x-kom hosting

Strony www sie nie wczytuja

Sulski
utworzono
utworzono

Witam , za kazdym razem po formacie i instalacji windowsa jestem zmuszony prosic o pomoc tutaj na forum, problem jest zwiazany z internetem, mianowicie strony www nie wczytuja sie od razu musze parokrotnie odswiezyc aby zaskoczylo ,albo wczytuja sie do pewnego momentu i trzeba troche poodswiezac ponownie, dzieje sie to tylko gdy zainstaluje system XP i niewazne czy czysta kopie czy jego modyfikacje. Zatem prosze o sprawdzenie logow i o pokierowanie mnie jak moge temu zaradzic. Musze dodac ze potrzebuje teraz miec wlasnie XP , wiec przeinstalowanie na inny system nie wchodzi w gre. Z gory dziekuje za czas osoby ktora postanowi sie przyjrzec mojemu problemowi.

Teraz czas na logi :

OTL wklejam obydwa logi :

[log]OTL logfile created on: 2010-11-17 11:31:21 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 27,50 Gb Free Space | 70,39% Space Free | Partition Type: NTFS
Drive D: | 193,82 Gb Total Space | 135,01 Gb Free Space | 69,66% Space Free | Partition Type: NTFS

Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe
PRC - [2010-10-08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-12-18 01:30:48 | 000,039,424 | ---- | M] (Nullsoft) -- C:\Program Files\Winamp\winampa.exe
PRC - [2009-11-28 00:22:46 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-11-28 00:22:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-11-20 20:32:14 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2009-11-19 11:43:58 | 001,592,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009-10-30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2008-06-02 21:44:28 | 001,660,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\Msmsgs.exe
PRC - [2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 12:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-15 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2006-08-02 22:12:00 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2005-01-17 07:43:46 | 000,084,480 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
PRC - [2004-09-19 19:27:44 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe
PRC - [2002-12-27 15:54:06 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wisptis.exe
PRC - [2001-11-15 18:17:36 | 000,196,608 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe
MOD - [2009-11-28 00:24:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-11-28 00:22:43 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-11-26 20:26:31 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-11-26 20:26:30 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-11-26 20:25:24 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-11-26 20:25:19 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2009-11-19 20:08:36 | 026,339,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2009-11-19 11:43:51 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2009-11-19 11:43:22 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2009-02-09 11:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2009-01-12 16:19:02 | 000,011,000 | ---- | M] (O&K Software) -- C:\Program Files\Prio\prio.dll
MOD - [2008-04-15 12:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-15 12:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-15 12:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 12:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 12:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 12:00:00 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-15 12:00:00 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll
MOD - [2008-04-15 12:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 12:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-15 12:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-15 12:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 12:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-15 12:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 12:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-15 12:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 12:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-15 12:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll
MOD - [2008-04-15 12:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-09-06 12:38:06 | 000,071,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009-01-12 16:18:54 | 000,005,120 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Prio\prio_svc.exe -- (prio_svc)
SRV - [2008-03-21 00:55:58 | 000,071,680 | ---- | M] (zett42) [Disabled | Stopped] -- C:\Program Files\FlashFolder\FlashFolder.exe -- (FlashFolder)
SRV - [2007-11-14 21:46:00 | 000,131,072 | ---- | M] (Brio) [Disabled | Stopped] -- C:\Program Files\FolderSize\FolderSizeSvc.exe -- (FolderSize)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-11-28 00:26:05 | 000,069,168 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2009-11-28 00:26:03 | 000,217,128 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5)
DRV - [2009-11-28 00:26:02 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132)
DRV - [2009-11-28 00:25:59 | 000,076,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124)
DRV - [2009-11-28 00:25:58 | 000,209,200 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5)
DRV - [2009-11-28 00:25:23 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2009-11-28 00:25:22 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvrd32.sys -- (nvrd32)
DRV - [2009-11-21 03:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009-09-28 20:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2006-08-18 06:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005-05-17 10:45:12 | 000,076,288 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA nForce(tm)
DRV - [2005-05-17 10:45:08 | 000,092,800 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2005-04-05 20:22:30 | 000,012,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-04-05 20:22:28 | 000,033,536 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2008-04-15 12:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\system32\FindeXer.dll (A Part of the LessCliX Suite by Alianyn)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe (HP)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [Resume copy] C:\WINDOWS\copyfstq.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKCU..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - Startup: C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuEjectPC = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.241.79.37 192.168.1.100
O20 - AppInit_DLLs: (prio.dll) - C:\Program Files\Prio\prio.dll (O&K Software)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (%windir%\\system32\\LogonuiZ.exe) - C:\WINDOWS\\system32\\LogonuiZ.exe ()
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\hp deskjet 840c series
[2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-17 01:10:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit\win2k_xp
[2010-11-13 20:08:37 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-13 20:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Downloads
[2010-11-13 19:57:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Identities
[2010-11-13 19:49:04 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-11-13 19:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader
[2010-11-13 19:43:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2010-11-13 19:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2010-11-13 16:36:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Apple Computer
[2010-11-13 16:32:30 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-11-13 16:32:30 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010-11-13 16:32:30 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010-11-13 16:32:30 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Real
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Real
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2010-11-13 15:39:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vlc
[2010-11-13 15:20:30 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010-11-13 15:15:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer
[2010-11-13 12:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-11-13 09:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010-11-12 15:11:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\WinRAR
[2010-11-12 15:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip
[2010-11-12 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010-11-12 02:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Damian Pasternak
[2010-11-11 14:09:59 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2010-11-11 14:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010-11-11 14:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 14:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 12:01:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2010-11-11 12:00:54 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-11-11 12:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-11-11 12:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-11-11 12:00:38 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010-11-11 12:00:38 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010-11-11 12:00:38 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010-11-11 12:00:38 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-11-11 12:00:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-11-11 12:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-11-11 11:58:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-11-11 11:58:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-11-11 11:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-11-11 11:53:25 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-11-11 11:48:06 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll
[2010-11-11 11:48:06 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll
[2010-11-11 11:48:06 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll
[2010-11-11 11:48:06 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll
[2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll
[2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll
[2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll
[2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll
[2010-11-11 11:48:02 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack
[2010-11-11 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Media Player Classic
[2010-11-11 11:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2010-11-11 11:41:28 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2010-11-11 11:41:28 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2010-11-11 11:41:28 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2010-11-11 11:41:28 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2010-11-11 11:41:28 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2010-11-11 11:41:28 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2010-11-11 11:41:28 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2010-11-11 11:41:28 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2010-11-11 11:41:28 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2010-11-11 11:41:28 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2010-11-11 11:41:28 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2010-11-11 11:41:28 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Winamp
[2010-11-11 11:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\cache
[2010-11-11 11:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2010-11-11 11:38:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-11-11 11:38:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-11-11 11:38:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-11-11 11:38:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Web
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\inf
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Opera
[2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera
[2010-11-11 11:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010-11-11 11:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Macromedia
[2010-11-11 11:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Adobe
[2010-11-11 11:29:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\PrivacIE
[2010-11-11 11:25:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-11-11 11:24:47 | 000,454,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\CapabilityTable.exe
[2010-11-11 11:24:41 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardtr.dll
[2010-11-11 11:24:41 | 000,067,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzht.dll
[2010-11-11 11:24:41 | 000,065,536 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzhc.dll
[2010-11-11 11:24:41 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidtr.dll
[2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzht.dll
[2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzhc.dll
[2010-11-11 11:24:41 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvtr.dll
[2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzht.dll
[2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzhc.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzht.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzhc.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiontr.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionth.dll
[2010-11-11 11:24:40 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardde.dll
[2010-11-11 11:24:40 | 000,080,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpt.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardit.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfr.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardes.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardel.dll
[2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsl.dll
[2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardptb.dll
[2010-11-11 11:24:40 | 000,077,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardru.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardno.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardnl.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardcs.dll
[2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardth.dll
[2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhu.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsv.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpl.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfi.dll
[2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsk.dll
[2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardda.dll
[2010-11-11 11:24:40 | 000,075,264 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardeng.dll
[2010-11-11 11:24:40 | 000,074,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhe.dll
[2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardko.dll
[2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardja.dll
[2010-11-11 11:24:40 | 000,021,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidel.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidru.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidptb.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpt.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidnl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidit.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhu.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfr.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaides.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidde.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidth.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsv.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsk.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidno.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfi.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaideng.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidda.dll
[2010-11-11 11:24:40 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhe.dll
[2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidko.dll
[2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidja.dll
[2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpt.dll
[2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvde.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvth.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsv.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsk.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvru.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvptb.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvno.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvnl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvit.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhu.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhe.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfr.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfi.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSves.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSveng.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvel.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvda.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvcs.dll
[2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvko.dll
[2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvja.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsv.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsk.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionru.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionptb.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpt.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionno.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionnl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionko.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionja.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionit.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhu.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhe.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfr.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfi.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiones.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioneng.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionel.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionde.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionda.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioncs.dll
[2010-11-11 11:24:39 | 000,400,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizard.dll
[2010-11-11 11:24:39 | 000,084,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidservice.exe
[2010-11-11 11:24:39 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardEnu.dll
[2010-11-11 11:24:39 | 000,073,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardar.dll
[2010-11-11 11:24:39 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidcs.dll
[2010-11-11 11:24:39 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidEnu.dll
[2010-11-11 11:24:39 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidar.dll
[2010-11-11 11:24:39 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvEnu.dll
[2010-11-11 11:24:39 | 000,005,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvar.dll
[2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionEnu.dll
[2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionar.dll
[2010-11-11 11:23:56 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2010-11-11 11:23:55 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2010-11-11 11:23:54 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2010-11-11 11:23:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-11-11 11:21:55 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2010-11-11 11:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager
[2010-11-11 11:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack
[2010-11-11 11:21:46 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2010-11-11 11:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2010-11-11 11:21:45 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl
[2010-11-11 11:21:45 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2010-11-11 11:21:44 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2010-11-11 11:21:44 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe
[2010-11-11 11:21:44 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-11-11 11:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-11-11 11:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation
[2010-11-11 11:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2010-11-11 11:20:11 | 013,602,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2010-11-11 11:20:11 | 011,374,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2010-11-11 11:20:11 | 010,235,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010-11-11 11:20:11 | 004,038,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2010-11-11 11:20:11 | 002,259,560 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2010-11-11 11:20:11 | 001,989,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2010-11-11 11:20:11 | 001,056,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2010-11-11 11:20:11 | 000,069,632 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-11-11 11:20:09 | 006,282,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010-11-11 11:20:06 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010-11-11 11:19:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient
[2010-11-11 11:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Identities
[2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moje obrazy
[2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moja muzyka
[2010-11-11 11:18:52 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ulubione
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:18:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sulski\SendTo
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Recent
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\IETldCache
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Cookies
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Szablony
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\PrintHood
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\NetHood
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Sun
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\nss71F.tmp
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Microsoft
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Menu Start
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Finder Bar
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP
[2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar
[2010-11-11 11:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\FlashFolder
[2010-11-11 11:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\FolderSize
[2010-11-11 11:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\Command Prompt Explorer Bar
[2010-11-11 11:14:36 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010-11-11 11:14:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-11-11 11:14:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-11-11 11:12:59 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
[2010-11-11 11:12:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Gry
[2010-11-11 11:12:53 | 000,880,640 | ---- | C] (Xentient) -- C:\WINDOWS\System32\thumbs.dll
[2010-11-11 11:12:53 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\UrlFileShellExt.dll
[2010-11-11 11:12:53 | 000,069,632 | ---- | C] (Villain) -- C:\WINDOWS\System32\TaskbarForms.exe
[2010-11-11 11:12:53 | 000,053,248 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTFileTools.dll
[2010-11-11 11:12:53 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTViewModeButton.dll
[2010-11-11 11:12:53 | 000,020,480 | ---- | C] (Quizo) -- C:\WINDOWS\System32\OptionButton.dll
[2010-11-11 11:12:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Unlocker
[2010-11-11 11:12:52 | 000,488,448 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MIPSE.dll
[2010-11-11 11:12:52 | 000,414,208 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MPEISE.dll
[2010-11-11 11:12:52 | 000,387,584 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MAISE.dll
[2010-11-11 11:12:52 | 000,185,856 | ---- | C] (A Part of the LessCliX Suite by Alianyn) -- C:\WINDOWS\System32\FindeXer.dll
[2010-11-11 11:12:52 | 000,146,672 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\FolderBackgroundShellExt.dll
[2010-11-11 11:12:52 | 000,016,792 | ---- | C] (NTWind Software) -- C:\WINDOWS\System32\hstart.exe
[2010-11-11 11:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\locale
[2010-11-11 11:12:51 | 001,312,256 | ---- | C] (Softpointer Inc) -- C:\WINDOWS\System32\AudioShellExt.dll
[2010-11-11 11:12:51 | 000,151,552 | ---- | C] (Minimalist) -- C:\WINDOWS\System32\BCToolbar.dll
[2010-11-11 11:12:51 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\AnyFileShellExt.dll
[2010-11-11 11:12:51 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\CreateNewItemButton.dll
[2010-11-11 11:12:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\books
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zapodaj Uploader
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AeroSnap
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Aero shake
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AbiSuite2
[2010-11-11 11:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinFlip
[2010-11-11 11:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\WindowZ
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\WinDirStat
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance OneStep
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Thumbnail Resize
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Taskix
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TaskbarEx
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Stack
[2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\SpiritPyre Extensions
[2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\shutoffxp
[2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Shellka
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\RightClick
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Q-Dir
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\QDAcces
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\PNotes
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Placesbar Constructor
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Perlovga Removal Tool
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\OxelonMedia
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MimeTeXeditor
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MaZZicK
[2010-11-11 11:12:36 | 000,000,000 | ---D | C] -- C:\Program Files\LogonZ Designer
[2010-11-11 11:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\LaunchTab
[2010-11-11 11:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ikony paska narzędzi
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconZ
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconViewer
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google Hacks
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\GG Lite
[2010-11-11 11:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\FreeRapiD-0.82
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Reader
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fadebar
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Everything Search Engine
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\EdgeSwap
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Drive Space Indicator
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DIPS
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DesktopListViewv1.0
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Cymes Desktop Changer 1.7
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Contextaware
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Console
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Blue Onion Software
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\BESTplayer
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Aqua Dock
[2010-11-11 11:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010-11-11 11:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\VisualTaskTips
[2010-11-11 11:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\VPX.PL Uploader
[2010-11-11 11:12:20 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Switch Off
[2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\StyleFolder
[2010-11-11 11:12:17 | 000,172,032 | ---- | C] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe
[2010-11-11 11:12:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2010-11-11 11:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\LClock
[2010-11-11 11:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Quizo
[2010-11-11 11:12:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer
[2010-11-11 11:12:00 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2010-11-11 11:12:00 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2010-11-11 11:11:54 | 000,000,000 | ---D | C] -- C:\Program Files\QT Lite
[2010-11-11 11:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Prio
[2010-11-11 11:11:48 | 000,000,000 | ---D | C] -- C:\Program Files\RegCompact Pro
[2010-11-11 11:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\System
[2010-11-11 11:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-11-11 11:11:40 | 000,526,184 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XceedCry.dll
[2010-11-11 11:11:40 | 000,456,536 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XCEEDZIP.DLL
[2010-11-11 11:11:39 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Magician
[2010-11-11 11:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2010-11-11 11:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2010-11-11 11:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-11-11 11:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2010-11-11 11:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2010-11-11 11:11:09 | 000,000,000 | ---D | C] -- C:\Program Files\AbiWord
[2010-11-11 11:10:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-11-11 11:10:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010-11-11 11:10:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-11-11 11:10:43 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010-11-11 11:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010-11-11 11:08:53 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010-11-11 11:07:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2010-11-11 11:07:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-11-11 11:07:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2010-11-11 11:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-11-11 11:06:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-11-11 11:06:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-11-11 11:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-11-11 11:06:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-11-11 11:06:03 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-11-11 11:05:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-11-11 11:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-11-11 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-11-11 11:05:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-11-11 11:05:00 | 000,774,144 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.scr
[2010-11-11 11:04:56 | 012,360,192 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.exe
[2010-11-11 11:04:55 | 000,848,896 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.scr
[2010-11-11 11:04:54 | 002,529,280 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.exe
[2010-11-11 11:04:54 | 000,841,728 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.scr
[2010-11-11 11:04:50 | 010,203,136 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.exe
[2010-11-11 11:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010-11-11 11:04:43 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010-11-11 11:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-11-11 11:04:20 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2010-11-11 11:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-11-11 11:04:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-11-11 11:04:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-11-17 09:40:43 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010-11-17 09:39:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-17 01:11:33 | 000,000,800 | ---- | M] () -- C:\WINDOWS\hpinfo.lnk
[2010-11-16 16:55:34 | 000,109,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-16 09:57:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-16 00:14:26 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk
[2010-11-14 09:10:19 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-13 20:04:14 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2010-11-13 19:43:40 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk
[2010-11-13 15:20:45 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2010-11-13 12:33:46 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk
[2010-11-12 15:08:55 | 000,001,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk
[2010-11-12 02:18:25 | 000,000,845 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk
[2010-11-11 14:09:32 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-11 14:09:32 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-11 12:00:58 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010-11-11 11:48:27 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk
[2010-11-11 11:48:27 | 000,000,949 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk
[2010-11-11 11:48:27 | 000,000,893 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk
[2010-11-11 11:41:31 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-11 11:40:01 | 000,454,962 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-11 11:40:01 | 000,398,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-11 11:40:01 | 000,077,594 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-11 11:40:01 | 000,061,074 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-11 11:38:23 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-11-11 11:38:23 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-11 11:32:33 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2010-11-11 11:28:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-11 11:21:53 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2010-11-11 11:19:03 | 000,001,474 | ---- | M] () -- C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk
[2010-11-11 11:17:35 | 000,000,315 | ---- | M] () -- C:\WINDOWS\System32\ResHacker.ini
[2010-11-11 11:13:41 | 000,001,314 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-11 11:12:17 | 000,172,032 | ---- | M] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe
[2010-11-11 11:12:17 | 000,053,812 | ---- | M] () -- C:\WINDOWS\uninst-vj.exe
[2010-11-11 11:12:14 | 000,001,958 | ---- | M] () -- C:\WINDOWS\uninstall.ini
[2010-11-11 11:12:13 | 000,082,898 | ---- | M] () -- C:\WINDOWS\uninstall.exe
[2010-11-11 11:10:38 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010-11-11 11:10:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-11-11 11:10:38 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010-11-11 11:08:31 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:08:24 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-11 11:08:24 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-11 11:08:23 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-11 11:07:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-11 11:05:27 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-17 01:11:33 | 000,000,800 | ---- | C] () -- C:\WINDOWS\hpinfo.lnk
[2010-11-16 00:14:26 | 000,000,661 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk
[2010-11-13 20:04:14 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2010-11-13 19:43:40 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk
[2010-11-13 15:41:28 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-13 15:20:45 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2010-11-13 12:33:46 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk
[2010-11-12 15:08:55 | 000,001,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk
[2010-11-12 02:18:25 | 000,000,845 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk
[2010-11-11 14:09:32 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-11 14:09:32 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-11 12:00:58 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010-11-11 12:00:53 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-11 12:00:35 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-11-11 12:00:34 | 000,792,576 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE
[2010-11-11 11:57:37 | 000,109,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-11 11:56:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2010-11-11 11:56:51 | 000,001,314 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-11 11:48:27 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk
[2010-11-11 11:48:27 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk
[2010-11-11 11:48:27 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk
[2010-11-11 11:48:24 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl
[2010-11-11 11:48:09 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010-11-11 11:48:08 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010-11-11 11:48:08 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2010-11-11 11:48:06 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010-11-11 11:48:05 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-11 11:48:03 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl
[2010-11-11 11:41:31 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-11 11:38:23 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-11-11 11:38:23 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-11 11:32:32 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2010-11-11 11:28:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-11 11:24:39 | 000,249,344 | ---- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe
[2010-11-11 11:24:39 | 000,223,232 | ---- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe
[2010-11-11 11:23:56 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2010-11-11 11:23:54 | 000,001,231 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2010-11-11 11:22:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-11-11 11:21:53 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2010-11-11 11:21:52 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010-11-11 11:21:46 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav
[2010-11-11 11:21:45 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010-11-11 11:20:11 | 000,008,743 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-11-11 11:20:09 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-11-11 11:18:35 | 000,534,508 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistMSI3CA1.txt
[2010-11-11 11:18:35 | 000,015,552 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistUI3CA1.txt
[2010-11-11 11:18:35 | 000,001,474 | ---- | C] () -- C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk
[2010-11-11 11:18:35 | 000,000,172 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ .lnk
[2010-11-11 11:18:35 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\Sulski\Dane aplikacji\prio.ini
[2010-11-11 11:18:34 | 000,110,754 | ---- | C] () -- C:\Documents and Settings\Sulski\Setup Log 2010-11-11 #001.txt
[2010-11-11 11:17:34 | 000,000,315 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.ini
[2010-11-11 11:16:27 | 000,000,916 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.reg
[2010-11-11 11:16:27 | 000,000,910 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.reg
[2010-11-11 11:13:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-11-11 11:12:59 | 000,483,328 | ---- | C] () -- C:\WINDOWS\Helios.scr
[2010-11-11 11:12:59 | 000,348,160 | ---- | C] () -- C:\WINDOWS\labels.dll
[2010-11-11 11:12:59 | 000,025,780 | ---- | C] () -- C:\WINDOWS\Windowz.png
[2010-11-11 11:12:59 | 000,007,690 | ---- | C] () -- C:\WINDOWS\Lng_QTTabBar_Polish.xml
[2010-11-11 11:12:59 | 000,000,042 | ---- | C] () -- C:\WINDOWS\labelsoff.cmd
[2010-11-11 11:12:59 | 000,000,039 | ---- | C] () -- C:\WINDOWS\labelson.cmd
[2010-11-11 11:12:59 | 000,000,026 | ---- | C] () -- C:\WINDOWS\prio.ini
[2010-11-11 11:12:53 | 001,026,560 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.exe
[2010-11-11 11:12:53 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\ql.exe
[2010-11-11 11:12:53 | 000,003,241 | ---- | C] () -- C:\WINDOWS\System32\SendToQuickLaunch.vbs
[2010-11-11 11:12:53 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\opty.vbs
[2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qlon.vbs
[2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qloff.vbs
[2010-11-11 11:12:53 | 000,000,401 | ---- | C] () -- C:\WINDOWS\System32\y.cmd
[2010-11-11 11:12:53 | 000,000,066 | ---- | C] () -- C:\WINDOWS\System32\undock.vbs
[2010-11-11 11:12:53 | 000,000,055 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.cmd
[2010-11-11 11:12:53 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.cmd
[2010-11-11 11:12:53 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\uninstall.bat
[2010-11-11 11:12:53 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOff.bat
[2010-11-11 11:12:53 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOn.bat
[2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOff.bat
[2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\optymalizacja.cmd
[2010-11-11 11:12:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\Unregister.bat
[2010-11-11 11:12:53 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOn.bat
[2010-11-11 11:12:53 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\Register.bat
[2010-11-11 11:12:52 | 000,363,089 | ---- | C] () -- C:\WINDOWS\System32\hddspace.exe
[2010-11-11 11:12:52 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\Formats.dll
[2010-11-11 11:12:52 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\opensub.dll
[2010-11-11 11:12:52 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\fstoggle.exe
[2010-11-11 11:12:52 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\instalacja.bat
[2010-11-11 11:12:52 | 000,000,297 | ---- | C] () -- C:\WINDOWS\System32\find_target.vbs
[2010-11-11 11:12:52 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\install.bat
[2010-11-11 11:12:52 | 000,000,043 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOff.bat
[2010-11-11 11:12:52 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOn.bat
[2010-11-11 11:12:52 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\notatkaoff.bat
[2010-11-11 11:12:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\notatkaon.bat
[2010-11-11 11:12:52 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\MPEISEoff.bat
[2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MIPSEoff.bat
[2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MAISEoff.bat
[2010-11-11 11:12:52 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\MPEISEon.bat
[2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MIPSEon.bat
[2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MAISEon.bat
[2010-11-11 11:12:51 | 001,583,189 | ---- | C] () -- C:\WINDOWS\System32\eco-timer.scr
[2010-11-11 11:12:51 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\cdeject.dll
[2010-11-11 11:12:51 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\czysc.cmd
[2010-11-11 11:12:17 | 000,053,812 | ---- | C] () -- C:\WINDOWS\uninst-vj.exe
[2010-11-11 11:12:14 | 000,001,958 | ---- | C] () -- C:\WINDOWS\uninstall.ini
[2010-11-11 11:12:13 | 000,082,898 | ---- | C] () -- C:\WINDOWS\uninstall.exe
[2010-11-11 11:11:45 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\cttune.cpl
[2010-11-11 11:11:45 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\startup.cpl
[2010-11-11 11:11:40 | 000,110,602 | ---- | C] () -- C:\WINDOWS\System32\xcdsfx32.bin
[2010-11-11 11:11:32 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-11-11 11:10:57 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-11-11 11:08:31 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:08:24 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-11 11:08:24 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-11 11:08:23 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-11 11:05:27 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-11 11:04:35 | 006,160,384 | ---- | C] () -- C:\WINDOWS\System32\calc.exe
[2010-11-11 11:04:34 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-11-11 11:04:34 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-11-11 11:04:32 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-11-11 11:04:22 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009-11-26 20:26:48 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\tzchange.dll
[2003-06-09 14:05:18 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-11-11 14:09:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 11:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar
[2010-11-11 11:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-12 15:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip
[2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP
[2010-11-13 15:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer
[2010-11-11 14:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar
[2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer
[2010-11-11 11:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera
[2010-11-13 21:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent
[2010-11-11 11:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-04-15 12:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-04-15 12:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 12:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-11-17 09:39:27 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys

< End of report >
[/log]

http://wklej.org/id/420629/

Hijack :

http://wklej.org/id/420630/

MC Jay
komentarz
komentarz (edytowane)

w hijt zaznacz to (chociarz nie wiem czy to cś da)


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = WindowZ IE
O2 - BHO: CommandBar.CtrlMHook - {3f1ab67e-12aa-352e-b4e0-a5f1810b60dd} - mscoree.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jr
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O3 - Toolbar: QT TabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - mscoree.dll (file missing)
O3 - Toolbar: QT Tab Standard Buttons - {D2BF470E-ED1C-487F-A666-2BD8835EB6CE} - mscoree.dll (file missing)
O3 - Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - (no file)
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - S-1-5-18 Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: z.cmd (User 'SYSTEM')
O4 - .DEFAULT Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'Default user')
O4 - .DEFAULT Startup: z.cmd (User 'Default user')
O4 - .DEFAULT User Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'Default user')
O4 - .DEFAULT User Startup: z.cmd (User 'Default user')
O4 - Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe

napisz jaki masz internet dokładniej tzn. czy bezprzewodowy, itp. być może ze sterowniki lub sam sprzęt przez jaki uzyskujesz internet słabo współpracuje z xp

Sulski
komentarz
komentarz (edytowane)

Niestety nie dalo nic , internet mam z netii 2mb , i zamula tylko zawsze po formacie i instalacji XP , pozniej gdy pisalem tematy z prosba o pomoc , ktos zawsze pomagal , tylko wtedy zawsze kazano uzywac Combofixa. Robie jeszcze skana malwarebytes , moze cos wychwyci.


log z malware :

http://wklej.org/id/420836/

Oczywiscie wszystkie usunalem .

Tomek01
komentarz
komentarz

Niewiele tu widać.
Odinstaluj DAEMON Tools Toolbar.


W OTL, w oknie Custom scan/fixes wklej:
[code]:Processes
Explorer.exe

:OTL
O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\system32\FindeXer.dll (A Part of the LessCliX Suite by Alianyn)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

:Files
C:\Program Files\DAEMON Tools Toolbar

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.


Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i wyniki pokaż na forum.

MC Jay
komentarz
komentarz

hmmm... może posprawdzaj stan wtyczek i kabli bo sam miałem ten problem i w moim przypadku był zbyt mocno zgiety kabel i czasami po prostu nie chciało łączyć

Tomek01
komentarz
komentarz

Combofixa nie używaj.
Ew dorzuć do logów log z Gmera. Odinstaluj przed tym jednak jednostki emulujące napęd, czyli np Deamon Tools, Alcohol oraz sterownik sptd.sys. Dopiero wtedy log z Gmer'a będzie wiarygodny.

Sulski
komentarz
komentarz (edytowane)

Bede wrzucal te logi pokolei i edytowal post bo pozniej by mi sie pogmatwalo.

Z usuwania : http://wklej.org/id/420896/

OTL ponowny skan :

http://wklej.org/id/420903/

http://wklej.org/id/420904/

RSIT :

http://wklej.org/id/420905/

http://wklej.org/id/420906/


Malware ani DrWeb nic nie wykryly.


[color="#FF0000"]//Proszę edytować i wstawić logi w odpowiednim formacie.
//Przeczytałeś zasady wstawiania logów ? :)
//Tom01[/color]

Sohei
komentarz
komentarz

[code]:Processes
Explorer.exe



:OTL
[2010-11-11 11:48:09 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010-11-11 11:48:08 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010-11-11 11:48:08 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe ()
O4 - Startup: C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd ()
O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat ()


:files
C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd
C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe
C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat



:Commands
[emptytemp]
[start explorer]
[reboot][/code]
Wklejasz to do OTL w białe okienko i klikasz run fix(wykonaj skrypt).
Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url]
Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url]
Co znajda usun po czym daj logi z usuwania + nowy log OTL


Do tego plik C:\WINDOWS\NOTEPAD.EXE
przeskanuj na virustotal.Nie jestem pewien czy notatnik przypadkowo nie jest zainfekowany

Sulski
komentarz
komentarz

log z wykonania skryptu :

[log]All processes killed
========== PROCESSES ==========
No active process named Explorer.exe was found!
========== OTL ==========
C:\WINDOWS\mmtvmj.ini moved successfully.
C:\WINDOWS\m3jp2k.ini moved successfully.
C:\WINDOWS\m3jpeg.ini moved successfully.
C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe moved successfully.
C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd moved successfully.
C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk moved successfully.
C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat moved successfully.
========== FILES ==========
File\Folder C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd not found.
File\Folder C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe not found.
File\Folder C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Sulski
->Temp folder emptied: 10896568 bytes
->Temporary Internet Files folder emptied: 759231 bytes
->Java cache emptied: 0 bytes
->Opera cache emptied: 1641327370 bytes
->Flash cache emptied: 1579 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 576,00 mb


OTL by OldTimer - Version 3.2.17.3 log created on 11202010_011615

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
[/log]


log z DrWeba:

[log]Movements.dll;C:\Program Files\MaZZicK;Trojan.MulDrop1.42673;Niewyleczalny.Przeniesiony.;
dqm.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.;
e9naq.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.;
ji83j.exe;D:\;Prawdopodobnie Trojan.Packed.580;;
pbyqfn.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.;
Seven Transformation Pack 3.0.exe\data029;D:\Instalki\7TP3.exe/7TP3\Seven Transformation Pack 3.0.exe;Tool.Prockill;;
Seven Transformation Pack 3.0.exe/data036\data009;D:\Instalki\7TP3.exe/7TP3\Seven Transformation Pack 3.0.exe/data036;Tool.Prockill;;
data036;D:\Instalki\7TP3.exe/7TP3;Kontener zawiera zainfekowane obiekty;;
7TP3\Seven Transformation Pack 3.0.exe;D:\Instalki\7TP3.exe/7TP3;Kontener zawiera zainfekowane obiekty;;
7TP3.exe;D:\Instalki;Archiwum zawierające zainfekowane obiekty;Przeniesiony.;
BSINSTALLPL_(www.programs.pl).exe\data018;D:\Instalki\BSINSTALLPL_(www.programs.pl).exe;Adware.SearchAid.40;;
BSINSTALLPL_(www.programs.pl).exe/data025\data004;D:\Instalki\BSINSTALLPL_(www.programs.pl).exe/data025;Adware.Websearch.54;;
data025;D:\Instalki;Kontener zawiera zainfekowane obiekty;;
BSINSTALLPL_(www.programs.pl).exe;D:\Instalki;Kontener zawiera zainfekowane obiekty;Przeniesiony.;
Seven Transformation Pack 3.0.exe\data029;D:\Instalki\7TP3\Seven Transformation Pack 3.0.exe;Tool.Prockill;;
Seven Transformation Pack 3.0.exe/data036\data009;D:\Instalki\7TP3\Seven Transformation Pack 3.0.exe/data036;Tool.Prockill;;
data036;D:\Instalki\7TP3;Kontener zawiera zainfekowane obiekty;;
Seven Transformation Pack 3.0.exe;D:\Instalki\7TP3;Kontener zawiera zainfekowane obiekty;Przeniesiony.;
RunMSC.dll;D:\Instalki\BS;Adware.SearchAid.40;;
A0042234.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP16;Prawdopodobnie Trojan.Packed.580;;
A0042301.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Prawdopodobnie Trojan.Packed.580;;
A0043335.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Trojan.PWS.Gamania.25032;Niewyleczalny.Przeniesiony.;
A0043354.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Trojan.PWS.Gamania.25032;Niewyleczalny.Przeniesiony.;
A0043638.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP19;Prawdopodobnie Trojan.Packed.580;;
A0001507.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP2;Trojan.PWS.Wsgame.12661;Usunięty.;
A0043645.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP20;Prawdopodobnie Trojan.Packed.580;;
A0043685.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP20;Prawdopodobnie Trojan.Packed.580;;
A0050126.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.;
A0050138.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.;
A0050241.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.;
A0050245.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP26;Trojan.PWS.Wsgame.12661;Usunięty.;
A0050261.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP26;Trojan.PWS.Wsgame.12661;Usunięty.;
A0005629.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.;
A0006631.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.;
A0007627.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.;
A0009662.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.;
A0062775.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.;
A0063769.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.;
A0064791.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.;
A0064881.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.;
A0015992.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP9;Trojan.PWS.Wsgame.12661;Usunięty.;
[/log]

MBAM :

[log]Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Wersja bazy: 5138

Windows 5.1.2600 Dodatek Service Pack 3
Internet Explorer 8.0.6001.18702

2010-11-20 10:08:05
mbam-log-2010-11-20 (10-08-05).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|)
Przeskanowano obiektów: 211755
Upłynęło: 21 minut(y), 1 sekund(y)

Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 0
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 0
Zainfekowanych folderów: 0
Zainfekowanych plików: 0

Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:
(Nie znaleziono zagrożeń)

Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)

Zainfekowane informacje rejestru systemowego:
(Nie znaleziono zagrożeń)

Zainfekowanych folderów:
(Nie znaleziono zagrożeń)

Zainfekowanych plików:
(Nie znaleziono zagrożeń)[/log]

OTL :
[log]OTL Extras logfile created on: 2010-11-20 10:10:29 - Run 3
OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 27,42 Gb Free Space | 70,20% Space Free | Partition Type: NTFS
Drive D: | 193,82 Gb Total Space | 135,05 Gb Free Space | 69,68% Space Free | Partition Type: NTFS

Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color="#E56717"]========== Extra Registry (SafeList) ==========[/color]


[color="#E56717"]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\opera.exe (Opera Software)
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.txt [@ = txtfile] -- C:\WINDOWS\notepad.exe ()

[color="#E56717"]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
batfile [open] -- "%1" %*
batfile [print] -- Reg Error: Key error.
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
cmdfile [open] -- "%1" %*
cmdfile [print] -- Reg Error: Key error.
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Opera\opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files\Opera\opera.exe" "%1" (Opera Software)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
inifile [open] -- C:\WINDOWS\System32\NOTEPAD.EXE %1 ()
inifile [print] -- Reg Error: Key error.
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
regfile [merge] -- Reg Error: Key error.
regfile [print] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- C:\WINDOWS\notepad.exe %1 ()
txtfile [print] -- Reg Error: Key error.
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" ()
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [openNew] -- explorer %1 (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [StyleFolder] -- "C:\Program Files\StyleFolder\StyleFolder.exe" %1 (Xaviorsoft Studios)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color="#E56717"]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1

[color="#E56717"]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 3

[color="#E56717"]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0

[color="#E56717"]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


[color="#E56717"]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3CA54984-A14B-42FE-9FF1-7EA90151D725}" = Tencent QQ
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{878CDC75-04C7-41A3-9033-43250D3D37B4}" = FlashFolder
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{9DC696F3-BEDF-4069-A18D-89B41BF89769}" = Command Prompt Explorer Bar
"{C93C7A4B-7DD9-4725-9993-4F032063926B}_is1" = VPX.PL Uploader 1.0
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 SP1
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}" = WinZip 15.0
"{D1E44702-21F5-4918-B8A3-6D126D5BD33C}" = Windows Messenger 5.1
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FC8D21C8-7B29-4104-ADB0-FEE9CA1C7922}" = Folder Size for Windows
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack
"AbiWord2" = AbiWord 2.8.1
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIMP2" = AIMP2
"CCleaner" = CCleaner
"conduitEngine" = Conduit Engine
"CPLBonus" = Kels' CPL Bonus Pack!
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"Deep Space 3D Screensaver" = Deep Space 3D Screensaver
"Defraggler" = Defraggler
"Driver Magician_is1" = Driver Magician 3.45
"Gadu-Gadu 10" = Gadu-Gadu 10
"HashCheck Shell Extension" = HashCheck Shell Extension (x86-32)
"HFSLIPTotalSlipstream" = HFSLIP Total Slipstream (v1.7.8, build 80614)
"HijackThis" = HijackThis 2.0.2
"hp deskjet 840c series" = hp deskjet 840c series (Tylko usuń)
"hp deskjet 840c series_Driver" = hp deskjet 840c series
"IrfanView" = IrfanView (remove only)
"JDownloader" = JDownloader
"Koi Fish 3D Screensaver" = Koi Fish 3D Screensaver
"LClock" = LClock
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mechanical Clock 3D Screensaver" = Mechanical Clock 3D Screensaver
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"NapiProjekt_is1" = NapiProjekt 1.0.6.9
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Prio" = Prio v1.9.9.1732
"qt7lite_is1" = QT Lite 3.0.0
"RealAlt_is1" = Real Alternative 1.9.0
"RegCompact Pro" = RegCompact Pro 2.6.7
"Revo Uninstaller" = Revo Uninstaller 1.83
"Softonic-Eng7 Toolbar" = Softonic-Eng7 Toolbar
"StyleFolder_is1" = StyleFolder 1.0.3
"SwitchOff" = Switch Off
"Total Copy 1.1 NetHorror Edition" = Total Copy 1.1 NetHorror Edition
"uTorrent" = µTorrent
"Visual Task Tips" = Visual Task Tips 3.4
"vjpeg" = VJPEG Image Viewer (remove)
"VLC media player" = VLC media player 1.1.4
"vShare" = vShare Plugin
"Winamp" = Winamp
"WinRAR archiver" = Archiwizator WinRAR

[color="#E56717"]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Detektor Winampa

[color="#E56717"]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2010-11-11 06:10:22 | Computer Name = WINDOWZ | Source = .NET Runtime Optimization Service | ID = 1111
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service reached limit of transient errors. Will shut down. Last error returned
from Service Manager: 0x800736b1.

Error - 2010-11-11 06:10:45 | Computer Name = WINDOWZ | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.

[ System Events ]
Error - 2010-11-15 19:41:58 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2010-11-15 19:42:27 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2010-11-15 19:42:47 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2010-11-15 19:42:54 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2010-11-15 19:43:01 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2010-11-17 06:21:02 | Computer Name = WINDOWZ | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
wuauserv z argumentami „” w celu uruchomienia serwera: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 2010-11-17 13:22:11 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: atapi nvgts nvrd32 PCIIde Si3112 Si3124 Si3132 Si3132r5

Error - 2010-11-17 14:34:51 | Computer Name = WINDOWZ | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
wuauserv z argumentami „” w celu uruchomienia serwera: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 2010-11-17 14:38:23 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7034
Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.

Error - 2010-11-19 20:16:15 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7034
Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.


< End of report >
[/log]

[log]OTL logfile created on: 2010-11-20 10:10:29 - Run 3
OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 27,42 Gb Free Space | 70,20% Space Free | Partition Type: NTFS
Drive D: | 193,82 Gb Total Space | 135,05 Gb Free Space | 69,68% Space Free | Partition Type: NTFS

Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color="#E56717"]========== Processes (All) ==========[/color]

PRC - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe
PRC - [2010-10-08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-11-28 00:22:46 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-11-28 00:22:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-11-20 20:32:14 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2009-11-19 11:43:58 | 001,592,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 12:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-15 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2006-08-02 22:12:00 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2005-01-17 07:43:46 | 000,084,480 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
PRC - [2002-12-27 15:54:06 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wisptis.exe


[color="#E56717"]========== Modules (All) ==========[/color]

MOD - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe
MOD - [2009-11-28 00:24:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-11-28 00:22:43 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-11-26 20:26:31 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-11-26 20:26:30 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-11-26 20:25:24 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-11-26 20:25:19 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2009-11-19 20:08:36 | 026,339,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2009-11-19 11:43:51 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2009-11-19 11:43:22 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2009-02-09 11:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2009-01-12 16:19:02 | 000,011,000 | ---- | M] (O&K Software) -- C:\Program Files\Prio\prio.dll
MOD - [2008-04-15 12:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-15 12:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-15 12:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 12:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 12:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 12:00:00 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-15 12:00:00 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll
MOD - [2008-04-15 12:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 12:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-15 12:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-15 12:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 12:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-15 12:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 12:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-15 12:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 12:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-15 12:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll
MOD - [2008-04-15 12:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll


[color="#E56717"]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-09-06 12:38:06 | 000,071,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009-01-12 16:18:54 | 000,005,120 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Prio\prio_svc.exe -- (prio_svc)
SRV - [2008-03-21 00:55:58 | 000,071,680 | ---- | M] (zett42) [Disabled | Stopped] -- C:\Program Files\FlashFolder\FlashFolder.exe -- (FlashFolder)
SRV - [2007-11-14 21:46:00 | 000,131,072 | ---- | M] (Brio) [Disabled | Stopped] -- C:\Program Files\FolderSize\FolderSizeSvc.exe -- (FolderSize)


[color="#E56717"]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [File_System | Unknown | Running] -- -- (DwProt)
DRV - [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-11-28 00:26:05 | 000,069,168 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2009-11-28 00:26:03 | 000,217,128 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5)
DRV - [2009-11-28 00:26:02 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132)
DRV - [2009-11-28 00:25:59 | 000,076,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124)
DRV - [2009-11-28 00:25:58 | 000,209,200 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5)
DRV - [2009-11-28 00:25:23 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2009-11-28 00:25:22 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvrd32.sys -- (nvrd32)
DRV - [2009-11-21 03:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009-09-28 20:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2006-08-18 06:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005-05-17 10:45:12 | 000,076,288 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA nForce™
DRV - [2005-05-17 10:45:08 | 000,092,800 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2005-04-05 20:22:30 | 000,012,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-04-05 20:22:28 | 000,033,536 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)


[color="#E56717"]========== Standard Registry (SafeList) ==========[/color]


[color="#E56717"]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.msn.com/"]http://www.msn.com/[/url]


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl
IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url]
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl
IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url]
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl
IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url]
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl
IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url]
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.com/"]http://www.google.com/[/url]
IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.com/search?q=%s"]http://www.google.com/search?q=%s[/url]
IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2008-04-15 12:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-1454471165-583907252-682003330-1002..\Run: [QQIntl] C:\Program Files\Tencent\QQIntl\Bin\QQ.exe (Tencent)
O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps)
O4 - Startup: C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuEjectPC = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O8 - Extra context menu item: QQ - C:\Program Files\Tencent\QQIntl\Bin\AddEmotion.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.241.79.37 192.168.1.100
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
O20 - AppInit_DLLs: (prio.dll) - C:\Program Files\Prio\prio.dll (O&K Software)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (%windir%\\system32\\LogonuiZ.exe) - C:\WINDOWS\\system32\\LogonuiZ.exe ()
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error.
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color="#E56717"]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-11-19 11:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Tencent
[2010-11-19 11:38:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Conduit
[2010-11-19 11:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Softonic-Eng7
[2010-11-19 11:38:45 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2010-11-19 11:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\ConduitEngine
[2010-11-19 11:38:43 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine
[2010-11-19 11:38:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Temp
[2010-11-19 11:38:41 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic-Eng7
[2010-11-19 11:38:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tencent
[2010-11-19 11:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Tencent Files
[2010-11-19 11:38:20 | 000,000,000 | ---D | C] -- C:\Program Files\Tencent
[2010-11-19 11:38:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Tencent
[2010-11-17 19:57:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\DoctorWeb
[2010-11-17 19:46:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010-11-17 19:46:42 | 000,000,000 | ---D | C] -- C:\rsit
[2010-11-17 19:00:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vShare
[2010-11-17 19:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\vShare
[2010-11-17 17:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Malwarebytes
[2010-11-17 17:52:26 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-11-17 17:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-11-17 17:52:25 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-11-17 17:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\hp deskjet 840c series
[2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-17 01:10:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit\win2k_xp
[2010-11-13 20:08:37 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-13 20:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Downloads
[2010-11-13 19:57:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Identities
[2010-11-13 19:49:04 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-11-13 19:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader
[2010-11-13 19:43:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2010-11-13 19:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2010-11-13 16:36:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Apple Computer
[2010-11-13 16:32:30 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-11-13 16:32:30 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2010-11-13 16:32:30 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2010-11-13 16:32:30 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Real
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Real
[2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2010-11-13 15:39:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vlc
[2010-11-13 15:20:30 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010-11-13 15:15:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer
[2010-11-13 12:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-11-13 09:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010-11-12 15:11:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\WinRAR
[2010-11-12 15:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip
[2010-11-12 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010-11-12 02:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Damian Pasternak
[2010-11-11 14:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010-11-11 14:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 14:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 12:01:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2010-11-11 12:00:54 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-11-11 12:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-11-11 12:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-11-11 12:00:38 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010-11-11 12:00:38 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010-11-11 12:00:38 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010-11-11 12:00:38 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-11-11 12:00:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-11-11 12:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-11-11 11:58:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-11-11 11:58:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-11-11 11:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-11-11 11:53:25 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-11-11 11:48:06 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll
[2010-11-11 11:48:06 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll
[2010-11-11 11:48:06 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll
[2010-11-11 11:48:06 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll
[2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll
[2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll
[2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll
[2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll
[2010-11-11 11:48:02 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack
[2010-11-11 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Media Player Classic
[2010-11-11 11:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2010-11-11 11:41:28 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2010-11-11 11:41:28 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2010-11-11 11:41:28 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2010-11-11 11:41:28 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2010-11-11 11:41:28 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2010-11-11 11:41:28 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2010-11-11 11:41:28 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2010-11-11 11:41:28 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2010-11-11 11:41:28 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2010-11-11 11:41:28 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2010-11-11 11:41:28 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2010-11-11 11:41:28 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Winamp
[2010-11-11 11:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\cache
[2010-11-11 11:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2010-11-11 11:38:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-11-11 11:38:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-11-11 11:38:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-11-11 11:38:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Web
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\inf
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Opera
[2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera
[2010-11-11 11:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010-11-11 11:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Macromedia
[2010-11-11 11:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Adobe
[2010-11-11 11:29:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\PrivacIE
[2010-11-11 11:25:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-11-11 11:24:47 | 000,454,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\CapabilityTable.exe
[2010-11-11 11:24:41 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardtr.dll
[2010-11-11 11:24:41 | 000,067,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzht.dll
[2010-11-11 11:24:41 | 000,065,536 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzhc.dll
[2010-11-11 11:24:41 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidtr.dll
[2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzht.dll
[2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzhc.dll
[2010-11-11 11:24:41 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvtr.dll
[2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzht.dll
[2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzhc.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzht.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzhc.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiontr.dll
[2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionth.dll
[2010-11-11 11:24:40 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardde.dll
[2010-11-11 11:24:40 | 000,080,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpt.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardit.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfr.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardes.dll
[2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardel.dll
[2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsl.dll
[2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardptb.dll
[2010-11-11 11:24:40 | 000,077,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardru.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardno.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardnl.dll
[2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardcs.dll
[2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardth.dll
[2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhu.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsv.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpl.dll
[2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfi.dll
[2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsk.dll
[2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardda.dll
[2010-11-11 11:24:40 | 000,075,264 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardeng.dll
[2010-11-11 11:24:40 | 000,074,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhe.dll
[2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardko.dll
[2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardja.dll
[2010-11-11 11:24:40 | 000,021,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidel.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidru.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidptb.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpt.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidnl.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidit.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhu.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfr.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaides.dll
[2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidde.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidth.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsv.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsk.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidno.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfi.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaideng.dll
[2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidda.dll
[2010-11-11 11:24:40 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhe.dll
[2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidko.dll
[2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidja.dll
[2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpt.dll
[2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvde.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvth.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsv.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsk.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvru.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvptb.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvno.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvnl.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvit.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhu.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhe.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfr.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfi.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSves.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSveng.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvel.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvda.dll
[2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvcs.dll
[2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvko.dll
[2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvja.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsv.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsk.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionru.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionptb.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpt.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionno.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionnl.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionko.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionja.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionit.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhu.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhe.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfr.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfi.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiones.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioneng.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionel.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionde.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionda.dll
[2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioncs.dll
[2010-11-11 11:24:39 | 000,400,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizard.dll
[2010-11-11 11:24:39 | 000,084,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidservice.exe
[2010-11-11 11:24:39 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardEnu.dll
[2010-11-11 11:24:39 | 000,073,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardar.dll
[2010-11-11 11:24:39 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidcs.dll
[2010-11-11 11:24:39 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidEnu.dll
[2010-11-11 11:24:39 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidar.dll
[2010-11-11 11:24:39 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvEnu.dll
[2010-11-11 11:24:39 | 000,005,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvar.dll
[2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionEnu.dll
[2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionar.dll
[2010-11-11 11:23:56 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2010-11-11 11:23:55 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2010-11-11 11:23:54 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2010-11-11 11:23:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-11-11 11:21:55 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2010-11-11 11:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager
[2010-11-11 11:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack
[2010-11-11 11:21:46 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2010-11-11 11:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2010-11-11 11:21:45 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl
[2010-11-11 11:21:45 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2010-11-11 11:21:44 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2010-11-11 11:21:44 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe
[2010-11-11 11:21:44 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-11-11 11:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-11-11 11:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation
[2010-11-11 11:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2010-11-11 11:20:11 | 013,602,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2010-11-11 11:20:11 | 011,374,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2010-11-11 11:20:11 | 010,235,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010-11-11 11:20:11 | 004,038,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2010-11-11 11:20:11 | 002,259,560 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2010-11-11 11:20:11 | 001,989,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2010-11-11 11:20:11 | 001,056,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2010-11-11 11:20:11 | 000,069,632 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-11-11 11:20:09 | 006,282,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010-11-11 11:20:06 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010-11-11 11:19:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient
[2010-11-11 11:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Identities
[2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moje obrazy
[2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moja muzyka
[2010-11-11 11:18:52 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ulubione
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty
[2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:18:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sulski\SendTo
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Recent
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\IETldCache
[2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Cookies
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Szablony
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\PrintHood
[2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\NetHood
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Sun
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\nss71F.tmp
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Microsoft
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Menu Start
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Finder Bar
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji
[2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP
[2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar
[2010-11-11 11:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\FlashFolder
[2010-11-11 11:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\FolderSize
[2010-11-11 11:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\Command Prompt Explorer Bar
[2010-11-11 11:14:36 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010-11-11 11:14:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-11-11 11:14:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-11 11:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-11-11 11:12:59 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
[2010-11-11 11:12:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Gry
[2010-11-11 11:12:53 | 000,880,640 | ---- | C] (Xentient) -- C:\WINDOWS\System32\thumbs.dll
[2010-11-11 11:12:53 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\UrlFileShellExt.dll
[2010-11-11 11:12:53 | 000,069,632 | ---- | C] (Villain) -- C:\WINDOWS\System32\TaskbarForms.exe
[2010-11-11 11:12:53 | 000,053,248 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTFileTools.dll
[2010-11-11 11:12:53 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTViewModeButton.dll
[2010-11-11 11:12:53 | 000,020,480 | ---- | C] (Quizo) -- C:\WINDOWS\System32\OptionButton.dll
[2010-11-11 11:12:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Unlocker
[2010-11-11 11:12:52 | 000,488,448 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MIPSE.dll
[2010-11-11 11:12:52 | 000,414,208 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MPEISE.dll
[2010-11-11 11:12:52 | 000,387,584 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MAISE.dll
[2010-11-11 11:12:52 | 000,146,672 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\FolderBackgroundShellExt.dll
[2010-11-11 11:12:52 | 000,016,792 | ---- | C] (NTWind Software) -- C:\WINDOWS\System32\hstart.exe
[2010-11-11 11:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\locale
[2010-11-11 11:12:51 | 001,312,256 | ---- | C] (Softpointer Inc) -- C:\WINDOWS\System32\AudioShellExt.dll
[2010-11-11 11:12:51 | 000,151,552 | ---- | C] (Minimalist) -- C:\WINDOWS\System32\BCToolbar.dll
[2010-11-11 11:12:51 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\AnyFileShellExt.dll
[2010-11-11 11:12:51 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\CreateNewItemButton.dll
[2010-11-11 11:12:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\books
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zapodaj Uploader
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AeroSnap
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Aero shake
[2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AbiSuite2
[2010-11-11 11:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinFlip
[2010-11-11 11:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\WindowZ
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\WinDirStat
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance OneStep
[2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Thumbnail Resize
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Taskix
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TaskbarEx
[2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Stack
[2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\SpiritPyre Extensions
[2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\shutoffxp
[2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Shellka
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\RightClick
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Q-Dir
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\QDAcces
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\PNotes
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Placesbar Constructor
[2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Perlovga Removal Tool
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\OxelonMedia
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MimeTeXeditor
[2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MaZZicK
[2010-11-11 11:12:36 | 000,000,000 | ---D | C] -- C:\Program Files\LogonZ Designer
[2010-11-11 11:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\LaunchTab
[2010-11-11 11:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ikony paska narzędzi
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconZ
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconViewer
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google Hacks
[2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\GG Lite
[2010-11-11 11:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\FreeRapiD-0.82
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Reader
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fadebar
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Everything Search Engine
[2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\EdgeSwap
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Drive Space Indicator
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DIPS
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DesktopListViewv1.0
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Cymes Desktop Changer 1.7
[2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Contextaware
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Console
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Blue Onion Software
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\BESTplayer
[2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Aqua Dock
[2010-11-11 11:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010-11-11 11:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\VisualTaskTips
[2010-11-11 11:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\VPX.PL Uploader
[2010-11-11 11:12:20 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Switch Off
[2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\StyleFolder
[2010-11-11 11:12:17 | 000,172,032 | ---- | C] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe
[2010-11-11 11:12:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2010-11-11 11:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\LClock
[2010-11-11 11:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Quizo
[2010-11-11 11:12:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer
[2010-11-11 11:12:00 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2010-11-11 11:12:00 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2010-11-11 11:11:54 | 000,000,000 | ---D | C] -- C:\Program Files\QT Lite
[2010-11-11 11:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Prio
[2010-11-11 11:11:48 | 000,000,000 | ---D | C] -- C:\Program Files\RegCompact Pro
[2010-11-11 11:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\System
[2010-11-11 11:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-11-11 11:11:40 | 000,526,184 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XceedCry.dll
[2010-11-11 11:11:40 | 000,456,536 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XCEEDZIP.DLL
[2010-11-11 11:11:39 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Magician
[2010-11-11 11:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2010-11-11 11:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2010-11-11 11:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-11-11 11:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2010-11-11 11:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2010-11-11 11:11:09 | 000,000,000 | ---D | C] -- C:\Program Files\AbiWord
[2010-11-11 11:10:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-11-11 11:10:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010-11-11 11:10:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-11-11 11:10:43 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010-11-11 11:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010-11-11 11:08:53 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010-11-11 11:07:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2010-11-11 11:07:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-11-11 11:07:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2010-11-11 11:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-11-11 11:06:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-11-11 11:06:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-11-11 11:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-11-11 11:06:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-11-11 11:06:03 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-11-11 11:05:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-11-11 11:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-11-11 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-11-11 11:05:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-11-11 11:05:00 | 000,774,144 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.scr
[2010-11-11 11:04:56 | 012,360,192 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.exe
[2010-11-11 11:04:55 | 000,848,896 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.scr
[2010-11-11 11:04:54 | 002,529,280 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.exe
[2010-11-11 11:04:54 | 000,841,728 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.scr
[2010-11-11 11:04:50 | 010,203,136 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.exe
[2010-11-11 11:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010-11-11 11:04:43 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010-11-11 11:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-11-11 11:04:20 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2010-11-11 11:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-11-11 11:04:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-11-11 11:04:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ]

[color="#E56717"]========== Files - Modified Within 60 Days ==========[/color]

[2010-11-20 09:43:31 | 000,004,551 | ---- | M] () -- C:\Documents and Settings\Sulski\Moje dokumenty\DrWeb.csv
[2010-11-20 01:17:27 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010-11-20 01:17:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-19 11:38:34 | 006,187,008 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\Softonic-Eng7.exe
[2010-11-19 11:38:27 | 000,001,906 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\Tencent QQ.lnk
[2010-11-19 11:37:57 | 018,298,184 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\QQIntl_Beta3.exe
[2010-11-17 17:52:29 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-17 01:11:33 | 000,000,800 | ---- | M] () -- C:\WINDOWS\hpinfo.lnk
[2010-11-16 16:55:34 | 000,109,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-16 09:57:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-16 00:14:26 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk
[2010-11-14 09:10:19 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-13 20:04:14 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2010-11-13 19:43:40 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk
[2010-11-13 15:20:45 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2010-11-13 12:33:46 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk
[2010-11-12 15:08:55 | 000,001,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk
[2010-11-12 02:18:25 | 000,000,845 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk
[2010-11-11 14:09:32 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-11 14:09:32 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-11 12:00:58 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010-11-11 11:48:27 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk
[2010-11-11 11:48:27 | 000,000,949 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk
[2010-11-11 11:48:27 | 000,000,893 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk
[2010-11-11 11:41:31 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-11 11:40:01 | 000,454,962 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-11 11:40:01 | 000,398,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-11 11:40:01 | 000,077,594 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-11 11:40:01 | 000,061,074 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-11 11:38:23 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-11-11 11:38:23 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-11 11:32:33 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2010-11-11 11:28:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-11 11:21:53 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2010-11-11 11:17:35 | 000,000,315 | ---- | M] () -- C:\WINDOWS\System32\ResHacker.ini
[2010-11-11 11:13:41 | 000,001,314 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-11 11:12:17 | 000,172,032 | ---- | M] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe
[2010-11-11 11:12:17 | 000,053,812 | ---- | M] () -- C:\WINDOWS\uninst-vj.exe
[2010-11-11 11:12:14 | 000,001,958 | ---- | M] () -- C:\WINDOWS\uninstall.ini
[2010-11-11 11:12:13 | 000,082,898 | ---- | M] () -- C:\WINDOWS\uninstall.exe
[2010-11-11 11:10:38 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010-11-11 11:10:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-11-11 11:10:38 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010-11-11 11:08:31 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:08:24 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-11 11:08:24 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-11 11:08:23 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-11 11:07:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-11 11:05:27 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ]

[color="#E56717"]========== Files Created - No Company Name ==========[/color]

[2010-11-20 09:43:31 | 000,004,551 | ---- | C] () -- C:\Documents and Settings\Sulski\Moje dokumenty\DrWeb.csv
[2010-11-19 11:38:27 | 000,001,906 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\Tencent QQ.lnk
[2010-11-19 11:35:31 | 018,298,184 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\QQIntl_Beta3.exe
[2010-11-19 11:35:31 | 006,187,008 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\Softonic-Eng7.exe
[2010-11-17 17:52:29 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-17 01:11:33 | 000,000,800 | ---- | C] () -- C:\WINDOWS\hpinfo.lnk
[2010-11-16 00:14:26 | 000,000,661 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk
[2010-11-13 20:04:14 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2010-11-13 19:43:40 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk
[2010-11-13 15:41:28 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-13 15:20:45 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2010-11-13 12:33:46 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk
[2010-11-12 15:08:55 | 000,001,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk
[2010-11-12 02:18:25 | 000,000,845 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk
[2010-11-11 14:09:32 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-11 14:09:32 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-11 12:00:58 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010-11-11 12:00:53 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-11 12:00:35 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-11-11 12:00:34 | 000,792,576 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE
[2010-11-11 11:57:37 | 000,109,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-11 11:56:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2010-11-11 11:56:51 | 000,001,314 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-11 11:48:27 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk
[2010-11-11 11:48:27 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk
[2010-11-11 11:48:27 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk
[2010-11-11 11:48:24 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl
[2010-11-11 11:48:06 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010-11-11 11:48:05 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-11 11:48:03 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl
[2010-11-11 11:41:31 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-11 11:38:23 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-11-11 11:38:23 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-11 11:32:32 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2010-11-11 11:28:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-11 11:24:39 | 000,249,344 | ---- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe
[2010-11-11 11:24:39 | 000,223,232 | ---- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe
[2010-11-11 11:23:56 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2010-11-11 11:23:54 | 000,001,231 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2010-11-11 11:22:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-11-11 11:21:53 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2010-11-11 11:21:52 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010-11-11 11:21:46 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav
[2010-11-11 11:21:45 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010-11-11 11:20:11 | 000,008,743 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-11-11 11:20:09 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-11-11 11:18:35 | 000,534,508 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistMSI3CA1.txt
[2010-11-11 11:18:35 | 000,015,552 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistUI3CA1.txt
[2010-11-11 11:18:35 | 000,000,172 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ .lnk
[2010-11-11 11:18:35 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\Sulski\Dane aplikacji\prio.ini
[2010-11-11 11:18:34 | 000,110,754 | ---- | C] () -- C:\Documents and Settings\Sulski\Setup Log 2010-11-11 #001.txt
[2010-11-11 11:17:34 | 000,000,315 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.ini
[2010-11-11 11:16:27 | 000,000,916 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.reg
[2010-11-11 11:16:27 | 000,000,910 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.reg
[2010-11-11 11:13:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-11-11 11:12:59 | 000,483,328 | ---- | C] () -- C:\WINDOWS\Helios.scr
[2010-11-11 11:12:59 | 000,348,160 | ---- | C] () -- C:\WINDOWS\labels.dll
[2010-11-11 11:12:59 | 000,025,780 | ---- | C] () -- C:\WINDOWS\Windowz.png
[2010-11-11 11:12:59 | 000,007,690 | ---- | C] () -- C:\WINDOWS\Lng_QTTabBar_Polish.xml
[2010-11-11 11:12:59 | 000,000,042 | ---- | C] () -- C:\WINDOWS\labelsoff.cmd
[2010-11-11 11:12:59 | 000,000,039 | ---- | C] () -- C:\WINDOWS\labelson.cmd
[2010-11-11 11:12:59 | 000,000,026 | ---- | C] () -- C:\WINDOWS\prio.ini
[2010-11-11 11:12:53 | 001,026,560 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.exe
[2010-11-11 11:12:53 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\ql.exe
[2010-11-11 11:12:53 | 000,003,241 | ---- | C] () -- C:\WINDOWS\System32\SendToQuickLaunch.vbs
[2010-11-11 11:12:53 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\opty.vbs
[2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qlon.vbs
[2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qloff.vbs
[2010-11-11 11:12:53 | 000,000,401 | ---- | C] () -- C:\WINDOWS\System32\y.cmd
[2010-11-11 11:12:53 | 000,000,066 | ---- | C] () -- C:\WINDOWS\System32\undock.vbs
[2010-11-11 11:12:53 | 000,000,055 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.cmd
[2010-11-11 11:12:53 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.cmd
[2010-11-11 11:12:53 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\uninstall.bat
[2010-11-11 11:12:53 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOff.bat
[2010-11-11 11:12:53 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOn.bat
[2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOff.bat
[2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\optymalizacja.cmd
[2010-11-11 11:12:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\Unregister.bat
[2010-11-11 11:12:53 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOn.bat
[2010-11-11 11:12:53 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\Register.bat
[2010-11-11 11:12:52 | 000,363,089 | ---- | C] () -- C:\WINDOWS\System32\hddspace.exe
[2010-11-11 11:12:52 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\Formats.dll
[2010-11-11 11:12:52 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\opensub.dll
[2010-11-11 11:12:52 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\fstoggle.exe
[2010-11-11 11:12:52 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\instalacja.bat
[2010-11-11 11:12:52 | 000,000,297 | ---- | C] () -- C:\WINDOWS\System32\find_target.vbs
[2010-11-11 11:12:52 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\install.bat
[2010-11-11 11:12:52 | 000,000,043 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOff.bat
[2010-11-11 11:12:52 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOn.bat
[2010-11-11 11:12:52 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\notatkaoff.bat
[2010-11-11 11:12:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\notatkaon.bat
[2010-11-11 11:12:52 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\MPEISEoff.bat
[2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MIPSEoff.bat
[2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MAISEoff.bat
[2010-11-11 11:12:52 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\MPEISEon.bat
[2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MIPSEon.bat
[2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MAISEon.bat
[2010-11-11 11:12:51 | 001,583,189 | ---- | C] () -- C:\WINDOWS\System32\eco-timer.scr
[2010-11-11 11:12:51 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\cdeject.dll
[2010-11-11 11:12:51 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\czysc.cmd
[2010-11-11 11:12:17 | 000,053,812 | ---- | C] () -- C:\WINDOWS\uninst-vj.exe
[2010-11-11 11:12:14 | 000,001,958 | ---- | C] () -- C:\WINDOWS\uninstall.ini
[2010-11-11 11:12:13 | 000,082,898 | ---- | C] () -- C:\WINDOWS\uninstall.exe
[2010-11-11 11:11:45 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\cttune.cpl
[2010-11-11 11:11:45 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\startup.cpl
[2010-11-11 11:11:40 | 000,110,602 | ---- | C] () -- C:\WINDOWS\System32\xcdsfx32.bin
[2010-11-11 11:11:32 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-11-11 11:10:57 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-11-11 11:08:31 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:08:24 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-11 11:08:24 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-11 11:08:23 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-11 11:05:27 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-11 11:04:35 | 006,160,384 | ---- | C] () -- C:\WINDOWS\System32\calc.exe
[2010-11-11 11:04:34 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-11-11 11:04:34 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-11-11 11:04:32 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-11-11 11:04:22 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009-11-26 20:26:48 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\tzchange.dll
[2003-06-09 14:05:18 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll

[color="#E56717"]========== LOP Check ==========[/color]

[2009-11-28 13:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\uTorrent
[2010-11-11 11:15:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Xentient
[2010-11-11 14:09:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 11:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar
[2010-11-11 11:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-12 15:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip
[2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\AIMP
[2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Finder Bar
[2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\FindeXer
[2009-11-28 13:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\uTorrent
[2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP
[2010-11-13 15:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer
[2010-11-11 14:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite
[2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar
[2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer
[2010-11-11 11:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10
[2010-11-11 11:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera
[2010-11-19 12:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Tencent
[2010-11-13 21:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent
[2010-11-17 19:00:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\vShare
[2010-11-11 11:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient

[color="#E56717"]========== Purity Check ==========[/color]



[color="#E56717"]========== Custom Scans ==========[/color]


[color="#A23BEC"]< %systemdrive%\*.* >[/color]
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-04-15 12:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-04-15 12:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 12:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-11-20 01:17:20 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys


[color="#A23BEC"]< MD5 for: AGP440.SYS >[/color]
[2009-11-28 00:33:45 | 014,513,072 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color="#A23BEC"]< MD5 for: ATAPI.SYS >[/color]
[2009-11-28 00:33:45 | 014,513,072 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys

[color="#A23BEC"]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 12:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color="#A23BEC"]< MD5 for: CDROM.SYS >[/color]
[2009-11-26 20:23:51 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys

[color="#A23BEC"]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-15 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color="#A23BEC"]< MD5 for: NDIS.SYS >[/color]
[2008-04-15 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color="#A23BEC"]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]

Nic nie wykryto w pliku notepad.exe

W dalszym ciagu problem pozostaje nie rozwiozany , [color="#FF0000"]o dziwo[/color] Wasze forum wczytuje sie dobrze , problemem sa inne fora , serwisy typu wp itp , takze jezeli nie ustanie to prosilbym o pozwolenie uzycia Combofixa na moja odpowiedzialnosc , on zawsze pomagal w tym problemie kiedys.

[color="#FF0000"]//nie mówi się "o dziwo" tylko "proszę pani"
//ciama[/color]

Sohei
komentarz
komentarz

wątpię aby combofix coś tutaj dał gdyż infekcja już nie występuje.
Sprawdz dziennik zdarzeń i zobacz czy tam nie występuje jakiś błąd

Sulski
komentarz
komentarz

W dzienniku nie wiedzialem o co tam chodzi, wiec chwycilem sie przyslowiowej brzytwy i uzylem combofixa , bo pomyslalem ze jak nie pomoze to i tak czeka mnie instalacja windows 7 a najwyzej popsuje terazniejszy system wiec nic nie tracilem , wkleje ten log i bardzo prosze o przejrzenie gdyz combofix wykryl jakiegos "rootkita" po czym zrestartowal i dokonczyl skan.


[log]ComboFix 10-11-19.04 - Sulski 2010-11-20 13:30:02.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.1535.1253 [GMT 1:00]
Uruchomiony z: c:\documents and settings\Sulski\Pulpit\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\copyfstq.exe
c:\windows\dropcpyr.dll
c:\windows\system32\Install.bat
c:\windows\system32\msconfig.exe
c:\windows\system32\y.cmd
c:\windows\Uninstall.ini
D:\bbjl2g.exe

.
((((((((((((((((((((((((( Pliki utworzone od 2010-10-20 do 2010-11-20 )))))))))))))))))))))))))))))))
.

2010-11-17 18:46 . 2010-11-17 18:46 -------- d-----w- C:\rsit
2010-11-11 11:00 . 2010-11-19 10:38 -------- d-----w- C:\Program Files

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

------- Sigcheck -------

[-] 2009-11-27 . 1F39C7BDBA4C5F3F01C4EABF7EDBF4B3 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys

[-] 2009-11-19 . 07CFE293CE37D0E558E3D4AC2FB70CED . 629760 . . [5.82] . . c:\windows\system32\comctl32.dll
[7] 2008-04-15 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[7] 2008-04-15 . 737739FACEAD60683AA8D7FF7602FD14 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll

[-] 2009-06-23 . 150852B3EB5F0C3FB44D38D0375578BB . 8356864 . . [8.00.6001.22873] . . c:\windows\system32\mshtml.dll

[-] 2009-11-19 . 3E6099B9B5A95B78FF634FCCEA5C8474 . 2331136 . . [5.1.2600.5857] . . c:\windows\system32\ntoskrnl.exe

[-] 2009-11-19 . 3902506156DC2F68D85CFA797F12EBEE . 678400 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

[-] 2009-11-19 . E88010D761E8C3C54B6FD30E742F8C53 . 1592832 . . [6.00.2900.5512] . . c:\windows\explorer.exe



[-] 2009-11-19 . A6134E9536AE89970E71B2E27A4E383D . 2208000 . . [5.1.2600.5857] . . c:\windows\system32\ntkrnlpa.exe

c:\windows\System32\ctfmon.exe ... - brak elementu !!
c:\windows\System32\regsvc.dll ... - brak elementu !!
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-10 14:51 3906656 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-10-10 14:51 3906656 ----a-w- c:\program files\Softonic-Eng7\tbSoft.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-10-10 3906656]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QQIntl"="c:\program files\Tencent\QQIntl\Bin\QQ.exe" [2010-11-19 144712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-08-02 577536]
"NVRaidService"="c:\windows\system32\nvraidservice.exe" [2005-01-17 84480]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-20 12669544]

c:\windows\system32\config\systemprofile\Menu Start\Programy\Autostart\
z.cmd [2009-11-20 611]

c:\documents and settings\Administrator\Menu Start\Programy\Autostart\
Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-11-11 211333]

c:\documents and settings\Default User\Menu Start\Programy\Autostart\
Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-11-11 211333]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuEjectPC"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"ForceClassicControlPanel"= 1 (0x1)
"NoSMMyPictures"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="%windir%\\system32\\LogonuiZ.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=

R0 Si3124;Si3124;c:\windows\system32\drivers\si3124.sys [2009-11-28 76208]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-11-11 691696]
S4 FlashFolder;FlashFolder;c:\program files\FlashFolder\FlashFolder.exe [2008-03-21 71680]
S4 prio_svc;Prio Service;c:\program files\Prio\prio_svc.exe [2009-01-12 5120]

--- Inne Usługi/Sterowniki w Pamięci ---

*NewlyCreated* - HELPSVC
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.com/
IE: QQ - c:\program files\Tencent\QQIntl\Bin\AddEmotion.htm
.
.
------- Skojarzenia plików -------
.
txtfile=c:\windows\notepad.exe %1
.
- - - - USUNIĘTO PUSTE WPISY - - - -

AddRemove-HijackThis - d:\instalki\Programy do logów\HijackThis.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-20 13:33
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'winlogon.exe'(1052)
c:\windows\system32\cscui.dll

- - - - - - - > 'lsass.exe'(1124)
c:\windows\system32\scecli.dll
.
Czas ukończenia: 2010-11-20 13:34:11
ComboFix-quarantined-files.txt 2010-11-20 12:34

Przed: 29 341 769 728 bajtów wolnych
Po: 29 317 165 056 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 08C432E503DED4BE1206EC3190B4BAFD
[/log]

Pamietam ze kiedys dawaliscie jeszcze jakis program do zamykania robaczywych portow , jesli mozna prosic o nazwe to bede wdzieczny.

Pozdrawiam

danielek316
komentarz
komentarz

[quote name='Sulski' timestamp='1290257168' post='1125555']
Pamietam ze kiedys dawaliscie jeszcze jakis program do zamykania robaczywych portow [/quote]

[url="http://storage.dobreprogramy.pl/bezpieczenstwo/wwdc_141_%28dobreprogramy.pl%29.exe"][b]Windows Worms Doors Cleaner[/b][/url]

Sohei
komentarz
komentarz

Rootkita to on tutaj nie pokazał żeby wkyrył. Usuną pliki infekcji które nie było widoczne wcześniej w logu.
Dodatkowo wskazał barki bardzo ważnych plików
c:\windows\System32\ctfmon.exe ... - brak elementu !!
c:\windows\System32\regsvc.dll ... - brak elementu !!

Odnajdz te pliki na płytce windowsa i wrzuć je w podana lokalizacje.

Sulski
komentarz
komentarz (edytowane)

Gmer:

[log]GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-11-20 17:22:51
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\00000065 WDC_WD2500JB-00REA0 rev.20.00K20
Running: hjf36qu1.exe; Driver: C:\DOCUME~1\Sulski\USTAWI~1\Temp\uwtdqpob.sys


---- System - GMER 1.0.15 ----

SSDT spgb.sys ZwCreateKey [0xB7EB50E0]
SSDT spgb.sys ZwEnumerateKey [0xB7ECDDA4]
SSDT spgb.sys ZwEnumerateValueKey [0xB7ECE132]
SSDT spgb.sys ZwOpenKey [0xB7EB50C0]
SSDT spgb.sys ZwQueryKey [0xB7ECE20A]
SSDT spgb.sys ZwQueryValueKey [0xB7ECE08A]
SSDT spgb.sys ZwSetValueKey [0xB7ECE29C]

INT 0x62 ? 8986CBF8
INT 0x63 ? 8986CBF8
INT 0x73 ? 8986CBF8
INT 0x82 ? 8986CBF8
INT 0xA4 ? 8986BBF8
INT 0xB4 ? 8986BBF8

---- Kernel code sections - GMER 1.0.15 ----

? spgb.sys Nie można odnaleźć określonego pliku. !
.text USBPORT.SYS!DllUnload B6A2D8AC 5 Bytes JMP 8986B1D8
.text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB572C380, 0x5414D5, 0xE8000020]
.text akd3qnpa.SYS B56DF386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...]
.text akd3qnpa.SYS B56DF3AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...]
.text akd3qnpa.SYS B56DF3C4 3 Bytes [00, 80, 02]
.text akd3qnpa.SYS B56DF3C9 1 Byte [30]
.text akd3qnpa.SYS B56DF3C9 11 Bytes [30, 00, 00, 00, 5E, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESI; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL}
.text ...

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [B7EB6042] spgb.sys
IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [B7EB613E] spgb.sys
IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [B7EB60C0] spgb.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [B7EB6800] spgb.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [B7EB66D6] spgb.sys
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfAcquireSpinLock] 18C4830E
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_UCHAR] 1C959E88
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KeGetCurrentIrql] 9E880000
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfRaiseIrql] 00001CB1
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfLowerIrql] 0E798366
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!HalGetInterruptVector] 74AAB000
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!HalTranslateBusAddress] 8986C636
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KeStallExecutionProcessor] 1A00001C
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfReleaseSpinLock] 1C8B86C6
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] C6020000
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_USHORT] 001C9686
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 86C60200
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!WRITE_PORT_UCHAR] 00001CB2
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[WMILIB.SYS!WmiSystemControl] 8800001C
IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[WMILIB.SYS!WmiCompleteRequest] 001CB99E
IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [B7EC5B90] spgb.sys

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 898D51F8
Device \Driver\PCI_PNP9764 \Device\00000042 spgb.sys
Device \Driver\usbohci \Device\USBPDO-0 896C7500
Device \Driver\usbehci \Device\USBPDO-1 896D61F8
Device \Driver\dmio \Device\DmControl\DmIoDaemon 898DA1F8
Device \Driver\dmio \Device\DmControl\DmConfig 898DA1F8
Device \Driver\dmio \Device\DmControl\DmPnP 898DA1F8
Device \Driver\dmio \Device\DmControl\DmInfo 898DA1F8
Device \Driver\sptd \Device\1068718514 spgb.sys
Device \Driver\Ftdisk \Device\HarddiskVolume1 8986E1F8
Device \Driver\nvatabus \Device\00000065 8986C1F8
Device \Driver\Ftdisk \Device\HarddiskVolume2 8986E1F8
Device \Driver\Cdrom \Device\CdRom0 895C3500
Device \Driver\Cdrom \Device\CdRom1 895C3500
Device \Driver\nvatabus \Device\00000066 8986C1F8
Device \Driver\NetBT \Device\NetBt_Wins_Export 88A2E500
Device \Driver\usbohci \Device\USBFDO-0 896C7500
Device \Driver\usbehci \Device\USBFDO-1 896D61F8
Device \Driver\nvatabus \Device\NvAta0 8986C1F8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 8956D500
Device \Driver\NetBT \Device\NetBT_Tcpip_{FF2C1D20-D4F0-43A7-9EDB-268227FC0AD9} 88A2E500
Device \Driver\nvatabus \Device\NvAta1 8986C1F8
Device \FileSystem\MRxSmb \Device\LanmanRedirector 8956D500
Device \Driver\nvatabus \Device\NvAta2 8986C1F8
Device \Driver\Ftdisk \Device\FtControl 8986E1F8
Device \Driver\akd3qnpa \Device\Scsi\akd3qnpa1 894E21F8
Device \Driver\akd3qnpa \Device\Scsi\akd3qnpa1Port4Path0Target0Lun0 894E21F8
Device \FileSystem\Cdfs \Cdfs 88944500

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB3 0x2E 0xFE 0x8C ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x3A 0xEA 0xE6 0x11 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x0C 0xA0 0x3A 0xC9 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB3 0x2E 0xFE 0x8C ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x3A 0xEA 0xE6 0x11 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x0C 0xA0 0x3A 0xC9 ...

---- EOF - GMER 1.0.15 ----[/log]

Te pliki moga byc przyczyna tytulowego problemu ??

Sohei
komentarz
komentarz

mogły spowodować wolne wczytywanie się stron(mowa tu o plikach infekcji) Pliki które ci podałem do uzupełnienia odpowiadają za co innego ale są bardzo ważne !
Czy teraz działa wszystko poprawnie?

Sulski
komentarz
komentarz

Niestety nie , nie mam juz pomyslow , wiec prawdopodobnie czeka mnie powrot do 7.

Sohei
komentarz
komentarz

sądzę iż wina leży po stronie DNS. Panel sterownia --->połączenia sieciowe---->twoj połączenie ---prawy i właściwości ---> porotokół tpc/ip własciwosci---> Uzyj nastepujacych serwerów DNS i wpisz serwery odpowiednie dla dostawcy twojego internetu.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.