x-kom hosting

Problemy z poprawnym działaniem komputera

HQ19
utworzono
utworzono

Potrzeba sprawdzić moje logi (nie mojego kompa). Ostatnio stawiałem na nim system, a podobno są jakieś problemy z prawidłowym działaniem (jakieś zamulanie). Chcę się upewnić czy przypadkiem nie ma tam żadnego syfu.

[color="#0000ff"][b]OTL[/b][/color]
[log]OTL logfile created on: 2010-08-27 19:38:48 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Mama\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 015,00 Mb Total Physical Memory | 507,00 Mb Available Physical Memory | 50,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 20,54 Gb Free Space | 70,10% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 91,56 Gb Free Space | 93,76% Space Free | Partition Type: NTFS
Drive E: | 22,09 Gb Total Space | 6,71 Gb Free Space | 30,39% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: DOM-717C9CA7F59
Current User Name: Mama
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
PRC - [2010-08-25 02:15:35 | 001,380,352 | ---- | M] (Netlog) -- C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
PRC - [2010-08-21 23:10:31 | 000,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe
PRC - [2010-08-17 12:08:45 | 001,728,456 | ---- | M] () -- C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe
PRC - [2010-08-17 11:50:45 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-08-17 11:46:40 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010-08-17 11:46:39 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010-08-17 11:46:39 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010-08-17 11:46:39 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010-08-17 11:46:36 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010-08-17 11:46:36 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-02-11 14:01:40 | 005,150,504 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TeamViewer.exe
PRC - [2010-01-14 00:44:52 | 000,037,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2009-11-02 12:53:30 | 018,782,720 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008-04-14 22:51:52 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:52 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-02-28 09:00:20 | 000,141,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
PRC - [2008-02-28 09:00:16 | 000,256,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2008-02-28 09:00:14 | 000,137,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2008-02-28 09:00:04 | 000,166,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2007-04-30 03:00:00 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\V0420Mon.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
MOD - [2010-02-11 14:25:16 | 000,103,720 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version5\TV.dll
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:48 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 22:50:46 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-04-14 22:50:32 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-04-14 22:49:16 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010-08-21 23:10:31 | 000,181,312 | ---- | M] () [Auto | Running] -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe -- (ScsiAccess)
SRV - [2010-08-17 11:46:36 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010-08-17 11:46:36 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-08-17 11:46:52 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010-08-17 11:46:46 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010-08-17 11:46:45 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010-04-12 10:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009-11-03 13:39:04 | 005,940,736 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-07-28 10:55:00 | 000,143,360 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-08-05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008-04-14 02:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008-02-15 07:12:06 | 005,854,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007-05-31 03:32:34 | 000,099,648 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\V0420Vid.sys -- (V0420VID) Live! Cam Vista IM (VF0420)
DRV - [2006-01-04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm






IE - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {12e4c684-c03e-4e4d-85bc-0c065e7a9489}:5.23.2.10
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-23 15:23:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-17 12:05:21 | 000,000,000 | ---D | M]

[2010-08-17 12:01:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Extensions
[2010-08-25 22:10:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions
[2010-08-17 12:01:41 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2010-08-17 12:01:40 | 000,000,000 | ---D | M] (SHOUTcast Radio Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489}
[2010-08-17 12:01:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-08-17 12:01:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\extensions\netlog-toolbar@netlog.com
[2010-01-03 21:14:27 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\etrhhfls.default\searchplugins\netlog-pl.xml
[2010-08-26 22:20:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\Run: [V0420Mon.exe] C:\WINDOWS\V0420Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Netlog 24] C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe (Netlog)
O4 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003..\Run: [Netlog Music Tool] C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe ()
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-1844823847-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.228.7.226 217.172.224.92
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-08-17 11:28:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-08-27 19:35:53 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
[2010-08-26 23:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\marlena
[2010-08-26 23:52:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\ja i pawel
[2010-08-25 12:13:06 | 000,000,000 | -H-D | C] -- C:\$AVG
[2010-08-24 22:10:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Kolaże
[2010-08-24 21:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\2010-08-24
[2010-08-23 18:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\.thumbnails
[2010-08-23 18:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0
[2010-08-23 18:23:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\.gimp-2.6
[2010-08-23 18:23:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\gegl-0.0
[2010-08-23 18:22:50 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2010-08-23 18:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Adobe
[2010-08-23 10:44:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010-08-22 04:11:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\MAXON
[2010-08-21 23:36:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup
[2010-08-21 23:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup
[2010-08-21 23:10:35 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex Presenter
[2010-08-21 23:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Netscape
[2010-08-21 23:10:19 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex
[2010-08-21 23:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Photodex
[2010-08-21 23:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\Photoshine
[2010-08-21 22:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Nufsoft
[2010-08-21 22:29:47 | 000,000,000 | ---D | C] -- C:\Program Files\Zeallsoft
[2010-08-20 23:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\My PSP Files
[2010-08-20 22:28:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall
[2010-08-20 18:21:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\agatka
[2010-08-20 14:35:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-08-20 14:35:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM
[2010-08-20 12:33:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\przerobione
[2010-08-18 14:59:43 | 000,000,000 | ---D | C] -- C:\insight__empty-empty_world
[2010-08-17 18:15:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Creative
[2010-08-17 18:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2010-08-17 13:19:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2010-08-17 13:19:10 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-08-17 13:19:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-08-17 13:19:05 | 000,000,000 | R--D | C] -- C:\Program Files
[2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-08-17 13:19:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-08-17 13:18:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-08-17 13:18:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-08-17 13:18:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-08-17 13:18:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-08-17 13:18:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-08-17 13:18:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-08-17 13:18:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-08-17 13:18:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-08-17 13:18:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-08-17 13:17:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-08-17 13:17:44 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-08-17 13:12:52 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-08-17 13:12:52 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-08-17 13:12:52 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010-08-17 13:12:52 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010-08-17 13:12:52 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-08-17 13:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-08-17 12:47:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files
[2010-08-17 12:46:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje wideo
[2010-08-17 12:33:42 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-08-17 12:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2010-08-17 12:17:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2010-08-17 12:17:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2010-08-17 12:17:26 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2010-08-17 12:17:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\programy
[2010-08-17 12:16:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\klipy
[2010-08-17 12:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-08-17 12:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\fotki
[2010-08-17 12:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\gry
[2010-08-17 12:16:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Czyszczące
[2010-08-17 12:10:18 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2010-08-17 12:09:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Pobieranie
[2010-08-17 12:09:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Macromedia
[2010-08-17 12:09:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Adobe
[2010-08-17 12:08:54 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog Uploader
[2010-08-17 12:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog Music Tool
[2010-08-17 12:08:31 | 000,000,000 | ---D | C] -- C:\Program Files\Netlog 24
[2010-08-17 12:08:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Netlog
[2010-08-17 12:07:56 | 000,000,000 | ---D | C] -- C:\Program Files\NPCC3
[2010-08-17 12:07:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2010-08-17 12:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010-08-17 12:05:11 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010-08-17 12:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010-08-17 12:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010-08-17 12:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Mozilla
[2010-08-17 12:01:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Gadu-Gadu
[2010-08-17 12:01:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\skypePM
[2010-08-17 12:01:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla
[2010-08-17 12:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10
[2010-08-17 11:59:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010-08-17 11:59:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft Help
[2010-08-17 11:59:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010-08-17 11:59:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
[2010-08-17 11:58:57 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010-08-17 11:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Skype
[2010-08-17 11:58:07 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-08-17 11:58:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010-08-17 11:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2010-08-17 11:57:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\WinRAR
[2010-08-17 11:57:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-08-17 11:57:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-08-17 11:56:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010-08-17 11:56:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2010-08-17 11:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-08-17 11:56:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Winamp
[2010-08-17 11:55:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer
[2010-08-17 11:55:49 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2010-08-17 11:54:41 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010-08-17 11:54:26 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-08-17 11:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-08-17 11:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2010-08-17 11:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google
[2010-08-17 11:52:41 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-08-17 11:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Malwarebytes
[2010-08-17 11:51:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-08-17 11:51:49 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-08-17 11:51:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-08-17 11:51:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-08-17 11:51:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2010-08-17 11:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-08-17 11:51:12 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2010-08-17 11:51:11 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2010-08-17 11:51:11 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2010-08-17 11:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-08-17 11:50:41 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010-08-17 11:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Sun
[2010-08-17 11:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-08-17 11:49:40 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-08-17 11:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\FastStone
[2010-08-17 11:49:06 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Image Viewer
[2010-08-17 11:48:15 | 000,000,000 | ---D | C] -- C:\Program Files\CWK
[2010-08-17 11:47:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000
[2010-08-17 11:47:01 | 000,000,000 | ---D | C] -- C:\Program Files\foobar2000
[2010-08-17 11:46:54 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010-08-17 11:46:52 | 000,243,024 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010-08-17 11:46:46 | 000,216,400 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010-08-17 11:46:45 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010-08-17 11:46:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2010-08-17 11:46:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9
[2010-08-17 11:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2010-08-17 11:45:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2010-08-17 11:45:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-08-17 11:45:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-08-17 11:41:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010-08-17 11:41:01 | 000,352,256 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2010-08-17 11:40:53 | 000,122,880 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2010-08-17 11:40:42 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2010-08-17 11:40:41 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2010-08-17 11:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-08-17 11:37:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010-08-17 11:37:20 | 000,143,360 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys
[2010-08-17 11:37:19 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-08-17 11:37:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010-08-17 11:36:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-08-17 11:36:33 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll
[2010-08-17 11:36:33 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010-08-17 11:36:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010-08-17 11:36:15 | 000,000,000 | ---D | C] -- C:\Intel
[2010-08-17 11:32:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Identities
[2010-08-17 11:32:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje obrazy
[2010-08-17 11:32:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moja muzyka
[2010-08-17 11:32:54 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-08-17 11:32:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-08-17 11:32:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Microsoft
[2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\SendTo
[2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\Recent
[2010-08-17 11:32:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mama\Dane aplikacji
[2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Ulubione
[2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty
[2010-08-17 11:32:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Menu Start
[2010-08-17 11:32:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mama\Cookies
[2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\Ustawienia lokalne
[2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\Szablony
[2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\PrintHood
[2010-08-17 11:32:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mama\NetHood
[2010-08-17 11:32:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit
[2010-08-17 11:32:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-08-17 11:31:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-08-17 11:31:58 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-08-17 11:31:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-08-17 11:31:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-08-17 11:31:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-08-17 11:31:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-08-17 11:30:23 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010-08-17 11:30:22 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010-08-17 11:30:22 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010-08-17 11:29:12 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010-08-17 11:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010-08-17 11:28:32 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010-08-17 11:27:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-08-17 11:27:13 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010-08-17 11:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-08-17 11:26:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010-08-17 11:26:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-08-17 11:26:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-08-17 11:26:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-08-17 11:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010-08-17 11:26:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-08-17 11:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010-08-17 11:25:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-08-17 11:25:27 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010-08-17 11:25:23 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-08-17 11:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-08-17 11:25:12 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-08-17 11:25:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2010-08-17 11:24:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-08-17 11:24:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-08-17 11:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010-08-17 11:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-08-17 11:24:08 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-08-17 11:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010-08-17 11:23:28 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2010-08-17 11:23:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-08-17 11:23:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-08-17 11:23:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010-08-17 11:23:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-08-27 19:35:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
[2010-08-27 19:30:52 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-08-27 19:30:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-08-27 18:39:45 | 064,013,829 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010-08-27 15:41:28 | 002,883,584 | -H-- | M] () -- C:\Documents and Settings\Mama\NTUSER.DAT
[2010-08-27 15:41:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Mama\ntuser.ini
[2010-08-27 15:40:12 | 005,323,210 | -H-- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-08-27 03:52:37 | 000,064,378 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282756579_by_Stahu1990_500.jpg
[2010-08-27 03:51:15 | 000,102,537 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1251149737_by_wmordedacmogedac_500.jpg
[2010-08-27 03:48:20 | 000,039,101 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282822924_by_oskartarczest_500.jpg
[2010-08-25 23:11:17 | 000,147,456 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\catchme.exe
[2010-08-25 22:00:44 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\jbiou1vl.exe
[2010-08-25 02:15:35 | 000,159,744 | ---- | M] () -- C:\WINDOWS\System32\Netlog24Uninstaller.exe
[2010-08-24 23:54:55 | 000,008,606 | ---- | M] () -- C:\Documents and Settings\Mama\.recently-used.xbel
[2010-08-24 22:37:00 | 000,036,151 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\1282667320_by_Skoczu7_500.jpg
[2010-08-23 18:35:01 | 000,000,118 | ---- | M] () -- C:\Documents and Settings\Mama\.gtk-bookmarks
[2010-08-23 18:23:16 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk
[2010-08-23 16:32:41 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-21 22:21:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010-08-20 23:38:24 | 000,830,802 | ---- | M] () -- C:\Documents and Settings\Mama\Moje dokumenty\dla Haniiii1_xvid.avi
[2010-08-20 23:36:25 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\dla Haniiii1_xvid.avi
[2010-08-20 05:34:12 | 000,000,638 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Skrót do Goya - Pewność.lnk
[2010-08-19 13:52:13 | 000,765,938 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-08-19 13:52:13 | 000,359,178 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-08-19 13:52:13 | 000,314,644 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-08-19 13:52:13 | 000,050,968 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-08-19 13:52:13 | 000,040,972 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-08-17 18:22:47 | 000,002,389 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-08-17 17:57:04 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-08-17 17:09:36 | 000,068,456 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-08-17 17:08:27 | 000,266,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-08-17 13:19:14 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010-08-17 13:19:04 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-08-17 12:07:46 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\Install.job
[2010-08-17 12:00:35 | 000,000,582 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-08-17 11:46:54 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010-08-17 11:46:52 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010-08-17 11:46:46 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010-08-17 11:46:45 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010-08-17 11:46:45 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010-08-17 11:42:31 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-08-17 11:42:31 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-08-17 11:40:56 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-08-17 11:32:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-08-17 11:31:49 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010-08-17 11:30:58 | 000,000,672 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-08-17 11:28:22 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-08-17 11:28:16 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-08-17 11:28:16 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-08-17 11:28:14 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-08-17 11:28:06 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-08-17 11:27:20 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-08-17 11:27:20 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-08-17 11:24:42 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-08-17 11:24:32 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010-08-17 11:24:32 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010-08-17 11:22:21 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-08-27 03:52:36 | 000,064,378 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282756579_by_Stahu1990_500.jpg
[2010-08-27 03:51:11 | 000,102,537 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1251149737_by_wmordedacmogedac_500.jpg
[2010-08-27 03:48:19 | 000,039,101 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282822924_by_oskartarczest_500.jpg
[2010-08-25 23:11:17 | 000,147,456 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\catchme.exe
[2010-08-25 22:00:44 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\jbiou1vl.exe
[2010-08-24 23:54:55 | 000,008,606 | ---- | C] () -- C:\Documents and Settings\Mama\.recently-used.xbel
[2010-08-24 22:36:57 | 000,036,151 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\1282667320_by_Skoczu7_500.jpg
[2010-08-23 18:35:01 | 000,000,118 | ---- | C] () -- C:\Documents and Settings\Mama\.gtk-bookmarks
[2010-08-23 18:23:16 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk
[2010-08-21 22:21:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010-08-20 23:36:43 | 000,830,802 | ---- | C] () -- C:\Documents and Settings\Mama\Moje dokumenty\dla Haniiii1_xvid.avi
[2010-08-20 23:36:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\dla Haniiii1_xvid.avi
[2010-08-20 05:34:12 | 000,000,638 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Skrót do Goya - Pewność.lnk
[2010-08-17 18:22:47 | 000,002,389 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-08-17 18:11:30 | 000,007,062 | ---- | C] () -- C:\WINDOWS\System32\audiopid.vxd
[2010-08-17 18:04:34 | 000,005,517 | R--- | C] () -- C:\WINDOWS\VF0420.uns
[2010-08-17 18:04:33 | 000,000,670 | R--- | C] () -- C:\WINDOWS\CtDrvIns.exe.manifest
[2010-08-17 18:04:30 | 000,188,891 | R--- | C] () -- C:\WINDOWS\System32\V0420Cvw.bff
[2010-08-17 18:04:26 | 000,057,656 | R--- | C] () -- C:\WINDOWS\System32\V0420PC.bmp
[2010-08-17 18:04:26 | 000,022,951 | R--- | C] () -- C:\WINDOWS\System32\V0420PC.jpg
[2010-08-17 17:57:04 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-08-17 13:19:14 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010-08-17 13:19:13 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010-08-17 13:19:07 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010-08-17 13:19:07 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010-08-17 13:19:06 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010-08-17 13:19:06 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010-08-17 13:19:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010-08-17 13:19:03 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010-08-17 13:19:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010-08-17 13:19:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010-08-17 13:19:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010-08-17 13:18:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010-08-17 13:18:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010-08-17 13:18:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010-08-17 13:18:52 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010-08-17 13:18:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010-08-17 13:18:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010-08-17 13:18:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010-08-17 13:18:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010-08-17 13:18:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010-08-17 13:18:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010-08-17 13:18:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010-08-17 13:18:38 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-08-17 13:18:28 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010-08-17 13:18:28 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010-08-17 13:18:28 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010-08-17 13:18:28 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010-08-17 13:18:27 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2010-08-17 13:18:27 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010-08-17 13:18:27 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010-08-17 13:18:27 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010-08-17 13:18:27 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010-08-17 13:18:27 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010-08-17 13:18:27 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010-08-17 13:18:27 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010-08-17 13:18:27 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010-08-17 13:18:27 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010-08-17 13:18:27 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010-08-17 13:18:26 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010-08-17 13:18:26 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010-08-17 13:17:44 | 000,266,208 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-08-17 13:17:03 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2010-08-17 13:17:00 | 000,000,672 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-08-17 12:08:31 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\Netlog24Uninstaller.exe
[2010-08-17 12:07:46 | 000,000,378 | ---- | C] () -- C:\WINDOWS\tasks\Install.job
[2010-08-17 11:51:13 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-08-17 11:51:12 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2010-08-17 11:51:12 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-08-17 11:51:11 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-08-17 11:51:11 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-08-17 11:51:10 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-08-17 11:51:10 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-08-17 11:46:45 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010-08-17 11:46:43 | 064,013,829 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010-08-17 11:42:31 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-08-17 11:42:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-08-17 11:37:48 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2010-08-17 11:37:48 | 000,027,024 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2010-08-17 11:37:48 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2010-08-17 11:37:20 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010-08-17 11:35:48 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-17 11:32:51 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\Mama\ntuser.dat.LOG
[2010-08-17 11:32:51 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Mama\ntuser.ini
[2010-08-17 11:32:50 | 002,883,584 | -H-- | C] () -- C:\Documents and Settings\Mama\NTUSER.DAT
[2010-08-17 11:31:49 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010-08-17 11:30:58 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-08-17 11:30:52 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010-08-17 11:30:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010-08-17 11:30:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010-08-17 11:30:16 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010-08-17 11:29:56 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010-08-17 11:29:55 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010-08-17 11:29:48 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010-08-17 11:29:47 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010-08-17 11:29:45 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010-08-17 11:29:35 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010-08-17 11:29:30 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010-08-17 11:29:26 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010-08-17 11:29:15 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010-08-17 11:29:11 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010-08-17 11:29:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010-08-17 11:29:10 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010-08-17 11:29:10 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010-08-17 11:29:10 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010-08-17 11:29:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010-08-17 11:29:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010-08-17 11:29:08 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010-08-17 11:29:08 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010-08-17 11:29:08 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010-08-17 11:29:08 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010-08-17 11:29:08 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010-08-17 11:29:08 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010-08-17 11:29:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010-08-17 11:29:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010-08-17 11:29:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010-08-17 11:29:06 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010-08-17 11:29:06 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010-08-17 11:29:06 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010-08-17 11:29:06 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010-08-17 11:29:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010-08-17 11:29:05 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010-08-17 11:29:05 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010-08-17 11:28:22 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-08-17 11:28:22 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-08-17 11:28:22 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-08-17 11:28:22 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-08-17 11:28:22 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-08-17 11:28:16 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-08-17 11:28:16 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-08-17 11:28:14 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-08-17 11:27:20 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-08-17 11:27:20 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-08-17 11:27:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-08-17 11:27:00 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010-08-17 11:26:37 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010-08-17 11:26:37 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010-08-17 11:26:29 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010-08-17 11:25:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2010-08-17 11:24:42 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-08-17 11:23:43 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp
[2010-08-17 11:23:43 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp
[2010-08-17 11:23:42 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp
[2010-08-17 11:23:42 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp
[2010-08-17 11:23:42 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp
[2010-08-17 11:23:42 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp
[2010-08-17 11:23:42 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2010-08-17 11:23:42 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp
[2010-08-17 11:23:42 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp
[2010-08-17 11:23:42 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp
[2010-08-17 11:23:41 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010-08-17 11:23:41 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010-08-17 11:23:41 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010-08-17 11:23:41 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp
[2010-08-17 11:23:40 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010-08-17 11:23:40 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010-08-17 11:23:40 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010-08-17 11:23:40 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010-08-17 11:23:40 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010-08-17 11:23:37 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-08-17 11:23:37 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-08-17 11:23:36 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-08-17 11:23:29 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2010-08-17 04:05:41 | 003,997,810 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\normalsi - nie ma mowy.mp3
[2010-08-17 03:53:26 | 002,994,763 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\KSU - Tanczacy z czasem.mp3
[2010-08-17 03:28:14 | 002,810,861 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\happysad - Partyzant K.mp3
[2001-07-20 07:09:58 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\swfobjs.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-08-22 09:58:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agata\Dane aplikacji\Photodex
[2010-08-17 11:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9
[2010-08-17 12:17:40 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2010-08-17 11:49:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-08-20 14:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-08-17 11:47:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000
[2010-08-17 12:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10
[2010-08-24 23:54:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0
[2010-08-22 04:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\MAXON
[2010-08-21 23:10:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Netscape
[2010-08-20 14:35:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM
[2010-08-21 23:09:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Photodex
[2010-08-21 23:36:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup
[2010-08-17 12:01:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer
[2010-08-20 23:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall
[2010-08-17 12:07:46 | 000,000,378 | ---- | M] () -- C:\WINDOWS\Tasks\Install.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-08-17 11:22:21 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2001-07-22 00:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-08-17 11:28:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-08-17 11:40:57 | 000,000,010 | ---- | M] () -- C:\csb.log
[2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-08-17 11:28:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-08-27 19:30:49 | 1598,029,824 | -HS- | M] () -- C:\pagefile.sys
[2010-08-21 23:10:45 | 000,001,663 | ---- | M] () -- C:\photodex-presenter-install.log


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2009-12-22 20:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[/log]

[color="#0000ff"][b]Catchme[/b][/color]
[log]catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-25 23:11:49
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
[/log] Jak widzę log z catchme jest czysty.

[color="#0000ff"][b]RSIT log.txt[/b][/color]
[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Mama at 2010-08-27 20:02:35
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 21 GB (70%) free of 30 GB
Total RAM: 1015 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:02:49, on 2010-08-27
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\V0420Mon.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Gadu-Gadu 10\gg.exe
C:\Program Files\TeamViewer\Version5\TeamViewer.exe
C:\Documents and Settings\Mama\Pulpit\OTL.exe
C:\Documents and Settings\Mama\Pulpit\RSIT.exe
C:\Program Files\trend micro\Mama.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [V0420Mon.exe] C:\WINDOWS\V0420Mon.exe
O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe"
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [Netlog Music Tool] "C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe

--
End of file - 6722 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Install.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-17 1619296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-17 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-17 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-11-02 18782720]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-01-14 37888]
"V0420Mon.exe"=C:\WINDOWS\V0420Mon.exe [2007-04-30 32768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gadu-Gadu 10"=C:\Program Files\Gadu-Gadu 10\gg.exe [2010-07-22 12477024]
"Netlog 24"=C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe [2010-08-25 1380352]
"Netlog Music Tool"=C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe [2010-08-17 1728456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-17 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-08 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-08-27 20:02:36 ----D---- C:\Program Files\trend micro
2010-08-27 20:02:35 ----D---- C:\rsit
2010-08-25 12:13:06 ----HD---- C:\$AVG
2010-08-23 18:25:19 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\gtk-2.0
2010-08-23 18:22:50 ----D---- C:\Program Files\GIMP-2.0
2010-08-23 10:44:57 ----D---- C:\WINDOWS\Sun
2010-08-22 04:11:20 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\MAXON
2010-08-21 23:36:18 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Sony Setup
2010-08-21 23:36:03 ----D---- C:\Program Files\Sony Setup
2010-08-21 23:10:35 ----D---- C:\Program Files\Photodex Presenter
2010-08-21 23:10:35 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Netscape
2010-08-21 23:10:19 ----D---- C:\Program Files\Photodex
2010-08-21 23:09:58 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Photodex
2010-08-21 23:04:22 ----D---- C:\Program Files\Photoshine
2010-08-21 22:29:47 ----D---- C:\Program Files\Zeallsoft
2010-08-21 22:21:00 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2010-08-20 22:28:50 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Thinstall
2010-08-20 14:35:21 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
2010-08-20 14:35:16 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\OpenFM
2010-08-18 14:59:43 ----D---- C:\insight__empty-empty_world
2010-08-17 18:15:27 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Creative
2010-08-17 18:09:51 ----N---- C:\WINDOWS\Ctregrun.exe
2010-08-17 18:09:50 ----D---- C:\Program Files\Creative
2010-08-17 18:05:02 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2010-08-17 18:04:56 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2010-08-17 18:04:54 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2010-08-17 18:04:51 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2010-08-17 18:04:48 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2010-08-17 18:04:43 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2010-08-17 18:04:41 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2010-08-17 18:04:34 ----RA---- C:\WINDOWS\system32\V0420Vfw.dll
2010-08-17 18:04:34 ----A---- C:\WINDOWS\V0420Mon.exe
2010-08-17 18:04:33 ----RA---- C:\WINDOWS\V0420Cfg.exe
2010-08-17 18:04:33 ----RA---- C:\WINDOWS\CtDrvIns.exe.manifest
2010-08-17 18:04:33 ----RA---- C:\WINDOWS\CtDrvIns.exe
2010-08-17 18:04:28 ----RA---- C:\WINDOWS\system32\V0420Srv.exe
2010-08-17 18:04:28 ----RA---- C:\WINDOWS\system32\V0420CVW.dll
2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\V0420Hwx.dll
2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\drivers\V0420Vid.sys
2010-08-17 18:04:27 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll
2010-08-17 18:04:27 ----A---- C:\WINDOWS\system32\V0420Pin.dll
2010-08-17 18:04:25 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-08-17 13:22:18 ----A---- C:\WINDOWS\system32\h323log.txt
2010-08-17 13:21:38 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-08-17 13:21:36 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-08-17 13:21:35 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-08-17 13:21:33 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2010-08-17 13:21:32 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010-08-17 13:21:30 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010-08-17 13:21:29 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-08-17 13:21:28 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-08-17 13:21:27 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-08-17 13:21:25 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-08-17 13:21:24 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2010-08-17 13:21:21 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-08-17 13:21:03 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-08-17 13:20:48 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-08-17 13:20:12 ----A---- C:\WINDOWS\system32\usbui.dll
2010-08-17 13:19:13 ----A---- C:\WINDOWS\imsins.BAK
2010-08-17 13:19:10 ----SHD---- C:\WINDOWS\Installer
2010-08-17 13:19:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-17 13:19:09 ----D---- C:\Program Files\Common Files\ODBC
2010-08-17 13:19:09 ----A---- C:\WINDOWS\ODBCINST.INI
2010-08-17 13:19:05 ----RD---- C:\Program Files
2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-17 13:19:05 ----D---- C:\Program Files\Common Files
2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-08-17 13:19:00 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-08-17 13:18:58 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-08-17 13:18:57 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-08-17 13:18:55 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-08-17 13:18:53 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdro.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2010-08-17 13:18:45 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2010-08-17 13:18:42 ----A---- C:\WINDOWS\system32\irclass.dll
2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-08-17 13:18:41 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-08-17 13:18:38 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-08-17 13:18:38 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-08-17 13:18:38 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-08-17 13:18:38 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-17 13:18:37 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-08-17 13:18:36 ----A---- C:\WINDOWS\system32\storprop.dll
2010-08-17 13:18:29 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
2010-08-17 13:18:24 ----RA---- C:\WINDOWS\SET8.tmp
2010-08-17 13:18:22 ----RA---- C:\WINDOWS\SET4.tmp
2010-08-17 13:18:20 ----RA---- C:\WINDOWS\SET3.tmp
2010-08-17 13:18:15 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-17 13:18:15 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-17 13:18:09 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
2010-08-17 13:17:48 ----A---- C:\WINDOWS\setuplog.txt
2010-08-17 13:17:45 ----D---- C:\Documents and Settings
2010-08-17 13:17:44 ----SHD---- C:\System Volume Information
2010-08-17 13:17:03 ----SH---- C:\boot.ini
2010-08-17 13:12:52 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-17 13:12:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-17 13:12:52 ----RSD---- C:\WINDOWS\Fonts
2010-08-17 13:12:52 ----RD---- C:\WINDOWS\Web
2010-08-17 13:12:52 ----HD---- C:\WINDOWS\inf
2010-08-17 13:12:52 ----D---- C:\WINDOWS\WinSxS
2010-08-17 13:12:52 ----D---- C:\WINDOWS\WBEM
2010-08-17 13:12:52 ----D---- C:\WINDOWS\twain_32
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Temp
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\wins
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\wbem
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\usmt
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\spool
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ShellExt
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\Setup
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ras
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\pl-pl
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\pl
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\oobe
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\npp
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\mui
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\inetsrv
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\IME
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\icsxml
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\ias
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\export
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\drivers
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\dhcp
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\config
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\3com_dmi
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\3076
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\2052
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1054
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1045
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1042
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1041
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1037
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1033
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1031
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1028
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32\1025
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system32
2010-08-17 13:12:52 ----D---- C:\WINDOWS\system
2010-08-17 13:12:52 ----D---- C:\WINDOWS\security
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Resources
2010-08-17 13:12:52 ----D---- C:\WINDOWS\repair
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Provisioning
2010-08-17 13:12:52 ----D---- C:\WINDOWS\PeerNet
2010-08-17 13:12:52 ----D---- C:\WINDOWS\pchealth
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Offline Web Pages
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Network Diagnostic
2010-08-17 13:12:52 ----D---- C:\WINDOWS\mui
2010-08-17 13:12:52 ----D---- C:\WINDOWS\msapps
2010-08-17 13:12:52 ----D---- C:\WINDOWS\msagent
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Media
2010-08-17 13:12:52 ----D---- C:\WINDOWS\L2Schemas
2010-08-17 13:12:52 ----D---- C:\WINDOWS\java
2010-08-17 13:12:52 ----D---- C:\WINDOWS\ime
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Help
2010-08-17 13:12:52 ----D---- C:\WINDOWS\ehome
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Driver Cache
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Debug
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Cursors
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Connection Wizard
2010-08-17 13:12:52 ----D---- C:\WINDOWS\Config
2010-08-17 13:12:52 ----D---- C:\WINDOWS\AppPatch
2010-08-17 13:12:52 ----D---- C:\WINDOWS\addins
2010-08-17 13:12:52 ----D---- C:\WINDOWS
2010-08-17 13:12:52 ----ASH---- C:\pagefile.sys
2010-08-17 12:33:42 ----SHD---- C:\RECYCLER
2010-08-17 12:19:55 ----A---- C:\WINDOWS\IsUn0415.exe
2010-08-17 12:19:35 ----D---- C:\Program Files\Canon
2010-08-17 12:19:00 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-08-17 12:18:50 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-08-17 12:17:40 ----HD---- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
2010-08-17 12:17:35 ----A---- C:\WINDOWS\system32\CNMLM7K.DLL
2010-08-17 12:17:32 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2010-08-17 12:17:31 ----A---- C:\WINDOWS\system32\cncisco.dll
2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCL150.DLL
2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCI150.DLL
2010-08-17 12:17:30 ----A---- C:\WINDOWS\system32\CNCC150.DLL
2010-08-17 12:17:26 ----HD---- C:\Program Files\CanonBJ
2010-08-17 12:16:44 ----D---- C:\Program Files\CCleaner
2010-08-17 12:10:18 ----D---- C:\Program Files\SubEdit-Player
2010-08-17 12:09:46 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Macromedia
2010-08-17 12:09:46 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Adobe
2010-08-17 12:08:54 ----D---- C:\Program Files\Netlog Uploader
2010-08-17 12:08:45 ----D---- C:\Program Files\Netlog Music Tool
2010-08-17 12:08:31 ----D---- C:\Program Files\Netlog 24
2010-08-17 12:08:31 ----A---- C:\WINDOWS\system32\Netlog24Uninstaller.exe
2010-08-17 12:07:56 ----D---- C:\Program Files\NPCC3
2010-08-17 12:07:29 ----D---- C:\WINDOWS\system32\Adobe
2010-08-17 12:06:28 ----A---- C:\WINDOWS\system32\msonpmon.dll
2010-08-17 12:05:19 ----D---- C:\Program Files\Microsoft Works
2010-08-17 12:05:11 ----D---- C:\Program Files\MSBuild
2010-08-17 12:04:47 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-17 12:04:47 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-17 12:01:50 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\skypePM
2010-08-17 12:01:32 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla
2010-08-17 12:00:59 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Gadu-Gadu 10
2010-08-17 11:59:59 ----D---- C:\WINDOWS\SHELLNEW
2010-08-17 11:59:18 ----D---- C:\Program Files\Microsoft Office
2010-08-17 11:59:17 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
2010-08-17 11:58:57 ----RHD---- C:\MSOCache
2010-08-17 11:58:16 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Skype
2010-08-17 11:58:07 ----D---- C:\Program Files\Skype
2010-08-17 11:58:06 ----D---- C:\Program Files\Common Files\Skype
2010-08-17 11:58:02 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Skype
2010-08-17 11:57:27 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\WinRAR
2010-08-17 11:57:22 ----D---- C:\Program Files\WinRAR
2010-08-17 11:57:04 ----D---- C:\Program Files\Mozilla Firefox
2010-08-17 11:56:48 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2010-08-17 11:56:47 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2010-08-17 11:56:38 ----D---- C:\WINDOWS\Logs
2010-08-17 11:56:31 ----D---- C:\Program Files\Winamp Detect
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxsfs.dll
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\pxafs.dll
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2010-08-17 11:56:23 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\vxblock.dll
2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxwave.dll
2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxmas.dll
2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\pxdrv.dll
2010-08-17 11:56:22 ----N---- C:\WINDOWS\system32\px.dll
2010-08-17 11:56:22 ----D---- C:\Program Files\Winamp
2010-08-17 11:56:22 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Winamp
2010-08-17 11:55:57 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\TeamViewer
2010-08-17 11:55:49 ----D---- C:\Program Files\TeamViewer
2010-08-17 11:54:41 ----D---- C:\Program Files\VS Revo Group
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pndx5032.dll
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pndx5016.dll
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\pncrt.dll
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-08-17 11:54:26 ----A---- C:\WINDOWS\system32\msvcp71.dll
2010-08-17 11:54:25 ----D---- C:\Program Files\Real Alternative
2010-08-17 11:53:41 ----D---- C:\Program Files\PowerISO
2010-08-17 11:53:08 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-08-17 11:53:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$
2010-08-17 11:52:41 ----D---- C:\Program Files\Google
2010-08-17 11:51:54 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Malwarebytes
2010-08-17 11:51:50 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-08-17 11:51:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-08-17 11:51:49 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
2010-08-17 11:51:49 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-08-17 11:51:22 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Sun
2010-08-17 11:51:21 ----D---- C:\Program Files\Common Files\Java
2010-08-17 11:51:13 ----A---- C:\WINDOWS\system32\unrar.dll
2010-08-17 11:51:12 ----A---- C:\WINDOWS\avisplitter.ini
2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-08-17 11:51:11 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-08-17 11:51:10 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-08-17 11:51:10 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-08-17 11:51:07 ----D---- C:\Program Files\K-Lite Codec Pack
2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\javaws.exe
2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\javaw.exe
2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\java.exe
2010-08-17 11:50:56 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-08-17 11:50:41 ----D---- C:\Program Files\Java
2010-08-17 11:50:23 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Sun
2010-08-17 11:49:56 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
2010-08-17 11:49:40 ----D---- C:\Program Files\Gadu-Gadu 10
2010-08-17 11:49:12 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\FastStone
2010-08-17 11:49:06 ----D---- C:\Program Files\FastStone Image Viewer
2010-08-17 11:48:15 ----D---- C:\Program Files\CWK
2010-08-17 11:47:21 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\foobar2000
2010-08-17 11:47:01 ----D---- C:\Program Files\foobar2000
2010-08-17 11:46:54 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2010-08-17 11:46:52 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2010-08-17 11:46:46 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2010-08-17 11:46:45 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2010-08-17 11:46:43 ----D---- C:\WINDOWS\system32\drivers\Avg
2010-08-17 11:46:36 ----D---- C:\Program Files\AVG
2010-08-17 11:46:36 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\avg9
2010-08-17 11:45:17 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
2010-08-17 11:45:10 ----D---- C:\Program Files\Common Files\Adobe
2010-08-17 11:45:10 ----D---- C:\Program Files\Adobe
2010-08-17 11:43:05 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2010-08-17 11:41:11 ----D---- C:\WINDOWS\system32\RTCOM
2010-08-17 11:41:01 ----A---- C:\WINDOWS\vncutil.exe
2010-08-17 11:41:01 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-08-17 11:41:00 ----A---- C:\WINDOWS\SkyTel.exe
2010-08-17 11:40:59 ----A---- C:\WINDOWS\RtlUpd.exe
2010-08-17 11:40:56 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-08-17 11:40:55 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-08-17 11:40:53 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-08-17 11:40:53 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-08-17 11:40:47 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-08-17 11:40:46 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2010-08-17 11:40:46 ----A---- C:\WINDOWS\MicCal.exe
2010-08-17 11:40:42 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2010-08-17 11:40:41 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-08-17 11:40:41 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-08-17 11:40:33 ----A---- C:\WINDOWS\RtlExUpd.dll
2010-08-17 11:40:27 ----D---- C:\Program Files\Common Files\InstallShield
2010-08-17 11:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB835221WXP$
2010-08-17 11:39:05 ----A---- C:\WINDOWS\system32\igfxres.dll
2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igxprd32.dll
2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxtray.exe
2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxpers.exe
2010-08-17 11:37:50 ----A---- C:\WINDOWS\system32\igfxexps.dll
2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igxpdv32.dll
2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igfxsrvc.dll
2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\igfxext.exe
2010-08-17 11:37:49 ----A---- C:\WINDOWS\system32\drivers\igxpmp32.sys
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igxpgd32.dll
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\iglicd32.dll
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igldev32.dll
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxzoom.exe
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxdev.dll
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxCoIn_v4926.dll
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\igfxcfg.exe
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\hkcmd.exe
2010-08-17 11:37:48 ----A---- C:\WINDOWS\system32\hccutils.dll
2010-08-17 11:37:47 ----D---- C:\WINDOWS\system32\Lang
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igxpun.exe
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igxpdx32.dll
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxress.dll
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxpph.dll
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\igfxdo.dll
2010-08-17 11:37:47 ----A---- C:\WINDOWS\system32\difxapi.dll
2010-08-17 11:37:20 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2010-08-17 11:37:20 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys
2010-08-17 11:37:19 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-17 11:37:19 ----D---- C:\Program Files\Realtek
2010-08-17 11:36:35 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-08-17 11:36:33 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-08-17 11:36:33 ----D---- C:\Program Files\Intel
2010-08-17 11:36:33 ----A---- C:\WINDOWS\system32\CSVer.dll
2010-08-17 11:36:15 ----D---- C:\Intel
2010-08-17 11:32:56 ----D---- C:\Documents and Settings\Mama\Dane aplikacji\Identities
2010-08-17 11:32:54 ----HD---- C:\Program Files\Uninstall Information
2010-08-17 11:32:51 ----ASH---- C:\Documents and Settings\Mama\Dane aplikacji\desktop.ini
2010-08-17 11:32:50 ----SD---- C:\Documents and Settings\Mama\Dane aplikacji\Microsoft
2010-08-17 11:32:00 ----D---- C:\WINDOWS\SoftwareDistribution
2010-08-17 11:31:59 ----D---- C:\WINDOWS\Prefetch
2010-08-17 11:31:58 ----SD---- C:\WINDOWS\system32\Microsoft
2010-08-17 11:31:58 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-17 11:28:44 ----D---- C:\WINDOWS\system32\xircom
2010-08-17 11:28:44 ----D---- C:\Program Files\xerox
2010-08-17 11:28:44 ----D---- C:\Program Files\microsoft frontpage
2010-08-17 11:28:32 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-17 11:28:22 ----RASH---- C:\MSDOS.SYS
2010-08-17 11:28:22 ----RASH---- C:\IO.SYS
2010-08-17 11:28:22 ----A---- C:\WINDOWS\control.ini
2010-08-17 11:28:22 ----A---- C:\CONFIG.SYS
2010-08-17 11:28:22 ----A---- C:\AUTOEXEC.BAT
2010-08-17 11:28:10 ----A---- C:\WINDOWS\OEWABLog.txt
2010-08-17 11:28:06 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-08-17 11:27:20 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-08-17 11:27:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-08-17 11:27:13 ----HD---- C:\Program Files\WindowsUpdate
2010-08-17 11:27:09 ----D---- C:\Program Files\Usługi online
2010-08-17 11:26:50 ----D---- C:\WINDOWS\system32\DirectX
2010-08-17 11:26:41 ----A---- C:\WINDOWS\system32\atrace.dll
2010-08-17 11:26:37 ----A---- C:\WINDOWS\system32\desktop.ini
2010-08-17 11:26:37 ----A---- C:\WINDOWS\desktop.ini
2010-08-17 11:26:28 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-08-17 11:26:27 ----A---- C:\WINDOWS\system32\acctres.dll
2010-08-17 11:26:26 ----D---- C:\Program Files\Common Files\Services
2010-08-17 11:26:22 ----SD---- C:\WINDOWS\Tasks
2010-08-17 11:26:22 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-08-17 11:26:21 ----D---- C:\Program Files\Common Files\MSSoap
2010-08-17 11:26:16 ----D---- C:\WINDOWS\srchasst
2010-08-17 11:26:15 ----D---- C:\WINDOWS\system32\Macromed
2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-17 11:26:12 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wups.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-17 11:26:11 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-17 11:26:10 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-17 11:26:05 ----D---- C:\Program Files\Movie Maker
2010-08-17 11:25:40 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-08-17 11:25:39 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\fltMc.exe
2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-17 11:25:34 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2010-08-17 11:25:33 ----D---- C:\WINDOWS\system32\Restore
2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\srclient.dll
2010-08-17 11:25:33 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-17 11:25:32 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-17 11:25:31 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-17 11:25:27 ----D---- C:\Program Files\NetMeeting
2010-08-17 11:25:27 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-17 11:25:27 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-17 11:25:25 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-17 11:25:25 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-17 11:25:23 ----D---- C:\Program Files\Outlook Express
2010-08-17 11:25:23 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-17 11:25:22 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-17 11:25:21 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-17 11:25:21 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-17 11:25:14 ----D---- C:\Program Files\Common Files\System
2010-08-17 11:25:12 ----D---- C:\Program Files\Internet Explorer
2010-08-17 11:24:34 ----D---- C:\Program Files\ComPlus Applications
2010-08-17 11:24:32 ----A---- C:\WINDOWS\vbaddin.ini
2010-08-17 11:24:32 ----A---- C:\WINDOWS\vb.ini
2010-08-17 11:24:28 ----D---- C:\WINDOWS\Registration
2010-08-17 11:24:11 ----D---- C:\Program Files\Windows Media Connect 2
2010-08-17 11:24:10 ----D---- C:\Program Files\Windows Media Player
2010-08-17 11:24:08 ----D---- C:\Program Files\Messenger
2010-08-17 11:24:03 ----D---- C:\Program Files\MSN Gaming Zone
2010-08-17 11:24:03 ----A---- C:\WINDOWS\system32\write.exe
2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\hticons.dll
2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avwav.dll
2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-08-17 11:23:50 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-08-17 11:23:49 ----A---- C:\WINDOWS\system32\winchat.exe
2010-08-17 11:23:40 ----A---- C:\WINDOWS\system32\getuname.dll
2010-08-17 11:23:40 ----A---- C:\WINDOWS\system32\charmap.exe
2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\winmine.exe
2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\sol.exe
2010-08-17 11:23:39 ----A---- C:\WINDOWS\system32\calc.exe
2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\reset.exe
2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-08-17 11:23:38 ----A---- C:\WINDOWS\system32\freecell.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tskill.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\tscon.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\shadow.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\regini.exe
2010-08-17 11:23:37 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\msg.exe
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\logoff.exe
2010-08-17 11:23:36 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-08-17 11:23:29 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-17 11:23:27 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-17 11:23:26 ----D---- C:\Program Files\Windows NT
2010-08-17 11:23:26 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-17 11:23:25 ----A---- C:\WINDOWS\system32\spider.exe
2010-08-17 11:23:25 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\tsgqec.dll
2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-08-17 11:23:24 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-08-17 11:23:23 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2010-08-17 11:23:23 ----A---- C:\WINDOWS\system32\aaclient.dll
2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-17 11:23:22 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-08-17 11:23:21 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-08-17 11:23:20 ----D---- C:\WINDOWS\system32\MsDtc
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-17 11:23:20 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-17 11:23:19 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-17 11:23:18 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-17 11:23:18 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-17 11:23:17 ----D---- C:\WINDOWS\system32\Com
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-17 11:23:17 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\stclient.dll
2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-17 11:23:16 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-17 11:23:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-17 11:23:15 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-17 11:23:14 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-17 11:23:06 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-17 11:23:05 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-17 11:23:02 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-08-17 11:23:01 ----A---- C:\WINDOWS\system32\drivers\termdd.sys

======List of files/folders modified in the last 1 months======

2010-08-17 13:19:04 ----A---- C:\WINDOWS\system.ini
2010-08-17 12:00:35 ----A---- C:\WINDOWS\win.ini
2010-08-17 11:27:55 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-08-17 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-08-17 29584]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-08-17 243024]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2010-04-12 59388]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-11-03 5940736]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-07-28 143360]
R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 V0420VID;Live! Cam Vista IM (VF0420); C:\WINDOWS\system32\DRIVERS\V0420Vid.sys [2007-05-31 99648]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-08 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-08 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-08-17 921952]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-08-17 308136]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-17 153376]
R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe [2010-08-21 181312]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------
[/log]

[color="#0000ff"][b]RSIT info.txt[/b][/color]
[log]info.txt logfile of random's system information tool 1.08 2010-08-27 20:02:50

======Uninstall list======

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin
Adobe Reader 9.3 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A93000000001}
Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL
Canon MP Navigator 2.0-->"C:\Program Files\Canon\MP Navigator 2.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.0\uninst.ini
Canon MP150-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{CA9A3609-3ECC-4574-8824-A8161A71A603}\DelDrv.exe" /U:{CA9A3609-3ECC-4574-8824-A8161A71A603} /L0x0015
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe Uninst.ini uinstrsc.dll
Canon Utilities Easy-PhotoPrint-->C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe uninst.ini
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Creative Live! Cam Vista IM Driver (1.00.03.0000)-->C:\WINDOWS\CtDrvIns.exe -uninstall -script VF0420.uns -unsext NT -plugin V0420Pin.dll -pluginres CtCamPin.crl
Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x9 /remove
CWK (Czasowy Wyłącznik Komputera)-->"C:\Program Files\CWK\CWK.exe" /uninstall
FastStone Image Viewer 4.2-->C:\Program Files\FastStone Image Viewer\uninst.exe
foobar2000 v1.0.3-->"C:\Program Files\foobar2000\uninstall.exe" _?=C:\Program Files\foobar2000
Fun Morph 3.0-->"C:\Program Files\Zeallsoft\Fun Morph\unins000.exe"
Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe
GIMP 2.6.10-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
Java(TM) 6 Update 18-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216018FF}
K-Lite Codec Pack 6.0.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office Access MUI (Polish) 2007-->MsiExec.exe /X{90120000-0015-0415-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Groove MUI (Polish) 2007-->MsiExec.exe /X{90120000-00BA-0415-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Polish) 2007-->MsiExec.exe /X{90120000-0044-0415-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Polish) 2007-->MsiExec.exe /X{90120000-001A-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Polish) 2007-->MsiExec.exe /X{90120000-0019-0415-0000-0000000FF1CE}
Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Mozilla Firefox (3.6.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Natalia PolChat Client Application-->"C:\Program Files\NPCC3\unins000.exe"
Netlog 24-->C:\WINDOWS\system32\Netlog24Uninstaller.exe
Netlog Music Tool-->C:\Program Files\Netlog Music Tool\Uninstaller.exe
Photodex Presenter-->C:\Program Files\Photodex Presenter\uninst.exe
Photoshine 2.0-->"C:\Program Files\Photoshine\unins000.exe"
Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
ProShow Gold-->C:\Program Files\Photodex\ProShowGold\proshow.exe . -u
Real Alternative 2.0.2-->"C:\Program Files\Real Alternative\unins000.exe"
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly
Revo Uninstaller 1.83-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
SHOUTcast Source DSP 1.9.0 (remove only)-->C:\Program Files\Winamp\uninst-dsp.exe
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe"
TeamViewer 5-->C:\Program Files\TeamViewer\Version5\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe"

======System event log======

Computer Name: DOM-717C9CA7F59
Event Code: 15007
Message: Pomyślnie dodano rezerwację przestrzeni nazw, identyfikowaną przez prefiks adresu URL http://*:2869/.

Record Number: 5
Source Name: HTTP
Time Written: 20100817112711.000000+120
Event Type: informacje
User:

Computer Name: DOM-717C9CA7F59
Event Code: 6011
Message: Nazwa NetBIOS i nazwa hosta DNS tego komputera uległy zmianie z MACHINENAME na DOM-717C9CA7F59.

Record Number: 4
Source Name: EventLog
Time Written: 20100817112223.000000+120
Event Type: informacje
User:

Computer Name: MACHINENAME
Event Code: 2
Message: Podczas sprawdzania, czy \Device\Serial0 jest rzeczywiście portem szeregowym, wykryto kolejkę typu fifo. Zostanie ona użyta.

Record Number: 3
Source Name: Serial
Time Written: 20100817131809.000000+120
Event Type: informacje
User:

Computer Name: MACHINENAME
Event Code: 6005
Message: Uruchomiono usługę Dziennik zdarzeń.

Record Number: 2
Source Name: EventLog
Time Written: 20100817131751.000000+120
Event Type: informacje
User:

Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 3 Uniprocessor Free.

Record Number: 1
Source Name: EventLog
Time Written: 20100817131751.000000+120
Event Type: informacje
User:

=====Application event log=====

Computer Name: DOM-717C9CA7F59
Event Code: 1000
Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 5
Source Name: LoadPerf
Time Written: 20100817112424.000000+120
Event Type: informacje
User:

Computer Name: DOM-717C9CA7F59
Event Code: 1000
Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 4
Source Name: LoadPerf
Time Written: 20100817112421.000000+120
Event Type: informacje
User:

Computer Name: DOM-717C9CA7F59
Event Code: 1000
Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 3
Source Name: LoadPerf
Time Written: 20100817112258.000000+120
Event Type: informacje
User:

Computer Name: DOM-717C9CA7F59
Event Code: 1000
Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 2
Source Name: LoadPerf
Time Written: 20100817112242.000000+120
Event Type: informacje
User:

Computer Name: DOM-717C9CA7F59
Event Code: 1000
Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 1
Source Name: LoadPerf
Time Written: 20100817112230.000000+120
Event Type: informacje
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 22 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=1601
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
[/log]

Nasi forumowi eksperci, liczę na Was ;)

Sohei
komentarz
komentarz

szczerzę mówiąc nie widać tutaj zbytnio śladów infekcji.
Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url]
Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url]
Co znajda usun po czym daj logi z usuwania + nowy log OTL

Zobaczymy czy może programy coś wykryją

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.