251149737_by_wmordedacmogedac_500.jpg [2010-08-27 03:48:19 | 000,039,101 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282822924_by_oskartarczest_500.jpg [2010-08-25 23:11:17 | 000,147,456 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\catchme.exe [2010-08-25 22:00:44 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\jbiou1vl.exe [2010-08-24 23:54:55 | 000,008,606 | ---- | C] () -- C:\Documents and Settings\Mama\.recently-used.xbel [2010-08-24 22:36:57 | 000,036,151 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282667320_by_Skoczu7_500.jpg [2010-08-23 18:35:01 | 000,000,118 | ---- | C] () -- C:\Documents and Settings\Mama\.gtk-bookmarks [2010-08-23 18:23:16 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk [2010-08-21 22:21:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2010-08-20 23:36:43 | 000,830,802 | ---- | C] () -- C:\Documents and Settings\Mama\Moje dokumenty\dla Haniiii1_xvid.avi [2010-08-20 23:36:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\dla Haniiii1_xvid.avi [2010-08-20 05:34:12 | 000,000,638 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Skrót do Goya - Pewność.lnk [2010-08-17 18:22:47 | 000,002,389 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-08-17 18:11:30 | 000,007,062 | ---- | C] () -- C:\WINDOWS\System32\audiopid.vxd [2010-08-17 18:04:34 | 000,005,517 | R--- | C] () -- C:\WINDOWS\VF0420.uns [2010-08-17 18:04:33 | 000,000,670 | R--- | C] () -- C:\WINDOWS\CtDrvIns.exe.manifest [2010-08-17 18:04:30 | 000,188,891 | R--- | C] () -- C:\WINDOWS\System32\V0420Cvw.bff [2010-08-17 18:04:26 | 000,057,656 | R--- | C] () -- C:\WINDOWS\System32\V0420PC.bmp [2010-08-17 18:04:26 | 000,022,951 | R--- | C] () -- C:\WINDOWS\System32\V0420PC.jpg [2010-08-17 17:57:04 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-08-17 13:19:14 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-08-17 13:19:13 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-08-17 13:19:07 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-08-17 13:19:07 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-08-17 13:19:06 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-08-17 13:19:06 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-08-17 13:19:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-08-17 13:19:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-08-17 13:19:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-08-17 13:19:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-08-17 13:18:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-08-17 13:18:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-08-17 13:18:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-08-17 13:18:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-08-17 13:18:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-08-17 13:18:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-08-17 13:18:38 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-08-17 13:18:28 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-08-17 13:18:28 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-08-17 13:18:28 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-08-17 13:18:28 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-08-17 13:18:27 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-08-17 13:18:27 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-08-17 13:18:27 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-08-17 13:18:27 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-08-17 13:18:27 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-08-17 13:18:27 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-08-17 13:18:27 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-08-17 13:18:27 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-08-17 13:18:27 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-08-17 13:18:27 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-08-17 13:18:27 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-08-17 13:18:26 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-08-17 13:18:26 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-08-17 13:17:44 | 000,266,208 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-17 13:17:03 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-08-17 13:17:00 | 000,000,672 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-08-17 12:08:31 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\Netlog24Uninstaller.exe [2010-08-17 12:07:46 | 000,000,378 | ---- | C] () -- C:\WINDOWS\tasks\Install.job [2010-08-17 11:51:13 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-08-17 11:51:12 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-08-17 11:51:12 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-08-17 11:51:11 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-08-17 11:51:11 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-08-17 11:51:10 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-08-17 11:51:10 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-08-17 11:46:45 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm [2010-08-17 11:46:43 | 064,013,829 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-08-17 11:42:31 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-08-17 11:42:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-08-17 11:37:48 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll [2010-08-17 11:37:48 | 000,027,024 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp [2010-08-17 11:37:48 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp [2010-08-17 11:37:20 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2010-08-17 11:35:48 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-17 11:32:51 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\Mama\ntuser.dat.LOG [2010-08-17 11:32:51 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Mama\ntuser.ini [2010-08-17 11:32:50 | 002,883,584 | -H-- | C] () -- C:\Documents and Settings\Mama\NTUSER.DAT [2010-08-17 11:31:49 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-08-17 11:30:58 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-08-17 11:30:52 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-08-17 11:30:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-08-17 11:30:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-08-17 11:30:16 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-08-17 11:29:56 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-08-17 11:29:55 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-08-17 11:29:48 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-08-17 11:29:47 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-08-17 11:29:45 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-08-17 11:29:35 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-08-17 11:29:30 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-08-17 11:29:26 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-08-17 11:29:15 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-08-17 11:29:10 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-08-17 11:29:10 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-08-17 11:29:10 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-08-17 11:29:08 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-08-17 11:29:08 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-08-17 11:29:08 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-08-17 11:29:08 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-08-17 11:29:08 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-08-17 11:29:08 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-08-17 11:29:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-08-17 11:29:06 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-08-17 11:29:06 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-08-17 11:29:06 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-08-17 11:29:06 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-08-17 11:29:05 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-08-17 11:29:05 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-08-17 11:28:22 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-08-17 11:28:22 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-08-17 11:28:22 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-08-17 11:28:22 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-08-17 11:28:22 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-08-17 11:28:16 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-08-17 11:28:16 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-08-17 11:28:14 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-08-17 11:27:20 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-08-17 11:27:20 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-08-17 11:27:00 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-08-17 11:26:37 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-08-17 11:26:37 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-08-17 11:26:29 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-08-17 11:25:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-08-17 11:24:42 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-08-17 11:23:43 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-08-17 11:23:43 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-08-17 11:23:42 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-08-17 11:23:42 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-08-17 11:23:42 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-08-17 11:23:42 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-08-17 11:23:42 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-08-17 11:23:42 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-08-17 11:23:42 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-08-17 11:23:42 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-08-17 11:23:41 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-08-17 11:23:41 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-08-17 11:23:41 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-08-17 11:23:41 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-08-17 11:23:40 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-08-17 11:23:40 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-08-17 11:23:40 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-08-17 11:23:40 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-08-17 11:23:40 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-08-17 11:23:37 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-08-17 11:23:37 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-08-17 11:23:36 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-08-17 11:23:29 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-08-17 04:05:41 | 003,997,810 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\normalsi - nie ma mowy.mp3 [2010-08-17 03:53:26 | 002,994,763 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\KSU - Tanczacy z czasem.mp3 [2010-08-17 03:28:14 | 002,810,861 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\happysad - Partyzant K.mp3 [2001-07-20 07:09:58 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\swfobjs.dll [color=#E56717]========== LOP Check ==========[/color] [2010-08-22 09:58:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agata\Dane aplikacji\Photodex [2010-08-17 11:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9 [2010-08-17 12:17:40 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2010-08-17 11:49:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-20 14:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-17 11:47:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000 [2010-08-17 12:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10 [2010-08-24 23:54:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0 [2010-08-22 04:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\MAXON [2010-08-21 23:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Netscape [2010-08-20 14:35:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM [2010-08-21 23:09:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Photodex [2010-08-21 23:36:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup [2010-08-17 12:01:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer [2010-08-20 23:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall [2010-08-17 12:07:46 | 000,000,378 | ---- | M] () -- C:\WINDOWS\Tasks\Install.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-17 11:22:21 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2001-07-22 00:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-08-17 11:40:57 | 000,000,010 | ---- | M] () -- C:\csb.log [2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-08-27 19:30:49 | 1598,029,824 | -HS- | M] () -- C:\pagefile.sys [2010-08-21 23:10:45 | 000,001,663 | ---- | M] () -- C:\photodex-presenter-install.log [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2009-12-22 20:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] [color="#0000ff"][b]Catchme[/b][/color] [log]catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-08-25 23:11:49 Windows 5.1.2600 Dodatek Service Pack 3 NTFS scanning hidden processes ... scanning hidden services & system hive ... scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 [/log] Jak widzę log z catchme jest czysty. [color="#0000ff"][b]RSIT log.txt[/b][/color] [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Mama at 2010-08-27 20:02:35 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 21 GB (70%) free of 30 GB Total RAM: 1015 MB (46% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:02:49, on 2010-08-27 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgemc.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Winamp\winampa.exe C:\WINDOWS\V0420Mon.exe C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Program Files\TeamViewer\Version5\TeamViewer.exe C:\Documents and Settings\Mama\Pulpit\OTL.exe C:\Documents and Settings\Mama\Pulpit\RSIT.exe C:\Program Files\trend micro\Mama.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [V0420Mon.exe] C:\WINDOWS\V0420Mon.exe O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe" O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe" O4 - HKCU\..\Run: [Netlog Music Tool] "C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe" O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe -- End of file - 6722 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Install.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-17 1619296] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-17 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-17 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-11-02 18782720] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-01-14 37888] "V0420Mon.exe"=C:\WINDOWS\V0420Mon.exe [2007-04-30 32768] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Gadu-Gadu 10"=C:\Program Files\Gadu-Gadu 10\gg.exe [2010-07-22 12477024] "Netlog 24"=C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe [2010-08-25 1380352] "Netlog Music Tool"=C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe [2010-08-17 1728456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] C:\WINDOWS\system32\avgrsstx.dll [2010-08-17 12536] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-08 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe" "C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe" "C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe" "C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2010-08-27 20:02:36 ----D---- C:\Program Files\trend micro 2010-08-27 20:02:35 ----D---- C:\rsit 2010-08-25 12:13:06 ----HD---- C:\$AVG 2010-08-23 18:25:19 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0 2010-08-23 18:22:50 ----D---- C:\Program Files\GIMP-2.0 2010-08-23 10:44:57 ----D---- C:\WINDOWS\Sun 2010-08-22 04:11:20 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\MAXON 2010-08-21 23:36:18 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup 2010-08-21 23:36:03 ----D---- C:\Program Files\Sony Setup 2010-08-21 23:10:35 ----D---- C:\Program Files\Photodex Presenter 2010-08-21 23:10:35 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Netscape 2010-08-21 23:10:19 ----D---- C:\Program Files\Photodex 2010-08-21 23:09:58 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Photodex 2010-08-21 23:04:22 ----D---- C:\Program Files\Photoshine 2010-08-21 22:29:47 ----D---- C:\Program Files\Zeallsoft 2010-08-21 22:21:00 ----A---- C:\WINDOWS\system32\BASSMOD.dll 2010-08-20 22:28:50 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall 2010-08-20 14:35:21 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM 2010-08-20 14:35:16 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM 2010-08-18 14:59:43 ----D---- C:\insight__empty-empty_world 2010-08-17 18:15:27 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Creative 2010-08-17 18:09:51 ----N---- C:\WINDOWS\Ctregrun.exe 2010-08-17 18:09:50 ----D---- C:\Program Files\Creative 2010-08-17 18:05:02 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys 2010-08-17 18:04:56 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys 2010-08-17 18:04:54 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys 2010-08-17 18:04:51 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys 2010-08-17 18:04:48 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS 2010-08-17 18:04:43 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys 2010-08-17 18:04:41 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys 2010-08-17 18:04:34 ----RA---- C:\WINDOWS\system32\V0420Vfw.dll 2010-08-17 18:04:34 ----A---- C:\WINDOWS\V0420Mon.exe 2010-08-17 18:04:33 ----RA---- C:\WINDOWS\V0420Cfg.exe 2010-08-17 18:04:33 ----RA---- C:\WINDOWS\CtDrvIns.exe.manifest 2010-08-17 18:04:33 ----RA---- C:\WINDOWS\CtDrvIns.exe 2010-08-17 18:04:28 ----RA---- C:\WINDOWS\system32\V0420Srv.exe 2010-08-17 18:04:28 ----RA---- C:\WINDOWS\system32\V0420CVW.dll 2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\V0420Hwx.dll 2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\drivers\V0420Vid.sys 2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll 2010-08-17 18:04:27 ----A---- C:\WINDOWS\system32\V0420Pin.dll 2010-08-17 18:04:25 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2010-08-17 13:22:18 ----A---- C:\WINDOWS\system32\h323log.txt 2010-08-17 13:21:38 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2010-08-17 13:21:36 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2010-08-17 13:21:35 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2010-08-17 13:21:33 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2010-08-17 13:21:32 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010-08-17 13:21:30 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010-08-17 13:21:29 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2010-08-17 13:21:28 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2010-08-17 13:21:27 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2010-08-17 13:21:25 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2010-08-17 13:21:24 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2010-08-17 13:21:21 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2010-08-17 13:20:48 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2010-08-17 13:20:12 ----A---- C:\WINDOWS\system32\usbui.dll 2010-08-17 13:19:13 ----A---- C:\WINDOWS\imsins.BAK 2010-08-17 13:19:10 ----SHD---- C:\WINDOWS\Installer 2010-08-17 13:19:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-08-17 13:19:09 ----D---- C:\Program Files\Common Files\ODBC 2010-08-17 13:19:09 ----A---- C:\WINDOWS\ODBCINST.INI 2010-08-17 13:19:05 ----RD---- C:\Program Files 2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files\SpeechEngines 2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files 2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-08-17 13:18:42 ----A---- C:\WINDOWS\system32\irclass.dll 2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-08-17 13:18:38 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2010-08-17 13:18:38 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-08-17 13:18:38 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2010-08-17 13:18:38 ----A---- C:\WINDOWS\system32\batt.dll 2010-08-17 13:18:37 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-08-17 13:18:36 ----A---- C:\WINDOWS\system32\storprop.dll 2010-08-17 13:18:29 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-08-17 13:18:24 ----RA---- C:\WINDOWS\SET8.tmp 2010-08-17 13:18:22 ----RA---- C:\WINDOWS\SET4.tmp 2010-08-17 13:18:20 ----RA---- C:\WINDOWS\SET3.tmp 2010-08-17 13:18:15 ----D---- C:\WINDOWS\system32\CatRoot2 2010-08-17 13:18:15 ----D---- C:\WINDOWS\system32\CatRoot 2010-08-17 13:18:09 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-08-17 13:17:48 ----A---- C:\WINDOWS\setuplog.txt 2010-08-17 13:17:45 ----D---- C:\Documents and Settings 2010-08-17 13:17:44 ----SHD---- C:\System Volume Information 2010-08-17 13:17:03 ----SH---- C:\boot.ini 2010-08-17 13:12:52 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-08-17 13:12:52 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-08-17 13:12:52 ----RSD---- C:\WINDOWS\Fonts 2010-08-17 13:12:52 ----RD---- C:\WINDOWS\Web 2010-08-17 13:12:52 ----HD---- C:\WINDOWS\inf 2010-08-17 13:12:52 ----D---- C:\WINDOWS\WinSxS 2010-08-17 13:12:52 ----D---- C:\WINDOWS\WBEM 2010-08-17 13:12:52 ----D---- C:\WINDOWS\twain_32 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Temp 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\wins 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\wbem 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\usmt 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\spool 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ShellExt 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\Setup 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ras 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\pl-pl 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\pl 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\oobe 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\npp 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\mui 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\inetsrv 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\IME 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\icsxml 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ias 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\export 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\etc 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\disdn 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\dhcp 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\config 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\3com_dmi 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\3076 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\2052 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1054 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1045 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1042 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1041 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1037 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1033 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1031 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1028 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1025 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32 2010-08-17 13:12:52 ----D---- C:\WINDOWS\system 2010-08-17 13:12:52 ----D---- C:\WINDOWS\security 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Resources 2010-08-17 13:12:52 ----D---- C:\WINDOWS\repair 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Provisioning 2010-08-17 13:12:52 ----D---- C:\WINDOWS\PeerNet 2010-08-17 13:12:52 ----D---- C:\WINDOWS\pchealth 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Offline Web Pages 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Network Diagnostic 2010-08-17 13:12:52 ----D---- C:\WINDOWS\mui 2010-08-17 13:12:52 ----D---- C:\WINDOWS\msapps 2010-08-17 13:12:52 ----D---- C:\WINDOWS\msagent 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Media 2010-08-17 13:12:52 ----D---- C:\WINDOWS\L2Schemas 2010-08-17 13:12:52 ----D---- C:\WINDOWS\java 2010-08-17 13:12:52 ----D---- C:\WINDOWS\ime 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Help 2010-08-17 13:12:52 ----D---- C:\WINDOWS\ehome 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Driver Cache 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Debug 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Cursors 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Connection Wizard 2010-08-17 13:12:52 ----D---- C:\WINDOWS\Config 2010-08-17 13:12:52 ----D---- C:\WINDOWS\AppPatch 2010-08-17 13:12:52 ----D---- C:\WINDOWS\addins 2010-08-17 13:12:52 ----D---- C:\WINDOWS 2010-08-17 13:12:52 ----ASH---- C:\pagefile.sys 2010-08-17 12:33:42 ----SHD---- C:\RECYCLER 2010-08-17 12:19:55 ----A---- C:\WINDOWS\IsUn0415.exe 2010-08-17 12:19:35 ----D---- C:\Program Files\Canon 2010-08-17 12:19:00 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2010-08-17 12:18:50 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-08-17 12:17:40 ----HD---- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ 2010-08-17 12:17:35 ----A---- C:\WINDOWS\system32\CNMLM7K.DLL 2010-08-17 12:17:32 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information 2010-08-17 12:17:31 ----A---- C:\WINDOWS\system32\cncisco.dll 2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCL150.DLL 2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCI150.DLL 2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCC150.DLL 2010-08-17 12:17:26 ----HD---- C:\Program Files\CanonBJ 2010-08-17 12:16:44 ----D---- C:\Program Files\CCleaner 2010-08-17 12:10:18 ----D---- C:\Program Files\SubEdit-Player 2010-08-17 12:09:46 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Macromedia 2010-08-17 12:09:46 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Adobe 2010-08-17 12:08:54 ----D---- C:\Program Files\Netlog Uploader 2010-08-17 12:08:45 ----D---- C:\Program Files\Netlog Music Tool 2010-08-17 12:08:31 ----D---- C:\Program Files\Netlog 24 2010-08-17 12:08:31 ----A---- C:\WINDOWS\system32\Netlog24Uninstaller.exe 2010-08-17 12:07:56 ----D---- C:\Program Files\NPCC3 2010-08-17 12:07:29 ----D---- C:\WINDOWS\system32\Adobe 2010-08-17 12:06:28 ----A---- C:\WINDOWS\system32\msonpmon.dll 2010-08-17 12:05:19 ----D---- C:\Program Files\Microsoft Works 2010-08-17 12:05:11 ----D---- C:\Program Files\MSBuild 2010-08-17 12:04:47 ----D---- C:\Program Files\Microsoft Visual Studio 2010-08-17 12:04:47 ----D---- C:\Program Files\Common Files\DESIGNER 2010-08-17 12:01:50 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\skypePM 2010-08-17 12:01:32 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla 2010-08-17 12:00:59 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10 2010-08-17 11:59:59 ----D---- C:\WINDOWS\SHELLNEW 2010-08-17 11:59:18 ----D---- C:\Program Files\Microsoft Office 2010-08-17 11:59:17 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2010-08-17 11:58:57 ----RHD---- C:\MSOCache 2010-08-17 11:58:16 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Skype 2010-08-17 11:58:07 ----D---- C:\Program Files\Skype 2010-08-17 11:58:06 ----D---- C:\Program Files\Common Files\Skype 2010-08-17 11:58:02 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Skype 2010-08-17 11:57:27 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\WinRAR 2010-08-17 11:57:22 ----D---- C:\Program Files\WinRAR 2010-08-17 11:57:04 ----D---- C:\Program Files\Mozilla Firefox 2010-08-17 11:56:48 ----A---- C:\WINDOWS\system32\D3DX9_42.dll 2010-08-17 11:56:47 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2010-08-17 11:56:38 ----D---- C:\WINDOWS\Logs 2010-08-17 11:56:31 ----D---- C:\Program Files\Winamp Detect 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxsfs.dll 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxafs.dll 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\vxblock.dll 2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxwave.dll 2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxmas.dll 2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxdrv.dll 2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\px.dll 2010-08-17 11:56:22 ----D---- C:\Program Files\Winamp 2010-08-17 11:56:22 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Winamp 2010-08-17 11:55:57 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer 2010-08-17 11:55:49 ----D---- C:\Program Files\TeamViewer 2010-08-17 11:54:41 ----D---- C:\Program Files\VS Revo Group 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pndx5032.dll 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pndx5016.dll 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pncrt.dll 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\msvcr71.dll 2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\msvcp71.dll 2010-08-17 11:54:25 ----D---- C:\Program Files\Real Alternative 2010-08-17 11:53:41 ----D---- C:\Program Files\PowerISO 2010-08-17 11:53:08 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-08-17 11:53:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$ 2010-08-17 11:52:41 ----D---- C:\Program Files\Google 2010-08-17 11:51:54 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Malwarebytes 2010-08-17 11:51:50 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2010-08-17 11:51:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-08-17 11:51:49 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2010-08-17 11:51:49 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2010-08-17 11:51:22 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Sun 2010-08-17 11:51:21 ----D---- C:\Program Files\Common Files\Java 2010-08-17 11:51:13 ----A---- C:\WINDOWS\system32\unrar.dll 2010-08-17 11:51:12 ----A---- C:\WINDOWS\avisplitter.ini 2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\xvidcore.dll 2010-08-17 11:51:10 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2010-08-17 11:51:10 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2010-08-17 11:51:07 ----D---- C:\Program Files\K-Lite Codec Pack 2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\javaws.exe 2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\javaw.exe 2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\java.exe 2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-08-17 11:50:41 ----D---- C:\Program Files\Java 2010-08-17 11:50:23 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Sun 2010-08-17 11:49:56 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 2010-08-17 11:49:40 ----D---- C:\Program Files\Gadu-Gadu 10 2010-08-17 11:49:12 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\FastStone 2010-08-17 11:49:06 ----D---- C:\Program Files\FastStone Image Viewer 2010-08-17 11:48:15 ----D---- C:\Program Files\CWK 2010-08-17 11:47:21 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000 2010-08-17 11:47:01 ----D---- C:\Program Files\foobar2000 2010-08-17 11:46:54 ----A---- C:\WINDOWS\system32\avgrsstx.dll 2010-08-17 11:46:52 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys 2010-08-17 11:46:46 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys 2010-08-17 11:46:45 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys 2010-08-17 11:46:43 ----D---- C:\WINDOWS\system32\drivers\Avg 2010-08-17 11:46:36 ----D---- C:\Program Files\AVG 2010-08-17 11:46:36 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\avg9 2010-08-17 11:45:17 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2010-08-17 11:45:10 ----D---- C:\Program Files\Common Files\Adobe 2010-08-17 11:45:10 ----D---- C:\Program Files\Adobe 2010-08-17 11:43:05 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS 2010-08-17 11:41:11 ----D---- C:\WINDOWS\system32\RTCOM 2010-08-17 11:41:01 ----A---- C:\WINDOWS\vncutil.exe 2010-08-17 11:41:01 ----A---- C:\WINDOWS\SOUNDMAN.EXE 2010-08-17 11:41:00 ----A---- C:\WINDOWS\SkyTel.exe 2010-08-17 11:40:59 ----A---- C:\WINDOWS\RtlUpd.exe 2010-08-17 11:40:56 ----A---- C:\WINDOWS\RTLCPL.EXE 2010-08-17 11:40:55 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys 2010-08-17 11:40:53 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll 2010-08-17 11:40:53 ----A---- C:\WINDOWS\RtkAudioService.exe 2010-08-17 11:40:47 ----A---- C:\WINDOWS\RTHDCPL.EXE 2010-08-17 11:40:46 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys 2010-08-17 11:40:46 ----A---- C:\WINDOWS\MicCal.exe 2010-08-17 11:40:42 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys 2010-08-17 11:40:41 ----A---- C:\WINDOWS\ALCWZRD.EXE 2010-08-17 11:40:41 ----A---- C:\WINDOWS\ALCMTR.EXE 2010-08-17 11:40:33 ----A---- C:\WINDOWS\RtlExUpd.dll 2010-08-17 11:40:27 ----D---- C:\Program Files\Common Files\InstallShield 2010-08-17 11:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB835221WXP$ 2010-08-17 11:39:05 ----A---- C:\WINDOWS\system32\igfxres.dll 2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igxprd32.dll 2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxtray.exe 2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxpers.exe 2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxexps.dll 2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igxpdv32.dll 2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igfxext.exe 2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\drivers\igxpmp32.sys 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igxpgd32.dll 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\iglicd32.dll 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igldev32.dll 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxzoom.exe 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxdev.dll 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxCoIn_v4926.dll 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\hkcmd.exe 2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\hccutils.dll 2010-08-17 11:37:47 ----D---- C:\WINDOWS\system32\Lang 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igxpun.exe 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igxpdx32.dll 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxress.dll 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxpph.dll 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxdo.dll 2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\difxapi.dll 2010-08-17 11:37:20 ----A---- C:\WINDOWS\system32\RtNicProp32.dll 2010-08-17 11:37:20 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys 2010-08-17 11:37:19 ----HD---- C:\Program Files\InstallShield Installation Information 2010-08-17 11:37:19 ----D---- C:\Program Files\Realtek 2010-08-17 11:36:35 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-08-17 11:36:33 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-08-17 11:36:33 ----D---- C:\Program Files\Intel 2010-08-17 11:36:33 ----A---- C:\WINDOWS\system32\CSVer.dll 2010-08-17 11:36:15 ----D---- C:\Intel 2010-08-17 11:32:56 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Identities 2010-08-17 11:32:54 ----HD---- C:\Program Files\Uninstall Information 2010-08-17 11:32:51 ----ASH---- C:\Documents and Settings\Mama\Dane aplikacji\desktop.ini 2010-08-17 11:32:50 ----SD---- C:\Documents and Settings\Mama\Dane aplikacji\Microsoft 2010-08-17 11:32:00 ----D---- C:\WINDOWS\SoftwareDistribution 2010-08-17 11:31:59 ----D---- C:\WINDOWS\Prefetch 2010-08-17 11:31:58 ----SD---- C:\WINDOWS\system32\Microsoft 2010-08-17 11:31:58 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-08-17 11:28:44 ----D---- C:\WINDOWS\system32\xircom 2010-08-17 11:28:44 ----D---- C:\Program Files\xerox 2010-08-17 11:28:44 ----D---- C:\Program Files\microsoft frontpage 2010-08-17 11:28:32 ----HD---- C:\WINDOWS\$hf_mig$ 2010-08-17 11:28:22 ----RASH---- C:\MSDOS.SYS 2010-08-17 11:28:22 ----RASH---- C:\IO.SYS 2010-08-17 11:28:22 ----A---- C:\WINDOWS\control.ini 2010-08-17 11:28:22 ----A---- C:\CONFIG.SYS 2010-08-17 11:28:22 ----A---- C:\AUTOEXEC.BAT 2010-08-17 11:28:10 ----A---- C:\WINDOWS\OEWABLog.txt 2010-08-17 11:28:06 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-08-17 11:27:20 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-08-17 11:27:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-08-17 11:27:13 ----HD---- C:\Program Files\WindowsUpdate 2010-08-17 11:27:09 ----D---- C:\Program Files\Usługi online 2010-08-17 11:26:50 ----D---- C:\WINDOWS\system32\DirectX 2010-08-17 11:26:41 ----A---- C:\WINDOWS\system32\atrace.dll 2010-08-17 11:26:37 ----A---- C:\WINDOWS\system32\desktop.ini 2010-08-17 11:26:37 ----A---- C:\WINDOWS\desktop.ini 2010-08-17 11:26:28 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-08-17 11:26:27 ----A---- C:\WINDOWS\system32\acctres.dll 2010-08-17 11:26:26 ----D---- C:\Program Files\Common Files\Services 2010-08-17 11:26:22 ----SD---- C:\WINDOWS\Tasks 2010-08-17 11:26:22 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-08-17 11:26:21 ----D---- C:\Program Files\Common Files\MSSoap 2010-08-17 11:26:16 ----D---- C:\WINDOWS\srchasst 2010-08-17 11:26:15 ----D---- C:\WINDOWS\system32\Macromed 2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wups.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-08-17 11:26:10 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-08-17 11:26:05 ----D---- C:\Program Files\Movie Maker 2010-08-17 11:25:40 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2010-08-17 11:25:33 ----D---- C:\WINDOWS\system32\Restore 2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srclient.dll 2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\ils.dll 2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\msconf.dll 2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-08-17 11:25:27 ----D---- C:\Program Files\NetMeeting 2010-08-17 11:25:27 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-08-17 11:25:27 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-08-17 11:25:25 ----A---- C:\WINDOWS\system32\inetres.dll 2010-08-17 11:25:25 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-08-17 11:25:23 ----D---- C:\Program Files\Outlook Express 2010-08-17 11:25:23 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\mstask.dll 2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-08-17 11:25:21 ----A---- C:\WINDOWS\system32\isign32.dll 2010-08-17 11:25:21 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-08-17 11:25:14 ----D---- C:\Program Files\Common Files\System 2010-08-17 11:25:12 ----D---- C:\Program Files\Internet Explorer 2010-08-17 11:24:34 ----D---- C:\Program Files\ComPlus Applications 2010-08-17 11:24:32 ----A---- C:\WINDOWS\vbaddin.ini 2010-08-17 11:24:32 ----A---- C:\WINDOWS\vb.ini 2010-08-17 11:24:28 ----D---- C:\WINDOWS\Registration 2010-08-17 11:24:11 ----D---- C:\Program Files\Windows Media Connect 2 2010-08-17 11:24:10 ----D---- C:\Program Files\Windows Media Player 2010-08-17 11:24:08 ----D---- C:\Program Files\Messenger 2010-08-17 11:24:03 ----D---- C:\Program Files\MSN Gaming Zone 2010-08-17 11:24:03 ----A---- C:\WINDOWS\system32\write.exe 2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\hticons.dll 2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avwav.dll 2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-08-17 11:23:49 ----A---- C:\WINDOWS\system32\winchat.exe 2010-08-17 11:23:40 ----A---- C:\WINDOWS\system32\getuname.dll 2010-08-17 11:23:40 ----A---- C:\WINDOWS\system32\charmap.exe 2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\winmine.exe 2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\sol.exe 2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\calc.exe 2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\reset.exe 2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\freecell.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tskill.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tscon.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\shadow.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\regini.exe 2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\msg.exe 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\logoff.exe 2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-08-17 11:23:29 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-08-17 11:23:26 ----D---- C:\Program Files\Windows NT 2010-08-17 11:23:26 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-08-17 11:23:25 ----A---- C:\WINDOWS\system32\spider.exe 2010-08-17 11:23:25 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\tsgqec.dll 2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2010-08-17 11:23:23 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2010-08-17 11:23:23 ----A---- C:\WINDOWS\system32\aaclient.dll 2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-08-17 11:23:20 ----D---- C:\WINDOWS\system32\MsDtc 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-08-17 11:23:18 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-08-17 11:23:18 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-08-17 11:23:17 ----D---- C:\WINDOWS\system32\Com 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\colbact.dll 2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\stclient.dll 2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-08-17 11:23:15 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-08-17 11:23:15 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\comuid.dll 2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-08-17 11:23:05 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-08-17 11:23:02 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys 2010-08-17 11:23:01 ----A---- C:\WINDOWS\system32\drivers\termdd.sys ======List of files/folders modified in the last 1 months====== 2010-08-17 13:19:04 ----A---- C:\WINDOWS\system.ini 2010-08-17 12:00:35 ----A---- C:\WINDOWS\win.ini 2010-08-17 11:27:55 ----ASH---- C:\WINDOWS\fonts\desktop.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-08-17 216400] R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-08-17 29584] R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-08-17 243024] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448] R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2010-04-12 59388] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-11-03 5940736] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-07-28 143360] R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] R3 V0420VID;Live! Cam Vista IM (VF0420); C:\WINDOWS\system32\DRIVERS\V0420Vid.sys [2007-05-31 99648] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-08 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-08 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-08-17 921952] R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-08-17 308136] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-17 153376] R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe [2010-08-21 181312] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] -----------------EOF----------------- [/log] [color="#0000ff"][b]RSIT info.txt[/b][/color] [log]info.txt logfile of random's system information tool 1.08 2010-08-27 20:02:50 ======Uninstall list====== -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x9 -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -maintain activex Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Reader 9.3 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A93000000001} Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL Canon MP Navigator 2.0-->"C:\Program Files\Canon\MP Navigator 2.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.0\uninst.ini Canon MP150-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{CA9A3609-3ECC-4574-8824-A8161A71A603}\DelDrv.exe" /U:{CA9A3609-3ECC-4574-8824-A8161A71A603} /L0x0015 Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe Uninst.ini uinstrsc.dll Canon Utilities Easy-PhotoPrint-->C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe uninst.ini CCleaner-->"C:\Program Files\CCleaner\uninst.exe" Creative Live! Cam Vista IM Driver (1.00.03.0000)-->C:\WINDOWS\CtDrvIns.exe -uninstall -script VF0420.uns -unsext NT -plugin V0420Pin.dll -pluginres CtCamPin.crl Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x9 /remove CWK (Czasowy Wyłącznik Komputera)-->"C:\Program Files\CWK\CWK.exe" /uninstall FastStone Image Viewer 4.2-->C:\Program Files\FastStone Image Viewer\uninst.exe foobar2000 v1.0.3-->"C:\Program Files\foobar2000\uninstall.exe" _?=C:\Program Files\foobar2000 Fun Morph 3.0-->"C:\Program Files\Zeallsoft\Fun Morph\unins000.exe" Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe GIMP 2.6.10-->"C:\Program Files\GIMP-2.0\setup\unins000.exe" High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall Java(TM) 6 Update 18-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216018FF} K-Lite Codec Pack 6.0.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft Office Access MUI (Polish) 2007-->MsiExec.exe /X{90120000-0015-0415-0000-0000000FF1CE} Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE} Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE} Microsoft Office Groove MUI (Polish) 2007-->MsiExec.exe /X{90120000-00BA-0415-0000-0000000FF1CE} Microsoft Office InfoPath MUI (Polish) 2007-->MsiExec.exe /X{90120000-0044-0415-0000-0000000FF1CE} Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE} Microsoft Office Outlook MUI (Polish) 2007-->MsiExec.exe /X{90120000-001A-0415-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE} Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE} Microsoft Office Publisher MUI (Polish) 2007-->MsiExec.exe /X{90120000-0019-0415-0000-0000000FF1CE} Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE} Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Mozilla Firefox (3.6.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Natalia PolChat Client Application-->"C:\Program Files\NPCC3\unins000.exe" Netlog 24-->C:\WINDOWS\system32\Netlog24Uninstaller.exe Netlog Music Tool-->C:\Program Files\Netlog Music Tool\Uninstaller.exe Photodex Presenter-->C:\Program Files\Photodex Presenter\uninst.exe Photoshine 2.0-->"C:\Program Files\Photoshine\unins000.exe" Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe" PowerISO-->"C:\Program Files\PowerISO\uninstall.exe" ProShow Gold-->C:\Program Files\Photodex\ProShowGold\proshow.exe . -u Real Alternative 2.0.2-->"C:\Program Files\Real Alternative\unins000.exe" REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\setup.exe -runfromtemp -removeonly Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly Revo Uninstaller 1.83-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe SHOUTcast Source DSP 1.9.0 (remove only)-->C:\Program Files\Winamp\uninst-dsp.exe Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82} SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe" TeamViewer 5-->C:\Program Files\TeamViewer\Version5\uninstall.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe" ======System event log====== Computer Name: DOM-717C9CA7F59 Event Code: 15007 Message: Pomyślnie dodano rezerwację przestrzeni nazw, identyfikowaną przez prefiks adresu URL http://*:2869/. Record Number: 5 Source Name: HTTP Time Written: 20100817112711.000000+120 Event Type: informacje User: Computer Name: DOM-717C9CA7F59 Event Code: 6011 Message: Nazwa NetBIOS i nazwa hosta DNS tego komputera uległy zmianie z MACHINENAME na DOM-717C9CA7F59. Record Number: 4 Source Name: EventLog Time Written: 20100817112223.000000+120 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 2 Message: Podczas sprawdzania, czy \Device\Serial0 jest rzeczywiście portem szeregowym, wykryto kolejkę typu fifo. Zostanie ona użyta. Record Number: 3 Source Name: Serial Time Written: 20100817131809.000000+120 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 2 Source Name: EventLog Time Written: 20100817131751.000000+120 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 6009 Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 3 Uniprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20100817131751.000000+120 Event Type: informacje User: =====Application event log===== Computer Name: DOM-717C9CA7F59 Event Code: 1000 Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 5 Source Name: LoadPerf Time Written: 20100817112424.000000+120 Event Type: informacje User: Computer Name: DOM-717C9CA7F59 Event Code: 1000 Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 4 Source Name: LoadPerf Time Written: 20100817112421.000000+120 Event Type: informacje User: Computer Name: DOM-717C9CA7F59 Event Code: 1000 Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 3 Source Name: LoadPerf Time Written: 20100817112258.000000+120 Event Type: informacje User: Computer Name: DOM-717C9CA7F59 Event Code: 1000 Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 2 Source Name: LoadPerf Time Written: 20100817112242.000000+120 Event Type: informacje User: Computer Name: DOM-717C9CA7F59 Event Code: 1000 Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 1 Source Name: LoadPerf Time Written: 20100817112230.000000+120 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 22 Stepping 1, GenuineIntel "PROCESSOR_REVISION"=1601 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log] Nasi forumowi eksperci, liczę na Was
Sohei komentarz 29 sierpnia 2010 komentarz 29 sierpnia 2010 szczerzę mówiąc nie widać tutaj zbytnio śladów infekcji. Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url] Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL Zobaczymy czy może programy coś wykryją
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.