UnTouch utworzono 21 listopada 2010 utworzono 21 listopada 2010 (edytowane) Witam. Mam problem, gdyż mój komputer działa strasznie wolno. Strony internetowe nie wyświetlają się płynnie, wystarczy jedna reklama, a stronka już się zacina... To samo tyczy się gier, które mają bardzo małe wymagania sprzętowe. Gdy zrobiłem formata działał całkiem w porządku, ale nie trwało to długo bo po jakichś dwóch tygodniach znowu były problemy. Mam dobre sterowniki, optymalizowałem Windowsa, czyszczę CCleanerem, antywirus nie wyszukuje żadnych wirusów, dawałem wyniki OTL i nic nie wykryto. W pewnej kafejce internetowej są dokładnie takie same komputery jak mój i działają one o niebo lepiej. Jakieś pomysły? [color="#ff0000"]//przenoszę do Bezpieczeństwa //dan[/color]
Tomek01 komentarz 22 listopada 2010 komentarz 22 listopada 2010 Pewnie są jakieś Adware lub reklamiarz. Bynajmniej chciałbym zobaczyć logi OTL i RSIT. Info w moim podpisie. Póki co proszę o przeniesienie do mojego działu.
UnTouch komentarz 23 listopada 2010 Autor komentarz 23 listopada 2010 Z OTL: OTL: [log]OTL logfile created on: 2010-11-23 19:30:43 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\OTL Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 024,00 Mb Total Physical Memory | 362,00 Mb Available Physical Memory | 35,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,28 Gb Total Space | 20,22 Gb Free Space | 52,81% Space Free | Partition Type: NTFS Computer Name: URSUSS | User Name: Ursus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-11-23 19:28:44 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL\OTL.exe PRC - [2010-11-17 13:44:51 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Gry\Steam\Steam.exe PRC - [2010-10-20 20:12:25 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe PRC - [2010-10-10 15:39:13 | 000,067,128 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe PRC - [2010-10-02 21:19:33 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-09-21 06:40:50 | 000,977,976 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2010-09-16 21:04:06 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe PRC - [2010-09-13 00:09:56 | 012,653,152 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-08-12 13:16:26 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe PRC - [2010-08-12 13:16:12 | 002,215,064 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2009-08-06 18:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-03-10 21:18:20 | 000,970,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe PRC - [2009-02-09 11:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2007-07-25 15:02:54 | 000,563,984 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe PRC - [2007-07-25 15:02:32 | 000,403,728 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe PRC - [2007-07-19 23:40:48 | 000,137,752 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe PRC - [2007-07-19 23:38:54 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe PRC - [2006-11-13 15:57:16 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe PRC - [2006-11-13 15:57:06 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-04 00:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-04 00:44:20 | 002,712,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-04 00:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2003-05-02 15:19:00 | 000,069,632 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-11-23 19:28:44 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL\OTL.exe MOD - [2010-10-20 20:13:20 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll MOD - [2010-10-20 20:12:26 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp71.dll MOD - [2010-10-20 20:12:26 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll MOD - [2010-09-25 18:03:56 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2010-04-16 16:37:04 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-03 14:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2007-07-19 23:40:36 | 000,113,176 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcInj.dll MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-04 00:44:04 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-04 00:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-04 00:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - [2010-08-12 13:18:40 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV - [2010-08-12 13:16:26 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2010-08-02 21:33:50 | 003,780,040 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2007-07-27 23:11:38 | 000,026,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\spupdsvc.exe -- (spupdsvc) SRV - [2007-07-19 23:42:30 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher) SRV - [2007-07-19 23:40:48 | 000,137,752 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2007-07-19 23:38:54 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer) SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-08-04 10:50:36 | 000,140,752 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2010-08-03 12:28:36 | 000,055,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2010-07-29 12:31:26 | 000,134,512 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2010-07-29 12:31:26 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-07-29 12:31:26 | 000,032,608 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis) DRV - [2010-02-03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2007-07-19 23:39:50 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv) DRV - [2007-07-19 23:37:56 | 002,109,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap) DRV - [2007-07-19 01:44:22 | 003,599,000 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech QuickCam Pro 9000(UVC) DRV - [2007-07-19 01:44:22 | 000,022,296 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService) DRV - [2007-07-19 01:44:00 | 000,041,752 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2007-07-19 01:42:29 | 001,920,920 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt) DRV - [2007-07-18 16:42:42 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2004-08-04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-04 00:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2003-07-02 03:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2003-05-02 15:19:00 | 001,312,555 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2790392 IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-10-20 20:13:21 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010-10-25 13:51:33 | 000,000,000 | ---D | M] O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-343818398-602609370-725345543-1003\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe () O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [LogitechSetup] D:\setup.exe File not found O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1286102379836 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 81.15.252.15 194.204.159.1 213.172.186.4 213.172.186.5 O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Gry\Steam\Steam.exe (Valve Corporation) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-23 19:29:15 | 000,000,000 | ---D | C] -- C:\OTL [2010-11-23 15:00:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2010-11-22 23:11:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM [2010-11-22 23:11:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\ipla [2010-11-22 23:11:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-22 23:10:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-11-22 23:08:42 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2010-11-22 23:01:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong [2010-11-22 21:24:24 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\Recent [2010-11-22 21:03:20 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo [2010-11-21 17:20:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-11-21 15:06:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2010-11-21 13:42:38 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2010-11-21 13:42:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Conduit [2010-11-21 13:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine [2010-11-21 13:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar [2010-11-21 13:42:34 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2010-11-21 13:42:25 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrentBar [2010-11-21 13:42:17 | 000,000,000 | ---D | C] -- C:\extensions [2010-11-19 22:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Nowy folder [2010-11-17 14:58:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010-11-16 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files\GoldWave [2010-11-16 16:05:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moje obrazy [2010-11-13 22:39:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-11-13 22:32:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\TechSmith [2010-11-13 22:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime [2010-11-13 22:30:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-11-13 19:39:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-11-13 19:39:25 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache [2010-11-12 20:32:44 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys [2010-11-12 19:10:46 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys [2010-11-12 10:32:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\DivX [2010-11-12 10:31:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared [2010-11-12 10:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\DivX [2010-11-12 10:27:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DivX [2010-11-10 18:24:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2010-11-09 14:07:47 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys [2010-11-09 14:07:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync [2010-11-09 13:26:31 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys [2010-11-08 20:42:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Identities [2010-11-05 07:43:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS [2010-11-05 07:43:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0207030.022 [2010-11-05 07:43:45 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan [2010-11-05 07:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton [2010-11-05 07:43:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec [2010-11-05 07:43:37 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller [2010-11-05 07:43:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller [2010-11-04 19:00:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010-10-29 18:40:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-10-29 18:37:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Google [2010-10-29 18:35:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-10-29 18:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-10-25 17:42:23 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2010-10-25 13:47:31 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2010-10-25 13:47:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-10-23 23:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ashampoo [2010-10-23 23:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\ashampoo [2010-10-23 23:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2010-10-20 20:12:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2010-10-20 20:12:26 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-10-20 20:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2010-10-20 20:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2010-10-20 20:12:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2010-10-20 20:12:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Real [2010-10-20 13:16:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Thinstall [2010-10-18 08:51:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\.gstreamer-0.10 [2010-10-18 08:50:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-10-18 08:50:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\OpenFM [2010-10-11 16:57:09 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll [2010-10-11 16:57:09 | 000,018,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_2.dll [2010-10-11 16:57:08 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll [2010-10-11 16:57:08 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll [2010-10-11 16:57:07 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll [2010-10-11 16:57:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll [2010-10-11 16:57:03 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll [2010-10-11 16:56:59 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll [2010-10-11 16:56:59 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll [2010-10-11 16:56:52 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll [2010-10-11 16:56:52 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll [2010-10-11 16:56:51 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll [2010-10-11 16:56:51 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll [2010-10-11 16:56:50 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll [2010-10-11 16:56:50 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll [2010-10-11 16:56:50 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll [2010-10-11 16:56:49 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll [2010-10-11 16:56:49 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll [2010-10-11 16:56:49 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll [2010-10-11 16:56:48 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll [2010-10-11 16:56:48 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll [2010-10-11 16:56:47 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2010-10-11 16:56:47 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll [2010-10-11 16:56:47 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll [2010-10-11 16:56:46 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll [2010-10-11 16:56:46 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2010-10-11 16:56:45 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll [2010-10-11 16:56:45 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll [2010-10-11 16:56:44 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll [2010-10-11 16:56:43 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll [2010-10-11 16:56:42 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll [2010-10-10 16:04:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\skypePM [2010-10-10 16:02:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Skype [2010-10-10 16:02:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-10-10 16:02:14 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-10-10 16:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-10-10 15:45:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moje wideo [2010-10-10 15:39:12 | 000,127,034 | R--- | C] (BackWeb Technologies Inc. ) -- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe [2010-10-10 15:36:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logitech [2010-10-10 15:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2010-10-10 15:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd [2010-10-10 15:35:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LogiShrd [2010-10-09 19:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\GoldWave [2010-10-08 15:44:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2010-10-06 20:32:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2010-10-06 20:29:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak [2010-10-06 20:21:36 | 002,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2010-10-06 20:21:35 | 002,018,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2010-10-06 20:21:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2010-10-06 20:21:34 | 002,182,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2010-10-06 20:21:23 | 002,138,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2010-10-06 19:55:53 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2010-10-06 19:55:48 | 000,352,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2010-10-06 19:55:39 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2010-10-06 19:55:30 | 003,555,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2010-10-06 19:55:07 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2010-10-06 19:54:34 | 000,454,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2010-10-06 19:42:44 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2010-10-06 19:41:46 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2010-10-06 19:02:15 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2010-10-06 19:01:31 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll [2010-10-06 18:54:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010-10-06 18:54:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-10-06 18:54:09 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010-10-06 18:53:44 | 000,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010-10-06 18:53:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-10-06 18:51:44 | 001,439,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2010-10-06 18:51:38 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\localspl.dll [2010-10-06 18:51:28 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2010-10-06 18:51:27 | 001,294,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quartz.dll [2010-10-06 18:51:20 | 000,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2010-10-06 18:51:08 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2010-10-06 18:50:43 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2010-10-06 15:50:09 | 000,015,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui [2010-10-04 21:08:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy [2010-10-03 21:20:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\DoctorWeb [2010-10-03 20:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Malwarebytes [2010-10-03 20:50:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-10-03 20:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-10-03 19:33:11 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-10-03 11:30:37 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2010-10-03 11:30:37 | 000,023,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui [2010-10-03 11:30:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-10-02 22:43:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\AccurateRip [2010-10-02 21:22:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-10-02 21:20:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-10-02 21:20:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-10-02 21:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-10-02 21:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Sun [2010-10-02 21:00:30 | 000,000,000 | ---D | C] -- C:\Program Files\Illustrate [2010-10-02 15:22:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\WINDOWS [2010-09-30 17:44:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ventrilo [2010-09-30 17:44:22 | 000,000,000 | ---D | C] -- C:\Program Files\Ventrilo [2010-09-30 17:44:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-09-29 21:33:19 | 000,397,176 | ---- | C] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent.exe [2010-09-29 21:31:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent [2010-09-29 16:55:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\AnvSoft [2010-09-29 16:55:19 | 000,000,000 | ---D | C] -- C:\Program Files\AnvSoft [2010-09-27 20:05:09 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-09-26 19:20:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-09-25 23:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\BestPlayer [2010-09-25 23:04:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\BESTplayer [2010-09-25 22:33:03 | 000,000,000 | ---D | C] -- C:\Program Files\Direxct [2010-09-25 19:14:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\WinRAR [2010-09-25 19:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-09-25 18:54:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2010-09-25 18:53:05 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2010-09-25 18:53:05 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2010-09-25 18:53:05 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll [2010-09-25 18:53:05 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2010-09-25 18:53:04 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2010-09-25 18:53:04 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax [2010-09-25 18:53:02 | 000,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2010-09-25 18:53:02 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2010-09-25 18:53:02 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2010-09-25 18:53:02 | 000,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys [2010-09-25 18:53:02 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2010-09-25 18:52:25 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys [2010-09-25 18:51:50 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2010-09-25 18:50:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-09-25 18:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-09-25 18:50:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-09-25 18:50:23 | 000,000,000 | R--D | C] -- C:\Program Files [2010-09-25 18:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-09-25 18:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-09-25 18:50:16 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2010-09-25 18:50:16 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2010-09-25 18:50:16 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2010-09-25 18:50:11 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2010-09-25 18:50:11 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2010-09-25 18:50:11 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2010-09-25 18:50:10 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2010-09-25 18:49:53 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2010-09-25 18:49:53 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2010-09-25 18:49:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2010-09-25 18:49:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2010-09-25 18:49:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2010-09-25 18:49:52 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2010-09-25 18:49:52 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2010-09-25 18:49:51 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2010-09-25 18:49:51 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2010-09-25 18:49:51 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2010-09-25 18:49:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2010-09-25 18:49:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2010-09-25 18:49:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2010-09-25 18:49:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2010-09-25 18:49:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2010-09-25 18:49:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2010-09-25 18:49:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2010-09-25 18:49:45 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010-09-25 18:49:44 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2010-09-25 18:49:44 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2010-09-25 18:49:44 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010-09-25 18:49:44 | 000,009,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2010-09-25 18:49:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2010-09-25 18:49:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010-09-25 18:49:44 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010-09-25 18:49:44 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010-09-25 18:49:44 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010-09-25 18:49:43 | 000,127,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2010-09-25 18:49:43 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2010-09-25 18:49:43 | 000,073,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2010-09-25 18:49:43 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2010-09-25 18:49:43 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2010-09-25 18:49:43 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010-09-25 18:49:43 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2010-09-25 18:49:42 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010-09-25 18:49:41 | 000,109,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2010-09-25 18:49:41 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010-09-25 18:49:41 | 000,033,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2010-09-25 18:49:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2010-09-25 18:49:41 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2010-09-25 18:49:40 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2010-09-25 18:49:40 | 000,069,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2010-09-25 18:49:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2010-09-25 18:49:39 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2010-09-25 18:49:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-09-25 18:49:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-09-25 18:49:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-09-25 18:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-09-25 18:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-09-25 18:49:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-09-25 18:49:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-09-25 18:49:08 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-09-25 18:49:08 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-09-25 18:48:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-09-25 18:40:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-09-25 18:40:15 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-09-25 18:40:15 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-09-25 18:40:15 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-09-25 18:40:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-09-25 18:38:24 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-09-25 18:31:02 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc71.dll [2010-09-25 18:30:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Gadu-Gadu 10 [2010-09-25 18:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-09-25 18:28:27 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-09-25 18:15:36 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-09-25 18:02:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Packs [2010-09-25 17:58:01 | 000,049,152 | ---- | C] (SoundMAX) -- C:\WINDOWS\System32\S11thk32.dll [2010-09-25 17:58:01 | 000,040,820 | ---- | C] (SoundMAX) -- C:\WINDOWS\System32\Syncor11.dll [2010-09-25 17:57:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\VirtualEar [2010-09-25 17:57:56 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices [2010-09-25 17:57:55 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe [2010-09-25 17:57:55 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-09-25 17:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\ESET [2010-09-25 17:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\ESET [2010-09-25 17:50:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2010-09-25 17:43:42 | 000,000,000 | ---D | C] -- C:\Pobieranie [2010-09-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Macromedia [2010-09-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Adobe [2010-09-25 17:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Temp [2010-09-25 17:40:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google [2010-09-25 17:39:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\UserData [2010-09-25 17:37:25 | 000,000,000 | ---D | C] -- C:\Filmy i Muzyka [2010-09-25 17:37:20 | 000,000,000 | ---D | C] -- C:\Gry [2010-09-25 17:36:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-09-25 17:31:06 | 003,780,040 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des [2010-09-25 17:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2010-09-25 17:30:07 | 000,004,682 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\npptNT2.sys [2010-09-25 17:30:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\INCA Shared [2010-09-25 17:25:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-09-25 17:25:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-09-25 17:25:13 | 000,000,000 | ---D | C] -- C:\NVIDIA [2010-09-25 17:11:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Identities [2010-09-25 17:11:53 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-09-25 17:11:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moja muzyka [2010-09-25 17:11:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Microsoft [2010-09-25 17:11:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\Cookies [2010-09-25 17:11:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\SendTo [2010-09-25 17:11:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Ulubione [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Menu Start [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\Szablony [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\PrintHood [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\NetHood [2010-09-25 17:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Pulpit [2010-09-25 17:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-09-25 17:10:51 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-09-25 17:10:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-09-25 17:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-09-25 17:10:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-09-25 17:04:24 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010-09-25 17:03:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-09-25 17:03:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-09-25 17:03:19 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-09-25 17:03:06 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-09-25 17:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-09-25 17:02:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-09-25 17:00:26 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010-09-25 16:59:54 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010-09-25 16:59:50 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010-09-25 16:59:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-09-25 16:59:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010-09-25 16:59:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-09-25 16:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-09-25 16:59:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-09-25 16:59:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-09-25 16:59:14 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010-09-25 16:59:14 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2010-09-25 16:59:14 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010-09-25 16:59:13 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2010-09-25 16:59:12 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010-09-25 16:59:12 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2010-09-25 16:59:12 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2010-09-25 16:59:12 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010-09-25 16:59:12 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2010-09-25 16:59:11 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010-09-25 16:59:11 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2010-09-25 16:59:11 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010-09-25 16:59:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010-09-25 16:59:10 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2010-09-25 16:58:56 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-09-25 16:58:45 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2010-09-25 16:58:45 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2010-09-25 16:58:45 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2010-09-25 16:58:45 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2010-09-25 16:58:34 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2010-09-25 16:58:32 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2010-09-25 16:58:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-09-25 16:58:29 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2010-09-25 16:58:29 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2010-09-25 16:58:28 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2010-09-25 16:58:28 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2010-09-25 16:58:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2010-09-25 16:58:19 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2010-09-25 16:58:19 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-09-25 16:58:15 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2010-09-25 16:58:08 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2010-09-25 16:58:08 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-09-25 16:58:06 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2010-09-25 16:58:06 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2010-09-25 16:58:05 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2010-09-25 16:58:05 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2010-09-25 16:57:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-09-25 16:57:46 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-09-25 16:57:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-09-25 16:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-09-25 16:56:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-09-25 16:56:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-09-25 16:56:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-09-25 16:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-09-25 16:56:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010-09-25 16:56:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-09-25 16:56:20 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010-09-25 16:56:19 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010-09-25 16:56:19 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010-09-25 16:56:19 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010-09-25 16:56:18 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010-09-25 16:56:11 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010-09-25 16:56:10 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010-09-25 16:56:10 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010-09-25 16:56:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010-09-25 16:56:09 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010-09-25 16:56:09 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010-09-25 16:56:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010-09-25 16:56:09 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010-09-25 16:56:08 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010-09-25 16:56:08 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010-09-25 16:56:08 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010-09-25 16:56:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010-09-25 16:56:08 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010-09-25 16:56:08 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010-09-25 16:56:08 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010-09-25 16:56:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010-09-25 16:56:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010-09-25 16:56:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010-09-25 16:56:08 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010-09-25 16:56:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010-09-25 16:56:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010-09-25 16:56:06 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010-09-25 16:56:06 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010-09-25 16:56:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010-09-25 16:56:06 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010-09-25 16:56:06 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010-09-25 16:56:06 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010-09-25 16:56:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010-09-25 16:56:05 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010-09-25 16:55:59 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2010-09-25 16:55:58 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2010-09-25 16:55:58 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2010-09-25 16:55:58 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010-09-25 16:55:57 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010-09-25 16:55:57 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2010-09-25 16:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-09-25 16:55:56 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2010-09-25 16:55:56 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2010-09-25 16:55:55 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2010-09-25 16:55:55 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2010-09-25 16:55:55 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2010-09-25 16:55:55 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2010-09-25 16:55:54 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010-09-25 16:55:54 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2010-09-25 16:55:54 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2010-09-25 16:55:54 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2010-09-25 16:55:54 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2010-09-25 16:55:54 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2010-09-25 16:55:54 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2010-09-25 16:55:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-09-25 16:55:53 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010-09-25 16:55:53 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010-09-25 16:55:53 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010-09-25 16:55:53 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2010-09-25 16:55:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010-09-25 16:55:51 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2010-09-25 16:55:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2010-09-25 16:55:51 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010-09-25 16:55:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-09-25 16:55:50 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2010-09-25 16:55:50 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2010-09-25 16:55:50 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2010-09-25 16:55:49 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2010-09-25 16:55:42 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2010-09-25 16:55:42 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2010-09-25 16:55:42 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2010-09-25 16:55:42 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2010-09-25 16:55:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-11-23 18:45:05 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-23 16:07:11 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Ursus.job [2010-11-23 15:51:30 | 000,017,408 | ---- | M] () -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-23 13:44:33 | 000,000,050 | ---- | M] () -- C:\WINDOWS\cdplayer.ini [2010-11-23 08:03:15 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-23 08:02:56 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-23 08:02:29 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-23 08:02:19 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-23 08:01:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-23 08:01:56 | 1073,295,360 | -HS- | M] () -- C:\hiberfil.sys [2010-11-23 08:01:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2010-11-22 23:21:26 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-11-22 23:10:31 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-22 21:04:24 | 000,000,846 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Burning Studio 10.lnk [2010-11-21 13:41:30 | 000,397,176 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent.exe [2010-11-19 21:46:21 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-19 15:15:00 | 000,000,622 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Skrót do Ventrilo.lnk [2010-11-16 21:42:17 | 000,000,471 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\GoldWave.lnk [2010-11-14 07:14:30 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-13 22:30:01 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-09 14:09:29 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\Ursus\Dane aplikacji\$_hpcst$.hpc [2010-11-07 10:29:57 | 000,000,233 | -HS- | M] () -- C:\boot.ini [2010-11-05 07:43:51 | 000,000,979 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Norton Security Scan.lnk [2010-11-05 07:43:46 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini [2010-11-01 13:05:59 | 000,047,104 | ---- | M] () -- C:\WINDOWS\System32\KMVIDC32.DLL [2010-11-01 12:43:00 | 000,049,101 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Asd2.jpg [2010-10-31 07:32:14 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-10-31 07:32:14 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-10-31 07:32:14 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-10-31 07:32:14 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-10-25 17:42:32 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\SubEdit-Player.lnk [2010-10-20 20:12:26 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-10-17 14:24:58 | 000,019,307 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Asd.jpg [2010-10-10 16:04:25 | 000,000,048 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-10-10 15:45:44 | 000,001,781 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Logitech QuickCam.lnk [2010-10-10 15:39:16 | 000,002,076 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech Desktop Messenger.lnk [2010-10-10 15:39:11 | 000,127,034 | R--- | M] (BackWeb Technologies Inc. ) -- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe [2010-10-09 15:25:25 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\NapiProjekt.lnk [2010-10-03 11:31:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-10-03 11:31:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-10-02 22:43:01 | 000,017,766 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat [2010-10-02 22:42:44 | 000,033,846 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.bmp [2010-10-02 22:42:11 | 006,814,952 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2010-10-02 22:34:05 | 000,000,555 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\HLSS.lnk [2010-10-02 20:59:10 | 000,000,948 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\CFG.lnk [2010-10-02 19:34:42 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-09-29 21:33:27 | 000,000,549 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BitTorrent.lnk [2010-09-29 16:55:55 | 000,000,799 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Any Video Converter.lnk [2010-09-26 18:54:22 | 000,000,546 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Flyff.lnk [2010-09-25 18:31:42 | 000,000,075 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Counter-Strike.url [2010-09-25 18:31:08 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc71.dll [2010-09-25 18:29:42 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-09-25 18:24:24 | 000,000,572 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-09-25 18:18:23 | 000,000,940 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Moj komputer.lnk [2010-09-25 18:15:38 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\CCleaner.lnk [2010-09-25 18:04:24 | 003,932,214 | ---- | M] () -- C:\WINDOWS\BricoPack Wallpaper.bmp [2010-09-25 17:57:55 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\msssc.dll [2010-09-25 17:57:33 | 000,003,289 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-09-25 17:41:31 | 000,002,302 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Google Chrome.lnk [2010-09-25 17:10:46 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-09-25 17:09:21 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-25 17:04:43 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-09-25 17:04:24 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-09-25 16:57:11 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-22 23:21:23 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-11-22 23:10:31 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-22 21:04:24 | 000,000,846 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Burning Studio 10.lnk [2010-11-21 17:22:53 | 1073,295,360 | -HS- | C] () -- C:\hiberfil.sys [2010-11-19 15:15:00 | 000,000,622 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Skrót do Ventrilo.lnk [2010-11-16 21:42:17 | 000,000,471 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\GoldWave.lnk [2010-11-13 22:23:57 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-09 14:09:29 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Ursus\Dane aplikacji\$_hpcst$.hpc [2010-11-05 07:43:54 | 000,000,474 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Ursus.job [2010-11-05 07:43:51 | 000,000,979 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Norton Security Scan.lnk [2010-11-05 07:43:46 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini [2010-11-01 13:05:03 | 000,047,104 | ---- | C] () -- C:\WINDOWS\System32\KMVIDC32.DLL [2010-11-01 12:43:00 | 000,049,101 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Asd2.jpg [2010-10-29 18:35:51 | 000,001,034 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-10-29 18:35:51 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-10-25 17:42:32 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\SubEdit-Player.lnk [2010-10-20 20:14:32 | 000,000,050 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2010-10-20 20:13:22 | 000,000,286 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-10-17 14:24:58 | 000,019,307 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Asd.jpg [2010-10-10 16:04:25 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-10-10 16:02:20 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-10-10 15:42:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2010-10-10 15:42:17 | 000,058,163 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2010-10-10 15:42:17 | 000,019,344 | R--- | C] () -- C:\WINDOWS\System32\Repository.reg [2010-10-10 15:39:16 | 000,002,076 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech Desktop Messenger.lnk [2010-10-10 15:36:26 | 000,001,781 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Logitech QuickCam.lnk [2010-10-09 15:25:25 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\NapiProjekt.lnk [2010-10-02 22:43:01 | 000,033,846 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.bmp [2010-10-02 22:43:01 | 000,017,766 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat [2010-10-02 22:34:05 | 000,000,555 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\HLSS.lnk [2010-10-02 21:00:35 | 006,814,952 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2010-10-02 20:59:10 | 000,000,948 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\CFG.lnk [2010-10-02 19:34:40 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2010-10-02 15:21:37 | 000,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm [2010-10-02 15:21:37 | 000,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm [2010-10-02 15:21:37 | 000,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm [2010-10-02 15:21:37 | 000,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm [2010-10-02 15:21:36 | 000,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm [2010-10-02 15:21:36 | 000,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm [2010-10-02 15:21:36 | 000,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm [2010-10-02 15:21:36 | 000,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm [2010-10-02 15:21:36 | 000,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm [2010-10-02 15:21:36 | 000,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm [2010-10-02 15:21:36 | 000,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm [2010-10-02 15:21:36 | 000,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm [2010-10-02 15:21:35 | 000,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm [2010-10-02 15:21:35 | 000,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm [2010-10-02 15:21:35 | 000,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm [2010-10-02 15:21:35 | 000,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm [2010-10-02 15:21:35 | 000,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm [2010-10-02 15:21:35 | 000,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm [2010-10-02 15:21:35 | 000,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm [2010-10-02 15:21:35 | 000,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm [2010-10-02 15:21:35 | 000,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm [2010-10-02 15:21:35 | 000,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm [2010-10-02 15:21:35 | 000,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm [2010-10-02 15:21:35 | 000,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm [2010-10-02 15:21:35 | 000,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm [2010-10-02 15:21:35 | 000,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm [2010-10-02 15:21:35 | 000,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm [2010-10-02 15:21:35 | 000,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm [2010-10-02 15:21:34 | 000,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm [2010-10-02 15:21:34 | 000,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm [2010-10-02 15:21:34 | 000,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm [2010-10-02 15:21:34 | 000,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm [2010-10-02 15:21:34 | 000,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm [2010-10-02 15:21:34 | 000,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm [2010-10-02 15:21:34 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm [2010-10-02 15:21:34 | 000,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm [2010-10-02 15:21:34 | 000,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm [2010-10-02 15:21:34 | 000,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm [2010-10-02 15:21:34 | 000,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm [2010-10-02 15:21:34 | 000,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm [2010-10-02 15:21:34 | 000,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm [2010-10-02 15:21:34 | 000,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm [2010-10-02 15:21:34 | 000,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm [2010-10-02 15:21:34 | 000,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm [2010-10-02 15:21:33 | 000,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm [2010-10-02 15:21:33 | 000,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm [2010-10-02 15:21:33 | 000,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm [2010-10-02 15:21:33 | 000,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm [2010-10-02 15:21:33 | 000,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm [2010-10-02 15:21:33 | 000,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm [2010-10-02 15:21:33 | 000,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm [2010-10-02 15:21:33 | 000,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm [2010-10-02 15:21:32 | 000,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm [2010-10-02 15:21:32 | 000,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm [2010-10-02 15:21:32 | 000,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm [2010-10-02 15:21:32 | 000,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm [2010-10-02 15:21:32 | 000,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm [2010-10-02 15:21:32 | 000,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm [2010-10-02 15:21:32 | 000,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm [2010-10-02 15:21:32 | 000,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm [2010-10-02 15:21:31 | 000,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm [2010-10-02 15:21:31 | 000,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm [2010-10-02 15:21:31 | 000,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm [2010-10-02 15:21:31 | 000,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm [2010-10-02 15:21:31 | 000,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm [2010-10-02 15:21:31 | 000,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm [2010-10-02 15:21:31 | 000,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm [2010-10-02 15:21:31 | 000,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm [2010-10-02 15:21:31 | 000,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm [2010-10-02 15:21:31 | 000,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm [2010-10-02 15:21:31 | 000,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm [2010-10-02 15:21:31 | 000,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm [2010-10-02 15:21:31 | 000,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm [2010-10-02 15:21:31 | 000,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm [2010-10-02 15:21:31 | 000,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm [2010-10-02 15:21:31 | 000,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm [2010-10-02 15:21:31 | 000,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm [2010-10-02 15:21:31 | 000,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm [2010-10-02 15:21:31 | 000,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm [2010-10-02 15:21:31 | 000,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm [2010-10-02 15:21:31 | 000,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm [2010-10-02 15:21:31 | 000,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm [2010-10-02 15:21:31 | 000,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm [2010-10-02 15:21:31 | 000,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm [2010-10-02 15:21:31 | 000,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm [2010-10-02 15:21:31 | 000,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm [2010-10-02 15:21:31 | 000,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm [2010-10-02 15:21:31 | 000,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm [2010-10-02 15:21:31 | 000,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm [2010-10-02 15:21:31 | 000,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm [2010-10-02 15:21:31 | 000,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm [2010-10-02 15:21:31 | 000,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm [2010-10-02 15:21:31 | 000,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm [2010-10-02 15:21:31 | 000,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm [2010-10-02 15:21:31 | 000,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm [2010-10-02 15:21:31 | 000,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm [2010-10-02 15:21:30 | 000,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm [2010-10-02 15:21:30 | 000,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm [2010-10-02 15:21:30 | 000,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm [2010-10-02 15:21:30 | 000,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm [2010-10-02 15:21:30 | 000,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm [2010-10-02 15:21:30 | 000,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm [2010-10-02 15:21:30 | 000,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm [2010-10-02 15:21:30 | 000,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm [2010-10-02 15:21:30 | 000,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm [2010-10-02 15:21:30 | 000,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm [2010-10-02 15:21:30 | 000,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm [2010-10-02 15:21:29 | 000,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm [2010-10-02 15:21:29 | 000,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm [2010-10-02 15:21:29 | 000,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm [2010-10-02 15:21:29 | 000,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm [2010-10-02 15:21:29 | 000,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm [2010-10-02 15:21:29 | 000,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm [2010-10-02 15:21:29 | 000,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm [2010-10-02 15:21:29 | 000,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm [2010-10-02 15:21:29 | 000,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm [2010-09-29 21:33:27 | 000,000,549 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BitTorrent.lnk [2010-09-29 16:55:55 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Any Video Converter.lnk [2010-09-26 18:54:22 | 000,000,546 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Flyff.lnk [2010-09-26 16:25:51 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-09-25 18:50:33 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-09-25 18:49:41 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-09-25 18:48:41 | 000,118,152 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-09-25 18:47:02 | 000,000,233 | -HS- | C] () -- C:\boot.ini [2010-09-25 18:46:57 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-25 18:31:42 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Counter-Strike.url [2010-09-25 18:29:42 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-09-25 18:19:32 | 000,000,572 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-09-25 18:15:38 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\CCleaner.lnk [2010-09-25 18:04:24 | 003,932,214 | ---- | C] () -- C:\WINDOWS\BricoPack Wallpaper.bmp [2010-09-25 17:57:55 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-09-25 17:57:33 | 000,003,289 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-09-25 17:57:31 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-09-25 17:41:31 | 000,002,302 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Google Chrome.lnk [2010-09-25 17:36:20 | 000,000,940 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Moj komputer.lnk [2010-09-25 17:30:07 | 000,005,174 | ---- | C] () -- C:\WINDOWS\System32\nppt9x.vxd [2010-09-25 17:13:00 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-25 17:10:46 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-09-25 17:09:21 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-09-25 17:04:43 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-09-25 17:04:43 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-09-25 17:04:35 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-09-25 17:04:35 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-09-25 17:04:33 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-09-25 17:00:17 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-09-25 17:00:17 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-09-25 16:57:11 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-09-25 16:56:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-09-25 16:56:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-09-25 16:56:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-09-25 16:56:13 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-09-25 16:56:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-09-25 16:56:12 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-09-25 16:56:12 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-09-25 16:56:12 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-09-25 16:56:12 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-09-25 16:56:12 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-09-25 16:56:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-09-25 16:56:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-09-25 16:56:08 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-09-25 16:56:07 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-09-25 16:56:00 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2007-07-18 16:42:42 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-10-23 23:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2010-10-25 13:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-09-25 18:29:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-10-09 19:47:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GoldWave [2010-11-22 23:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-23 10:43:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-11-13 22:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-09-29 16:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\AnvSoft [2010-10-23 23:04:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ashampoo [2010-10-24 14:05:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\BESTplayer [2010-11-22 14:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent [2010-09-25 17:50:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\ESET [2010-10-13 13:00:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Gadu-Gadu 10 [2010-11-23 08:04:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\ipla [2010-10-18 08:50:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\OpenFM [2010-11-22 23:05:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong [2010-11-22 23:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM [2010-10-20 13:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Thinstall [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-07 10:29:57 | 000,000,233 | -HS- | M] () -- C:\boot.ini [2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-23 08:01:56 | 1073,295,360 | -HS- | M] () -- C:\hiberfil.sys [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2001-08-17 22:52:02 | 000,024,448 | RHS- | M] (Microsoft Corporation) -- C:\NTBOOTDD.SYS [2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004-08-03 22:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr [2010-11-23 08:01:52 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys [2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys [2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe < End of report > [/log] Extras: [log]OTL Extras logfile created on: 2010-11-23 19:30:43 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\OTL Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 024,00 Mb Total Physical Memory | 362,00 Mb Available Physical Memory | 35,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,28 Gb Total Space | 20,22 Gb Free Space | 52,81% Space Free | Partition Type: NTFS Computer Name: URSUSS | User Name: Ursus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Gry\Steam\Steam.exe" = C:\Gry\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "C:\Program Files\BitTorrent.exe" = C:\Program Files\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) "C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe" = C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{171E6C1E-B5FC-11DF-B115-005056C00008}" = Google Earth Plug-in "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{35725FBC-A136-4A46-9F29-091759D9BB93}" = MVision "{364EC092-93CF-4DDC-9D7A-7278452028E0}" = Logitech QuickCam "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{62621555-6310-433D-983E-957D707DC535}" = ESET Smart Security "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger "{95120000-00AF-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Polish) "{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars "{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX "{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Any Video Converter_is1" = Any Video Converter 3.0.7 "Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10.0.4 "BitTorrent" = BitTorrent "BitTorrentBar Toolbar" = BitTorrentBar Toolbar "CCleaner" = CCleaner "conduitEngine" = Conduit Engine "dBpoweramp Music Converter" = dBpoweramp Music Converter "DivX Setup.divx.com" = DivX Setup "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Gadu-Gadu 10" = Gadu-Gadu 10 "GoldWave v5.58" = GoldWave v5.58 "ipla" = ipla 2.2.1 "KLiteCodecPack_is1" = K-Lite Codec Pack 6.2.0 (Basic) "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "NSS" = Norton Security Scan "NVIDIA" = NVIDIA Windows 2000/XP Display Drivers "Pack Crystal XP" = Pack Crystal XP 3.0 "QcDrv" = Camera Driver "RealPlayer 12.0" = RealPlayer "Steam App 10" = Counter-Strike "SubEdit-Player_is1" = SubEdit-Player "WinRAR archiver" = Archiwizator WinRAR [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-11-23 08:44:51 | Computer Name = URSUSS | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca realplay.exe, wersja 12.0.0.879, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ System Events ] Error - 2010-11-23 10:40:39 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:39 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:39 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:39 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:39 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:48 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:48 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:48 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:48 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 10:40:49 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. < End of report > [/log] Z RSiT: log: [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Ursus at 2010-11-23 19:38:17 Microsoft Windows XP Professional Dodatek Service Pack 2 System drive C: has 21 GB (53%) free of 39 GB Total RAM: 1024 MB (29% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:38:37, on 2010-11-23 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\ESET\ESET Smart Security\ekrn.exe C:\WINDOWS\system32\WgaTray.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft ActiveSync\Wcescomm.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\PROGRA~1\MICROS~2\rapimgr.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\Gry\Steam\Steam.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\RSiT\RSIT.exe C:\Program Files\trend micro\Ursus.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2790392 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll O2 - BHO: BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: BitTorrentBar Toolbar - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LogitechSetup] D:\setup.exe /skip_all_checks /p /start /restart /l:enu O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit O4 - HKCU\..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe /autorun O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1286102379836 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- End of file - 8431 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\Norton Security Scan for Ursus.job C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-10-20 341600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-18 3908192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}] BitTorrentBar Toolbar - C:\Program Files\BitTorrentBar\tbBitT.dll [2010-10-18 3908192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-02 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-02 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - BitTorrentBar Toolbar - C:\Program Files\BitTorrentBar\tbBitT.dll [2010-10-18 3908192] {30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-18 3908192] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "LogitechCommunicationsManager"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-07-25 563984] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-07-25 2027792] "TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-10-20 202256] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064] "DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2003-05-02 4640768] "nwiz"=nwiz.exe /install [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360] "LogitechSetup"=D:\setup.exe /skip_all_checks /p /start /restart /l:enu [] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-08-03 1667584] "H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000] "NvMediaCenter"=C:\WINDOWS\system32\NVMCTRAY.DLL [2003-05-02 49152] "IPLA!"=C:\Program Files\ipla\ipla.exe [2010-11-15 18633728] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe [2010-09-13 12653152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] C:\Gry\Steam\Steam.exe [2010-11-17 1242448] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam" "C:\Program Files\BitTorrent.exe"="C:\Program Files\BitTorrent.exe:*:Enabled:BitTorrent" "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe"="C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" ======List of files/folders created in the last 1 months====== 2010-11-23 19:37:48 ----D---- C:\RSiT 2010-11-23 19:29:15 ----D---- C:\OTL 2010-11-23 15:00:23 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$ 2010-11-23 15:00:22 ----D---- C:\WINDOWS\LastGood 2010-11-22 23:21:23 ----A---- C:\WINDOWS\imsins.BAK 2010-11-22 23:21:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$ 2010-11-22 23:11:17 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM 2010-11-22 23:11:15 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\ipla 2010-11-22 23:11:15 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ipla 2010-11-22 23:10:11 ----D---- C:\WINDOWS\RegisteredPackages 2010-11-22 23:10:09 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-11-22 23:10:04 ----A---- C:\WINDOWS\system32\wmp.dll 2010-11-22 23:08:42 ----D---- C:\Program Files\ipla 2010-11-22 23:01:44 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong 2010-11-22 21:03:20 ----D---- C:\Program Files\Ashampoo 2010-11-21 17:22:53 ----ASH---- C:\hiberfil.sys 2010-11-21 17:20:59 ----D---- C:\WINDOWS\nview 2010-11-21 15:06:46 ----HD---- C:\WINDOWS\PIF 2010-11-21 13:42:38 ----D---- C:\Program Files\Conduit 2010-11-21 13:42:34 ----D---- C:\Program Files\ConduitEngine 2010-11-21 13:42:25 ----D---- C:\Program Files\BitTorrentBar 2010-11-21 13:42:17 ----D---- C:\extensions 2010-11-17 14:58:22 ----D---- C:\WINDOWS\Minidump 2010-11-16 21:42:15 ----D---- C:\Program Files\GoldWave 2010-11-13 22:39:02 ----D---- C:\WINDOWS\system32\appmgmt 2010-11-13 22:30:28 ----D---- C:\WINDOWS\system32\QuickTime 2010-11-13 22:30:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith 2010-11-13 19:39:40 ----D---- C:\Program Files\Microsoft Office 2010-11-13 19:39:25 ----D---- C:\Program Files\MSECache 2010-11-12 20:32:44 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys 2010-11-12 19:10:46 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys 2010-11-12 10:32:30 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\DivX 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\vxblock.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxwave.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxsfs.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxmas.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxinsi64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxdrv.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxcpyi64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxafs.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\px.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2010-11-12 10:31:28 ----D---- C:\Program Files\Common Files\DivX Shared 2010-11-12 10:28:35 ----D---- C:\Program Files\DivX 2010-11-12 10:27:40 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\DivX 2010-11-10 18:24:32 ----D---- C:\Program Files\Common Files\Symantec Shared 2010-11-09 14:08:21 ----HDC---- C:\WINDOWS\$NtUninstallKB909394$ 2010-11-09 14:07:47 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys 2010-11-09 14:07:47 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys 2010-11-09 14:07:35 ----D---- C:\Program Files\Microsoft ActiveSync 2010-11-09 13:26:31 ----A---- C:\WINDOWS\system32\drivers\wceusbsh.sys 2010-11-05 07:43:46 ----D---- C:\WINDOWS\system32\drivers\NSS 2010-11-05 07:43:45 ----D---- C:\Program Files\Norton Security Scan 2010-11-05 07:43:45 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Norton 2010-11-05 07:43:44 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Symantec 2010-11-05 07:43:37 ----D---- C:\Program Files\NortonInstaller 2010-11-05 07:43:37 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller 2010-11-04 19:00:44 ----D---- C:\WINDOWS\system32\Adobe 2010-11-01 13:05:03 ----A---- C:\WINDOWS\system32\KMVIDC32.DLL 2010-10-29 18:37:42 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Google 2010-10-29 18:35:41 ----D---- C:\Program Files\Google 2010-10-25 17:42:23 ----D---- C:\Program Files\SubEdit-Player 2010-10-25 13:47:31 ----D---- C:\Program Files\ESET 2010-10-25 13:47:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESET ======List of files/folders modified in the last 1 months====== 2010-11-23 19:38:37 ----D---- C:\Program Files\trend micro 2010-11-23 19:38:19 ----D---- C:\WINDOWS\Temp 2010-11-23 19:38:16 ----D---- C:\WINDOWS\Prefetch 2010-11-23 19:37:22 ----D---- C:\Pobieranie 2010-11-23 15:00:36 ----HD---- C:\WINDOWS\inf 2010-11-23 15:00:32 ----D---- C:\WINDOWS 2010-11-23 15:00:27 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-11-23 15:00:27 ----D---- C:\WINDOWS\system32 2010-11-23 13:44:33 ----A---- C:\WINDOWS\cdplayer.ini 2010-11-23 12:45:00 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-11-23 10:43:54 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM 2010-11-23 08:02:49 ----SD---- C:\WINDOWS\Tasks 2010-11-23 08:02:41 ----D---- C:\WINDOWS\system32\CatRoot2 2010-11-22 23:10:10 ----D---- C:\Program Files\Windows Media Player 2010-11-22 23:08:42 ----RD---- C:\Program Files 2010-11-22 20:59:21 ----D---- C:\Filmy i Muzyka 2010-11-22 17:30:12 ----D---- C:\WINDOWS\system32\drivers 2010-11-22 14:35:18 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent 2010-11-22 11:01:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real 2010-11-22 11:01:34 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Real 2010-11-21 17:21:04 ----D---- C:\WINDOWS\Help 2010-11-21 17:20:55 ----D---- C:\WINDOWS\system32\CatRoot 2010-11-21 17:20:27 ----D---- C:\NVIDIA 2010-11-21 13:41:30 ----A---- C:\Program Files\BitTorrent.exe 2010-11-19 21:55:12 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Skype 2010-11-19 21:46:34 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\skypePM 2010-11-19 15:15:02 ----D---- C:\Program Files\Ventrilo 2010-11-19 11:45:14 ----HD---- C:\Program Files\InstallShield Installation Information 2010-11-19 11:21:04 ----D---- C:\WINDOWS\system32\DirectX 2010-11-16 10:32:40 ----D---- C:\Gry 2010-11-14 17:16:38 ----SD---- C:\Documents and Settings\Ursus\Dane aplikacji\Microsoft 2010-11-13 22:38:13 ----D---- C:\Program Files\Common Files 2010-11-13 22:38:12 ----SHD---- C:\WINDOWS\Installer 2010-11-13 19:39:49 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-11-13 19:39:48 ----RSD---- C:\WINDOWS\Fonts 2010-11-13 19:39:48 ----D---- C:\WINDOWS\WinSxS 2010-11-10 19:53:14 ----D---- C:\WINDOWS\Debug 2010-11-10 15:01:18 ----A---- C:\WINDOWS\system32\MRT.exe 2010-11-07 10:29:57 ----SH---- C:\boot.ini 2010-11-07 10:29:57 ----A---- C:\WINDOWS\win.ini 2010-11-07 10:29:57 ----A---- C:\WINDOWS\system.ini 2010-11-04 19:02:31 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Adobe 2010-10-31 07:32:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-10-29 10:23:05 ----D---- C:\Program Files\NAPI-PROJEKT 2010-10-24 14:05:37 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\BESTplayer ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648] R0 uagp35;Filtr AGPv3.5 firmy Microsoft; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2004-08-04 44672] R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904] R1 AmdK7;Sterownik procesora AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-04 41472] R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008] R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752] R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816] R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608] R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2003-01-27 35328] R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2007-07-19 22296] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600] R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-07-19 2109592] R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-07-19 2142488] R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2007-07-19 1920920] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-07-18 25624] R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-07-19 41752] R3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2007-07-19 3599000] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2003-05-02 1312555] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368] R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024] S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880] S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys [] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 usbvideo;Urządzenie wideo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-04 78464] S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-02 153376] R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-07-19 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-07-19 137752] R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2003-05-02 69632] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-25 136176] S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-07-19 141848] S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2007-07-27 26488] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584] S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-08-02 3780040] -----------------EOF----------------- [/log] Info: [log]info.txt logfile of random's system information tool 1.08 2010-11-23 19:38:52 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10k_ActiveX.exe -maintain activex Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe" Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9L$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971032)-->"C:\WINDOWS\$NtUninstallKB971032$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981350)-->"C:\WINDOWS\$NtUninstallKB981350$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe" Any Video Converter 3.0.7-->"C:\Program Files\AnvSoft\Any Video Converter\unins000.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Ashampoo Burning Studio 10.0.4-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 10\unins000.exe" BitTorrent-->"C:\Program Files\BitTorrent.exe" /UNINSTALL BitTorrentBar Toolbar-->C:\PROGRA~1\BITTOR~1\UNWISE.EXE /U C:\PROGRA~1\BITTOR~1\INSTALL.LOG Camera Driver-->"C:\Program Files\Common Files\LogiShrd\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT CCleaner-->"C:\Program Files\CCleaner\uninst.exe" Conduit Engine-->C:\PROGRA~1\CONDUI~1\ConduitEngineUninstall.exe Counter-Strike-->"C:\Gry\Steam\steam.exe" steam://uninstall/10 dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat DivX Setup-->C:\Documents and Settings\All Users\Dane aplikacji\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe" Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe GoldWave v5.58-->"C:\Program Files\GoldWave\unstall.exe" "GoldWave v5.58" "C:\Program Files\GoldWave\unstall.log" Google Earth Plug-in-->MsiExec.exe /X{171E6C1E-B5FC-11DF-B115-005056C00008} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Hotfix for Windows XP (KB909394)-->"C:\WINDOWS\$NtUninstallKB909394$\spuninst\spuninst.exe" ipla 2.2.1-->C:\Program Files\ipla\uninst.exe Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} K-Lite Codec Pack 6.2.0 (Basic)-->"C:\Program Files\BestPlayer\K-Lite Codec Pack\unins000.exe" Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x9 UNINSTALL Logitech QuickCam-->MsiExec.exe /X{364EC092-93CF-4DDC-9D7A-7278452028E0} Microsoft ActiveSync-->MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE} Microsoft Office PowerPoint Viewer 2007 (Polish)-->MsiExec.exe /X{95120000-00AF-0415-0000-0000000FF1CE} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93} NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe" Norton Security Scan-->C:\Program Files\Norton Security Scan\Engine\2.7.3.34\InstWrap.exe NVIDIA Windows 2000/XP Display Drivers-->rundll32.exe C:\WINDOWS\system32\nvinstnt.dll,NvUninstallNT4 nv4_disp.inf Pack Crystal XP 3.0-->C:\WINDOWS\Packs\Crystal XP\Uninstall.exe Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0 RealUpgrade 1.0-->MsiExec.exe /I{F4F4F84E-804F-4E9A-84D7-C34283F0088F} Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A} Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe" Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe" VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} Ventrilo-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F} Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" ======System event log====== Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 5 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Regs Record Number: 4 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 3 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 2 Source Name: EventLog Time Written: 20101115084248.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 6009 Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 2 Uniprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20101115084248.000000+060 Event Type: informacje User: =====Application event log===== Computer Name: URSUSS Event Code: 1517 Message: System Windows zapisał rejestr użytkownika URSUSS\Ursus, kiedy aplikacja lub usługa nadal użytkowała rejestr podczas wylogowania. Pamięć używana przez rejestr użytkownika nie została zwolniona. Rejestr zostanie zwolniony, kiedy nie będzie używany. Najczęstszą tego przyczyną są usługi uruchamiane z konta użytkownika. Próbuj skonfigurować te usługi, aby były uruchamiane z konta LocalService lub NetworkService. Record Number: 5 Source Name: Userenv Time Written: 20101121124954.000000+060 Event Type: ostrzeżenie User: ZARZĄDZANIE NT\SYSTEM Computer Name: URSUSS Event Code: 0 Message: Record Number: 4 Source Name: gupdate Time Written: 20101121091046.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 1800 Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona. Record Number: 3 Source Name: SecurityCenter Time Written: 20101121091017.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 0 Message: Record Number: 2 Source Name: LVCOMSer Time Written: 20101121091015.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 0 Message: Record Number: 1 Source Name: gupdate Time Written: 20101121091012.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD "PROCESSOR_REVISION"=0801 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log]nfo:
Tomek01 komentarz 23 listopada 2010 komentarz 23 listopada 2010 Odinstaluj BitTorrentBar Toolbar. W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...&ctid=CT2790392 O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-343818398-602609370-725345543-1003\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files\BitTorrentBar\tbBitT.dll (Conduit Ltd.) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [LogitechSetup] D:\setup.exe File not found :Files C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Conduit C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar C:\Program Files\ConduitEngine C:\Program Files\BitTorrentBar C:\Program Files\Conduit C:\Program Files\ConduitEngine :Reg [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {88c7f2aa-f93f-432c-8f0e-b7d85967a527}=- {30F9B915-B755-4826-820B-08FBA6BD249D}=- :Commands [emptytemp] [start explorer] [Reboot] [/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i wyniki pokaż na forum.
UnTouch komentarz 24 listopada 2010 Autor komentarz 24 listopada 2010 Niestety nie miałem czasu aby zeskanować komputer DrWebCurelt'em, gdyż to skanowanie trwa bardzo długo. Może uda mi się zrobić to jeszcze w tym tygodniu póki co daje logi z OTL RSiT i Malwarebyte. O to log z usuwania: [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully. C:\Program Files\ConduitEngine\ConduitEngine.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ deleted successfully. File C:\Program Files\BitTorrentBar\tbBitT.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found. File C:\Program Files\ConduitEngine\ConduitEngine.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found. File C:\Program Files\BitTorrentBar\tbBitT.dll not found. Registry value HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}\ not found. File C:\Program Files\BitTorrentBar\tbBitT.dll not found. Registry value HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\LogitechSetup deleted successfully. ========== FILES ========== C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar\Facebook folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Conduit folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine\MyStuffApps folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine\Logs folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine\ExternalComponent folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine\CacheIcons folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\conduitEngine folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Rss folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Repository\conduit_CT2790392_en\ToolbarTranslation folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Repository\conduit_CT2790392_en folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Repository\conduit_CT2790392_CT2790392\ToolbarSettings folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Repository\conduit_CT2790392_CT2790392 folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Repository folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.1.1\bin folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.1.1 folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B} folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\plugins folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\Logs folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\ExternalComponent folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\EmailNotifier folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar\CacheIcons folder moved successfully. C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\BitTorrentBar folder moved successfully. C:\Program Files\ConduitEngine folder moved successfully. File\Folder C:\Program Files\BitTorrentBar not found. C:\Program Files\Conduit\Community Alerts folder moved successfully. C:\Program Files\Conduit folder moved successfully. File\Folder C:\Program Files\ConduitEngine not found. ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Ursus ->Temp folder emptied: 129897072 bytes ->Temporary Internet Files folder emptied: 49286 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 12739938 bytes ->Flash cache emptied: 2976 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 19569 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 106616 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 136,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11242010_143350 Files\Folders moved on Reboot... Registry entries deleted on Reboot... [/log] Log z OTL po usuwaniu: [log]OTL logfile created on: 2010-11-24 14:45:33 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\OTL Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 024,00 Mb Total Physical Memory | 563,00 Mb Available Physical Memory | 55,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,28 Gb Total Space | 22,68 Gb Free Space | 59,26% Space Free | Partition Type: NTFS Computer Name: URSUSS | User Name: Ursus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-11-24 14:30:49 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL\OTL.exe PRC - [2010-11-19 16:12:44 | 000,151,432 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe PRC - [2010-10-20 20:12:25 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe PRC - [2010-10-02 21:19:33 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-09-21 06:40:50 | 000,977,976 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2010-09-10 23:41:42 | 001,901,056 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe PRC - [2010-09-10 23:41:20 | 002,500,552 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe PRC - [2010-08-02 16:10:00 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010-08-02 16:09:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-08-02 16:09:55 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-01-14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009-08-06 18:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-03-10 21:18:20 | 000,970,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 18:21:43 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 18:21:43 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 18:21:42 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 18:21:38 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 18:21:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe PRC - [2008-04-14 18:21:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 18:21:10 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 18:21:10 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 18:21:02 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-07-25 15:02:54 | 000,563,984 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe PRC - [2007-07-19 23:40:48 | 000,137,752 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe PRC - [2007-07-19 23:38:54 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe PRC - [2006-11-13 15:57:16 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe PRC - [2006-11-13 15:57:06 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe PRC - [2003-05-02 15:19:00 | 000,069,632 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-11-24 14:30:49 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL\OTL.exe MOD - [2010-10-20 20:13:20 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll MOD - [2010-10-20 20:12:26 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp71.dll MOD - [2010-10-20 20:12:26 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll MOD - [2010-09-10 23:41:40 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 15:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-06-17 20:03:15 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 21:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 18:21:56 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 18:20:57 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 18:20:56 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-14 18:20:56 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 18:20:56 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 18:20:56 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 18:20:44 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 18:20:44 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 18:20:44 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 18:20:44 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 18:20:39 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 18:20:36 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 18:20:31 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 18:20:31 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fltlib.dll MOD - [2008-04-14 18:20:14 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 18:20:13 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 18:20:11 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 18:16:32 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 17:59:08 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2007-07-19 23:40:36 | 000,113,176 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcInj.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - [2010-11-19 16:12:44 | 000,151,432 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS) SRV - [2010-09-10 23:41:42 | 001,901,056 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent) SRV - [2010-08-02 21:33:50 | 003,780,040 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2010-08-02 16:10:00 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010-08-02 16:09:55 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2007-07-19 23:42:30 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher) SRV - [2007-07-19 23:40:48 | 000,137,752 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2007-07-19 23:38:54 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer) SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-09-10 23:40:54 | 000,091,560 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect) DRV - [2010-09-10 23:40:52 | 000,239,240 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard) DRV - [2010-09-10 23:40:52 | 000,025,240 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp) DRV - [2010-08-02 16:10:08 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010-08-02 16:10:08 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010-06-17 15:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 15:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2010-02-03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2008-04-13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-13 19:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2007-07-19 23:39:50 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv) DRV - [2007-07-19 23:37:56 | 002,109,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap) DRV - [2007-07-19 01:44:22 | 003,599,000 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech QuickCam Pro 9000(UVC) DRV - [2007-07-19 01:44:22 | 000,022,296 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService) DRV - [2007-07-19 01:44:00 | 000,041,752 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2007-07-19 01:42:29 | 001,920,920 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt) DRV - [2007-07-18 16:42:42 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2003-07-02 03:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2003-05-02 15:19:00 | 001,312,555 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - Reg Error: Key error. File not found IE - HKU\S-1-5-21-343818398-602609370-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-10-20 20:13:21 | 000,000,000 | ---D | M] O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-343818398-602609370-725345543-1003..\Run: [NvMediaCenter] C:\WINDOWS\System32\NVMCTRAY.DLL (NVIDIA Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1286102379836 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 81.15.252.15 194.204.159.1 213.172.186.4 213.172.186.5 O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe - (Logitech Inc.) MsConfig - StartUpReg: [b]COMODO[/b] - hkey= - key= - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO) MsConfig - StartUpReg: [b]DivXUpdate[/b] - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe () MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) MsConfig - StartUpReg: [b]IPLA![/b] - hkey= - key= - C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) MsConfig - StartUpReg: [b]LogitechQuickCamRibbon[/b] - hkey= - key= - C:\Program Files\Logitech\QuickCam\Quickcam.exe () MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Gry\Steam\Steam.exe (Valve Corporation) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: CLPSLS - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe (COMODO) SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: CLPSLS - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe (COMODO) SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-24 14:33:50 | 000,000,000 | ---D | C] -- C:\_OTL [2010-11-24 14:31:42 | 000,000,000 | ---D | C] -- C:\RSiT [2010-11-24 14:31:38 | 000,000,000 | ---D | C] -- C:\OTL [2010-11-24 14:23:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\Recent [2010-11-23 21:15:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-11-23 21:00:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-11-23 21:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-11-23 21:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2010-11-23 21:00:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2010-11-23 20:51:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2010-11-23 20:37:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2010-11-23 20:23:59 | 000,000,000 | -H-D | C] -- C:\VritualRoot [2010-11-23 20:23:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\COMODO [2010-11-23 20:15:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo [2010-11-23 20:15:29 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO [2010-11-23 20:09:13 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010-11-23 20:09:11 | 000,126,856 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010-11-23 20:09:11 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010-11-23 20:09:11 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010-11-23 20:09:11 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010-11-23 20:09:09 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2010-11-23 20:09:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avira [2010-11-22 23:11:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM [2010-11-22 23:11:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\ipla [2010-11-22 23:11:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-22 23:10:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-11-22 23:08:42 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2010-11-22 23:01:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong [2010-11-22 21:03:20 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo [2010-11-21 17:20:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-11-21 15:06:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2010-11-19 22:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Nowy folder [2010-11-17 14:58:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010-11-16 21:42:15 | 000,000,000 | ---D | C] -- C:\Program Files\GoldWave [2010-11-16 16:05:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moje obrazy [2010-11-13 22:39:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-11-13 22:32:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\TechSmith [2010-11-13 22:30:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime [2010-11-13 22:30:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-11-13 19:39:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-11-13 19:39:25 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache [2010-11-12 10:32:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\DivX [2010-11-12 10:31:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared [2010-11-12 10:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\DivX [2010-11-12 10:27:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DivX [2010-11-10 18:24:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2010-11-09 14:07:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync [2010-11-08 20:42:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Identities [2010-11-05 07:43:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS [2010-11-05 07:43:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0207030.022 [2010-11-05 07:43:45 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan [2010-11-05 07:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton [2010-11-05 07:43:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec [2010-11-05 07:43:37 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller [2010-11-05 07:43:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller [2010-11-04 19:00:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010-10-29 18:40:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-10-29 18:37:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Google [2010-10-29 18:35:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-10-29 18:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-10-25 17:42:23 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2010-10-23 23:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ashampoo [2010-10-23 23:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\ashampoo [2010-10-23 23:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2010-10-20 20:12:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2010-10-20 20:12:26 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-10-20 20:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2010-10-20 20:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2010-10-20 20:12:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2010-10-20 20:12:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Real [2010-10-20 13:16:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Thinstall [2010-10-18 08:51:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\.gstreamer-0.10 [2010-10-18 08:50:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-10-18 08:50:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\OpenFM [2010-10-10 16:04:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\skypePM [2010-10-10 16:02:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Skype [2010-10-10 16:02:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-10-10 16:02:14 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-10-10 16:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-10-10 15:45:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moje wideo [2010-10-10 15:39:12 | 000,127,034 | R--- | C] (BackWeb Technologies Inc. ) -- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe [2010-10-10 15:36:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logitech [2010-10-10 15:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2010-10-10 15:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd [2010-10-10 15:35:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LogiShrd [2010-10-09 19:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\GoldWave [2010-10-08 15:44:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2010-10-06 20:32:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2010-10-06 18:54:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010-10-06 18:54:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-10-06 18:53:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-10-04 21:08:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy [2010-10-03 21:20:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\DoctorWeb [2010-10-03 20:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Malwarebytes [2010-10-03 20:50:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-10-03 20:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-10-03 19:33:11 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-10-03 11:30:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-10-02 22:43:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\AccurateRip [2010-10-02 21:22:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-10-02 21:20:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-10-02 21:20:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-10-02 21:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-10-02 21:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Sun [2010-10-02 21:00:30 | 000,000,000 | ---D | C] -- C:\Program Files\Illustrate [2010-10-02 15:22:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\WINDOWS [2010-09-30 17:44:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ventrilo [2010-09-30 17:44:22 | 000,000,000 | ---D | C] -- C:\Program Files\Ventrilo [2010-09-30 17:44:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-09-29 21:33:19 | 000,397,176 | ---- | C] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent.exe [2010-09-29 21:31:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent [2010-09-29 16:55:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\AnvSoft [2010-09-29 16:55:19 | 000,000,000 | ---D | C] -- C:\Program Files\AnvSoft [2010-09-27 20:05:09 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-09-26 19:20:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-09-25 23:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\BestPlayer [2010-09-25 23:04:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\BESTplayer [2010-09-25 22:33:03 | 000,000,000 | ---D | C] -- C:\Program Files\Direxct [2010-09-25 19:14:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\WinRAR [2010-09-25 19:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-09-25 18:50:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-09-25 18:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-09-25 18:50:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-09-25 18:50:23 | 000,000,000 | R--D | C] -- C:\Program Files [2010-09-25 18:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-09-25 18:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-09-25 18:49:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-09-25 18:49:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-09-25 18:49:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-09-25 18:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-09-25 18:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-09-25 18:49:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-09-25 18:49:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-09-25 18:49:08 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-09-25 18:49:08 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-09-25 18:48:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-09-25 18:40:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-09-25 18:40:15 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-09-25 18:40:15 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-09-25 18:40:15 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-09-25 18:40:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-09-25 18:40:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-09-25 18:38:24 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-09-25 18:30:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Gadu-Gadu 10 [2010-09-25 18:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-09-25 18:28:27 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-09-25 18:15:36 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-09-25 18:02:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Packs [2010-09-25 17:58:01 | 000,049,152 | ---- | C] (SoundMAX) -- C:\WINDOWS\System32\S11thk32.dll [2010-09-25 17:58:01 | 000,040,820 | ---- | C] (SoundMAX) -- C:\WINDOWS\System32\Syncor11.dll [2010-09-25 17:57:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\VirtualEar [2010-09-25 17:57:56 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices [2010-09-25 17:57:55 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe [2010-09-25 17:57:55 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-09-25 17:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\ESET [2010-09-25 17:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\ESET [2010-09-25 17:50:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2010-09-25 17:43:42 | 000,000,000 | ---D | C] -- C:\Pobieranie [2010-09-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Macromedia [2010-09-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Adobe [2010-09-25 17:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Temp [2010-09-25 17:40:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google [2010-09-25 17:39:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\UserData [2010-09-25 17:37:25 | 000,000,000 | ---D | C] -- C:\Filmy i Muzyka [2010-09-25 17:37:20 | 000,000,000 | ---D | C] -- C:\Gry [2010-09-25 17:36:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-09-25 17:31:06 | 003,780,040 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des [2010-09-25 17:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2010-09-25 17:30:07 | 000,004,682 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\npptNT2.sys [2010-09-25 17:30:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\INCA Shared [2010-09-25 17:25:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-09-25 17:25:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-09-25 17:25:13 | 000,000,000 | ---D | C] -- C:\NVIDIA [2010-09-25 17:11:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Identities [2010-09-25 17:11:53 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-09-25 17:11:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty\Moja muzyka [2010-09-25 17:11:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\Dane aplikacji\Microsoft [2010-09-25 17:11:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ursus\Cookies [2010-09-25 17:11:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\SendTo [2010-09-25 17:11:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ursus\Dane aplikacji [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Ulubione [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Moje dokumenty [2010-09-25 17:11:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ursus\Menu Start [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\Szablony [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\PrintHood [2010-09-25 17:11:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ursus\NetHood [2010-09-25 17:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Pulpit [2010-09-25 17:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-09-25 17:10:51 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-09-25 17:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-09-25 17:10:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-09-25 17:10:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-09-25 17:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-09-25 17:03:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-09-25 17:03:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-09-25 17:03:19 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-09-25 17:03:06 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-09-25 17:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-09-25 17:02:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-09-25 16:59:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-09-25 16:59:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-09-25 16:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-09-25 16:59:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-09-25 16:59:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-09-25 16:58:56 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-09-25 16:58:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-09-25 16:58:19 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-09-25 16:58:08 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-09-25 16:57:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-09-25 16:57:46 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-09-25 16:57:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-09-25 16:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-09-25 16:56:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-09-25 16:56:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-09-25 16:56:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-09-25 16:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-09-25 16:56:30 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-09-25 16:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-09-25 16:55:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-09-25 16:55:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-09-25 16:55:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-11-24 14:45:00 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-24 14:38:53 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-24 14:38:51 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-24 14:38:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-24 14:38:13 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-24 14:37:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-24 14:37:57 | 1073,295,360 | -HS- | M] () -- C:\hiberfil.sys [2010-11-24 14:37:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2010-11-23 22:13:45 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-23 22:13:45 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-23 22:13:45 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-23 22:13:45 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-23 22:10:47 | 000,119,744 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-23 21:44:27 | 000,000,156 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Moj komputer.lnk [2010-11-23 21:42:52 | 000,000,233 | -HS- | M] () -- C:\boot.ini [2010-11-23 21:19:16 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-23 20:50:30 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-11-23 16:07:11 | 000,000,474 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for Ursus.job [2010-11-23 15:51:30 | 000,017,408 | ---- | M] () -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-23 13:44:33 | 000,000,050 | ---- | M] () -- C:\WINDOWS\cdplayer.ini [2010-11-22 23:10:31 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-22 21:04:24 | 000,000,846 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Burning Studio 10.lnk [2010-11-21 13:41:30 | 000,397,176 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent.exe [2010-11-19 21:46:21 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-19 15:15:00 | 000,000,622 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Skrót do Ventrilo.lnk [2010-11-16 21:42:17 | 000,000,471 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\GoldWave.lnk [2010-11-09 14:09:29 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\Ursus\Dane aplikacji\$_hpcst$.hpc [2010-11-05 07:43:46 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini [2010-11-01 13:05:59 | 000,047,104 | ---- | M] () -- C:\WINDOWS\System32\KMVIDC32.DLL [2010-11-01 12:43:00 | 000,049,101 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Asd2.jpg [2010-10-25 17:42:32 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\SubEdit-Player.lnk [2010-10-20 20:12:26 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-10-17 14:24:58 | 000,019,307 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Asd.jpg [2010-10-10 16:04:25 | 000,000,048 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-10-10 15:39:11 | 000,127,034 | R--- | M] (BackWeb Technologies Inc. ) -- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe [2010-10-09 15:25:25 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\NapiProjekt.lnk [2010-10-03 11:31:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-10-03 11:31:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-10-02 22:43:01 | 000,017,766 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat [2010-10-02 22:42:44 | 000,033,846 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.bmp [2010-10-02 22:42:11 | 006,814,952 | ---- | M] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2010-10-02 22:34:05 | 000,000,555 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\HLSS.lnk [2010-10-02 20:59:10 | 000,000,948 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\CFG.lnk [2010-10-02 19:34:42 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-09-29 21:33:27 | 000,000,549 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BitTorrent.lnk [2010-09-29 16:55:55 | 000,000,799 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Any Video Converter.lnk [2010-09-26 18:54:22 | 000,000,546 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Flyff.lnk [2010-09-25 18:31:42 | 000,000,075 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Counter-Strike.url [2010-09-25 18:29:42 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-09-25 18:24:24 | 000,000,572 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-09-25 18:15:38 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\CCleaner.lnk [2010-09-25 18:04:24 | 003,932,214 | ---- | M] () -- C:\WINDOWS\BricoPack Wallpaper.bmp [2010-09-25 17:57:55 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\msssc.dll [2010-09-25 17:57:33 | 000,003,289 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-09-25 17:41:31 | 000,002,302 | ---- | M] () -- C:\Documents and Settings\Ursus\Pulpit\Google Chrome.lnk [2010-09-25 17:10:46 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-09-25 17:09:21 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-25 17:04:43 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-09-25 17:04:24 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-09-25 16:57:11 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-22 23:10:31 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-22 21:04:24 | 000,000,846 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Burning Studio 10.lnk [2010-11-21 17:22:53 | 1073,295,360 | -HS- | C] () -- C:\hiberfil.sys [2010-11-19 15:15:00 | 000,000,622 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Skrót do Ventrilo.lnk [2010-11-16 21:42:17 | 000,000,471 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\GoldWave.lnk [2010-11-13 22:23:57 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-11-09 14:09:29 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Ursus\Dane aplikacji\$_hpcst$.hpc [2010-11-05 07:43:54 | 000,000,474 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for Ursus.job [2010-11-05 07:43:46 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini [2010-11-01 13:05:03 | 000,047,104 | ---- | C] () -- C:\WINDOWS\System32\KMVIDC32.DLL [2010-11-01 12:43:00 | 000,049,101 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Asd2.jpg [2010-10-29 18:35:51 | 000,001,034 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-10-29 18:35:51 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-10-25 17:42:32 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\SubEdit-Player.lnk [2010-10-20 20:14:32 | 000,000,050 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2010-10-20 20:13:22 | 000,000,286 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job [2010-10-17 14:24:58 | 000,019,307 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Asd.jpg [2010-10-10 16:04:25 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-10-10 16:02:20 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-10-10 15:42:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2010-10-10 15:42:17 | 000,058,163 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2010-10-10 15:42:17 | 000,019,344 | R--- | C] () -- C:\WINDOWS\System32\Repository.reg [2010-10-09 15:25:25 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\NapiProjekt.lnk [2010-10-07 11:41:38 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm [2010-10-07 11:41:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav [2010-10-07 11:41:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav [2010-10-07 11:41:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav [2010-10-07 11:41:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav [2010-10-07 11:41:38 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav [2010-10-07 11:41:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav [2010-10-07 11:41:38 | 000,071,460 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm [2010-10-07 11:41:38 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm [2010-10-07 11:41:38 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta [2010-10-07 11:41:38 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css [2010-10-07 11:41:38 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf [2010-10-07 11:41:38 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js [2010-10-07 11:41:37 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav [2010-10-07 11:41:37 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav [2010-10-07 11:41:37 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav [2010-10-07 11:41:37 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf [2010-10-07 11:41:33 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf [2010-10-07 11:41:33 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf [2010-10-07 11:41:33 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif [2010-10-07 11:41:33 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif [2010-10-07 11:41:33 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif [2010-10-07 11:41:33 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif [2010-10-07 11:41:33 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif [2010-10-07 11:41:33 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif [2010-10-07 11:41:33 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif [2010-10-07 11:41:33 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif [2010-10-07 11:41:33 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif [2010-10-07 11:41:25 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv [2010-10-07 11:41:25 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif [2010-10-07 11:41:25 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif [2010-10-07 11:41:12 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif [2010-10-07 11:41:12 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js [2010-10-07 11:41:12 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif [2010-10-07 11:41:12 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif [2010-10-07 11:41:12 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif [2010-10-07 11:41:12 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif [2010-10-07 11:41:09 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif [2010-10-07 11:41:09 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif [2010-10-07 11:41:09 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif [2010-10-07 11:41:09 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif [2010-10-07 11:40:55 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm [2010-10-07 11:40:53 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf [2010-10-07 11:40:45 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv [2010-10-07 11:40:42 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz [2010-10-07 11:40:34 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm [2010-10-07 11:40:34 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl [2010-10-07 11:40:34 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl [2010-10-07 11:40:34 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl [2010-10-07 11:40:34 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl [2010-10-07 11:40:34 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl [2010-10-07 11:40:33 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl [2010-10-07 11:40:33 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl [2010-10-07 11:40:33 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl [2010-10-07 11:40:33 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl [2010-10-07 11:40:33 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl [2010-10-07 11:40:33 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl [2010-10-07 11:40:33 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl [2010-10-07 11:40:33 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl [2010-10-07 11:40:33 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl [2010-10-07 11:40:33 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl [2010-10-07 11:40:25 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv [2010-10-07 11:40:21 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip [2010-10-07 11:40:21 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip [2010-10-07 11:40:20 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2010-10-07 11:39:51 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf [2010-10-07 11:39:51 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif [2010-10-07 11:39:51 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif [2010-10-07 11:39:42 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv [2010-10-07 11:39:21 | 000,001,950 | ---- | C] () -- C:\WINDOWS\System32\pid.inf [2010-10-07 11:38:58 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js [2010-10-07 11:38:49 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2010-10-07 11:38:48 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv [2010-10-07 11:38:48 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css [2010-10-07 11:38:48 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm [2010-10-07 11:38:48 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js [2010-10-07 11:38:47 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz [2010-10-07 11:38:47 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif [2010-10-07 11:38:47 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif [2010-10-07 11:38:47 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif [2010-10-07 11:38:46 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif [2010-10-07 11:38:46 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif [2010-10-07 11:38:42 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif [2010-10-07 11:38:40 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2010-10-02 22:43:01 | 000,033,846 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.bmp [2010-10-02 22:43:01 | 000,017,766 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat [2010-10-02 22:34:05 | 000,000,555 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\HLSS.lnk [2010-10-02 21:00:35 | 006,814,952 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2010-10-02 20:59:10 | 000,000,948 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\CFG.lnk [2010-10-02 19:34:40 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2010-10-02 15:21:37 | 000,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm [2010-10-02 15:21:37 | 000,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm [2010-10-02 15:21:37 | 000,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm [2010-10-02 15:21:37 | 000,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm [2010-10-02 15:21:36 | 000,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm [2010-10-02 15:21:36 | 000,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm [2010-10-02 15:21:36 | 000,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm [2010-10-02 15:21:36 | 000,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm [2010-10-02 15:21:36 | 000,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm [2010-10-02 15:21:36 | 000,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm [2010-10-02 15:21:36 | 000,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm [2010-10-02 15:21:36 | 000,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm [2010-10-02 15:21:35 | 000,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm [2010-10-02 15:21:35 | 000,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm [2010-10-02 15:21:35 | 000,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm [2010-10-02 15:21:35 | 000,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm [2010-10-02 15:21:35 | 000,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm [2010-10-02 15:21:35 | 000,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm [2010-10-02 15:21:35 | 000,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm [2010-10-02 15:21:35 | 000,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm [2010-10-02 15:21:35 | 000,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm [2010-10-02 15:21:35 | 000,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm [2010-10-02 15:21:35 | 000,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm [2010-10-02 15:21:35 | 000,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm [2010-10-02 15:21:35 | 000,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm [2010-10-02 15:21:35 | 000,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm [2010-10-02 15:21:35 | 000,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm [2010-10-02 15:21:35 | 000,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm [2010-10-02 15:21:34 | 000,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm [2010-10-02 15:21:34 | 000,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm [2010-10-02 15:21:34 | 000,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm [2010-10-02 15:21:34 | 000,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm [2010-10-02 15:21:34 | 000,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm [2010-10-02 15:21:34 | 000,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm [2010-10-02 15:21:34 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm [2010-10-02 15:21:34 | 000,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm [2010-10-02 15:21:34 | 000,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm [2010-10-02 15:21:34 | 000,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm [2010-10-02 15:21:34 | 000,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm [2010-10-02 15:21:34 | 000,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm [2010-10-02 15:21:34 | 000,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm [2010-10-02 15:21:34 | 000,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm [2010-10-02 15:21:34 | 000,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm [2010-10-02 15:21:34 | 000,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm [2010-10-02 15:21:33 | 000,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm [2010-10-02 15:21:33 | 000,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm [2010-10-02 15:21:33 | 000,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm [2010-10-02 15:21:33 | 000,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm [2010-10-02 15:21:33 | 000,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm [2010-10-02 15:21:33 | 000,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm [2010-10-02 15:21:33 | 000,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm [2010-10-02 15:21:33 | 000,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm [2010-10-02 15:21:32 | 000,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm [2010-10-02 15:21:32 | 000,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm [2010-10-02 15:21:32 | 000,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm [2010-10-02 15:21:32 | 000,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm [2010-10-02 15:21:32 | 000,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm [2010-10-02 15:21:32 | 000,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm [2010-10-02 15:21:32 | 000,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm [2010-10-02 15:21:32 | 000,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm [2010-10-02 15:21:31 | 000,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm [2010-10-02 15:21:31 | 000,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm [2010-10-02 15:21:31 | 000,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm [2010-10-02 15:21:31 | 000,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm [2010-10-02 15:21:31 | 000,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm [2010-10-02 15:21:31 | 000,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm [2010-10-02 15:21:31 | 000,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm [2010-10-02 15:21:31 | 000,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm [2010-10-02 15:21:31 | 000,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm [2010-10-02 15:21:31 | 000,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm [2010-10-02 15:21:31 | 000,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm [2010-10-02 15:21:31 | 000,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm [2010-10-02 15:21:31 | 000,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm [2010-10-02 15:21:31 | 000,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm [2010-10-02 15:21:31 | 000,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm [2010-10-02 15:21:31 | 000,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm [2010-10-02 15:21:31 | 000,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm [2010-10-02 15:21:31 | 000,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm [2010-10-02 15:21:31 | 000,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm [2010-10-02 15:21:31 | 000,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm [2010-10-02 15:21:31 | 000,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm [2010-10-02 15:21:31 | 000,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm [2010-10-02 15:21:31 | 000,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm [2010-10-02 15:21:31 | 000,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm [2010-10-02 15:21:31 | 000,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm [2010-10-02 15:21:31 | 000,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm [2010-10-02 15:21:31 | 000,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm [2010-10-02 15:21:31 | 000,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm [2010-10-02 15:21:31 | 000,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm [2010-10-02 15:21:31 | 000,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm [2010-10-02 15:21:31 | 000,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm [2010-10-02 15:21:31 | 000,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm [2010-10-02 15:21:31 | 000,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm [2010-10-02 15:21:31 | 000,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm [2010-10-02 15:21:31 | 000,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm [2010-10-02 15:21:31 | 000,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm [2010-10-02 15:21:30 | 000,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm [2010-10-02 15:21:30 | 000,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm [2010-10-02 15:21:30 | 000,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm [2010-10-02 15:21:30 | 000,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm [2010-10-02 15:21:30 | 000,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm [2010-10-02 15:21:30 | 000,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm [2010-10-02 15:21:30 | 000,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm [2010-10-02 15:21:30 | 000,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm [2010-10-02 15:21:30 | 000,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm [2010-10-02 15:21:30 | 000,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm [2010-10-02 15:21:30 | 000,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm [2010-10-02 15:21:29 | 000,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm [2010-10-02 15:21:29 | 000,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm [2010-10-02 15:21:29 | 000,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm [2010-10-02 15:21:29 | 000,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm [2010-10-02 15:21:29 | 000,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm [2010-10-02 15:21:29 | 000,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm [2010-10-02 15:21:29 | 000,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm [2010-10-02 15:21:29 | 000,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm [2010-10-02 15:21:29 | 000,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm [2010-09-29 21:33:27 | 000,000,549 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BitTorrent.lnk [2010-09-29 16:55:55 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Any Video Converter.lnk [2010-09-26 18:54:22 | 000,000,546 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Flyff.lnk [2010-09-26 16:25:51 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-09-25 18:50:33 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-09-25 18:49:41 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-09-25 18:48:41 | 000,119,744 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-09-25 18:47:02 | 000,000,233 | -HS- | C] () -- C:\boot.ini [2010-09-25 18:46:57 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-25 18:31:42 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Counter-Strike.url [2010-09-25 18:29:42 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-09-25 18:19:32 | 000,000,572 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-09-25 18:15:38 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\CCleaner.lnk [2010-09-25 18:04:24 | 003,932,214 | ---- | C] () -- C:\WINDOWS\BricoPack Wallpaper.bmp [2010-09-25 17:57:55 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-09-25 17:57:33 | 000,003,289 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-09-25 17:57:31 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-09-25 17:41:31 | 000,002,302 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Google Chrome.lnk [2010-09-25 17:36:20 | 000,000,156 | ---- | C] () -- C:\Documents and Settings\Ursus\Pulpit\Moj komputer.lnk [2010-09-25 17:30:07 | 000,005,174 | ---- | C] () -- C:\WINDOWS\System32\nppt9x.vxd [2010-09-25 17:13:00 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-25 17:10:46 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-09-25 17:09:21 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-09-25 17:04:43 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-09-25 17:04:43 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-09-25 17:04:43 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-09-25 17:04:35 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-09-25 17:04:35 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-09-25 17:04:33 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-09-25 17:00:17 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-09-25 17:00:17 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-09-25 16:57:11 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-09-25 16:56:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-09-25 16:56:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-09-25 16:56:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-09-25 16:56:13 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-09-25 16:56:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-09-25 16:56:12 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-09-25 16:56:12 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-09-25 16:56:12 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-09-25 16:56:12 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-09-25 16:56:12 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-09-25 16:56:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-09-25 16:56:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-09-25 16:56:08 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-09-25 16:56:07 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-09-25 16:56:00 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2007-07-18 16:42:42 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-10-23 23:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2010-09-25 18:29:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-10-09 19:47:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GoldWave [2010-11-22 23:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-23 10:43:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-11-13 22:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-09-29 16:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\AnvSoft [2010-10-23 23:04:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Ashampoo [2010-10-24 14:05:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\BESTplayer [2010-11-22 14:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent [2010-09-25 17:50:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\ESET [2010-10-13 13:00:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Gadu-Gadu 10 [2010-11-23 21:22:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\ipla [2010-10-18 08:50:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\OpenFM [2010-11-22 23:05:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong [2010-11-22 23:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM [2010-10-20 13:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ursus\Dane aplikacji\Thinstall [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-23 21:42:52 | 000,000,233 | -HS- | M] () -- C:\boot.ini [2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-09-25 17:04:43 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-24 14:37:57 | 1073,295,360 | -HS- | M] () -- C:\hiberfil.sys [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-09-25 17:04:43 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2001-08-17 22:52:02 | 000,024,448 | RHS- | M] (Microsoft Corporation) -- C:\NTBOOTDD.SYS [2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2010-11-23 20:50:30 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-11-24 14:37:53 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\sp3.cab:agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\sp3.cab:atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2010-11-23 20:37:25 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\sp3.cab:cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] Extras z OTL po usuwaniu: [log]OTL Extras logfile created on: 2010-11-24 14:45:33 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\OTL Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 024,00 Mb Total Physical Memory | 563,00 Mb Available Physical Memory | 55,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,28 Gb Total Space | 22,68 Gb Free Space | 59,26% Space Free | Partition Type: NTFS Computer Name: URSUSS | User Name: Ursus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Gry\Steam\Steam.exe" = C:\Gry\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "C:\Program Files\BitTorrent.exe" = C:\Program Files\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) "C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe" = C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{171E6C1E-B5FC-11DF-B115-005056C00008}" = Google Earth Plug-in "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{35725FBC-A136-4A46-9F29-091759D9BB93}" = MVision "{364EC092-93CF-4DDC-9D7A-7278452028E0}" = Logitech QuickCam "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger "{95120000-00AF-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Polish) "{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars "{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX "{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0 "{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Any Video Converter_is1" = Any Video Converter 3.0.7 "Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10.0.4 "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "BitTorrent" = BitTorrent "CCleaner" = CCleaner "COMODO GeekBuddy" = COMODO GeekBuddy "dBpoweramp Music Converter" = dBpoweramp Music Converter "DivX Setup.divx.com" = DivX Setup "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Gadu-Gadu 10" = Gadu-Gadu 10 "GoldWave v5.58" = GoldWave v5.58 "ipla" = ipla 2.2.1 "KLiteCodecPack_is1" = K-Lite Codec Pack 6.2.0 (Basic) "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "NSS" = Norton Security Scan "NVIDIA" = NVIDIA Windows 2000/XP Display Drivers "Pack Crystal XP" = Pack Crystal XP 3.0 "QcDrv" = Camera Driver "RealPlayer 12.0" = RealPlayer "Steam App 10" = Counter-Strike "SubEdit-Player_is1" = SubEdit-Player "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = Archiwizator WinRAR [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-343818398-602609370-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-11-23 08:44:51 | Computer Name = URSUSS | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca realplay.exe, wersja 12.0.0.879, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ System Events ] Error - 2010-11-23 10:40:49 | Computer Name = URSUSS | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-23 15:07:56 | Computer Name = URSUSS | Source = SideBySide | ID = 16842784 Description = Nie można odnaleźć zestawu zależnego Microsoft.VC90.CRT; ostatni błąd: Odnośny zestaw nie jest zainstalowany w tym systemie. Error - 2010-11-23 15:07:56 | Computer Name = URSUSS | Source = SideBySide | ID = 16842811 Description = Resolve Partial Assembly nie powiodło się dla Microsoft.VC90.CRT. Odpowiedni komunikat o błędzie: Odnośny zestaw nie jest zainstalowany w tym systemie. . Error - 2010-11-23 15:07:56 | Computer Name = URSUSS | Source = SideBySide | ID = 16842811 Description = Generate Activation Context nie powiodło się dla C:\DOCUME~1\Ursus\USTAWI~1\Temp\RarSFX0\redist.dll. Odpowiedni komunikat o błędzie: Operacja ukończona pomyślnie. . Error - 2010-11-24 09:33:51 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa COMODO livePCsupport Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-24 09:33:51 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa Process Monitor niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-24 09:33:51 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa LVCOMSer niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-24 09:33:52 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Driver Helper Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-24 09:33:52 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa SoundMAX Agent Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-24 09:33:53 | Computer Name = URSUSS | Source = Service Control Manager | ID = 7034 Description = Usługa Java Quick Starter niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. < End of report > [/log] Log z RSiT po usuwaniu: [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Ursus at 2010-11-24 14:54:33 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 23 GB (59%) free of 39 GB Total RAM: 1024 MB (60% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:55:22, on 2010-11-24 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\COMODO\COMODO Internet Security\cfp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft ActiveSync\Wcescomm.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\PROGRA~1\MICROS~2\rapimgr.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Ursus\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\WINDOWS\notepad.exe C:\WINDOWS\notepad.exe C:\RSiT\RSIT.exe C:\Program Files\trend micro\Ursus.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file) O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1286102379836 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{0588DA38-1BC6-48CC-B424-684FD603D738}: NameServer = 156.154.70.25,156.154.71.25 O17 - HKLM\System\CS1\Services\Tcpip\..\{0588DA38-1BC6-48CC-B424-684FD603D738}: NameServer = 156.154.70.25,156.154.71.25 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- End of file - 8123 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\Norton Security Scan for Ursus.job C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-725345543-1003.job C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-725345543-1003.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-10-20 341600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-02 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-02 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "LogitechCommunicationsManager"=C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-07-25 563984] "TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-10-20 202256] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2003-05-02 4640768] "nwiz"=nwiz.exe /install [] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-08-02 281768] "COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2010-09-10 2500552] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000] "NvMediaCenter"=C:\WINDOWS\system32\NVMCTRAY.DLL [2003-05-02 49152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe [2010-11-19 210648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe [2010-09-13 12653152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IPLA!] C:\Program Files\ipla\ipla.exe [2010-11-15 18633728] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-07-25 2027792] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] C:\Gry\Steam\Steam.exe [2010-11-17 1242448] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Logitech Desktop Messenger.lnk] C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LOGITE~1.EXE [2010-10-10 67128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam" "C:\Program Files\BitTorrent.exe"="C:\Program Files\BitTorrent.exe:*:Enabled:BitTorrent" "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe"="C:\Gry\Steam\steamapps\yohxonee\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-11-24 14:33:50 ----D---- C:\_OTL 2010-11-24 14:31:42 ----D---- C:\RSiT 2010-11-24 14:31:38 ----D---- C:\OTL 2010-11-23 21:15:39 ----D---- C:\WINDOWS\Prefetch 2010-11-23 21:12:37 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2010-11-23 21:12:24 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2010-11-23 21:12:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2010-11-23 21:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2010-11-23 21:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2010-11-23 21:11:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2010-11-23 21:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2010-11-23 21:10:41 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-11-23 21:10:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-11-23 21:10:12 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2010-11-23 21:09:57 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2010-11-23 21:09:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2010-11-23 21:09:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2010-11-23 21:09:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2010-11-23 21:08:58 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2010-11-23 21:08:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2010-11-23 21:08:34 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2010-11-23 21:08:19 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2010-11-23 21:08:03 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2010-11-23 21:07:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2010-11-23 21:00:08 ----D---- C:\WINDOWS\system32\pl-pl 2010-11-23 21:00:06 ----D---- C:\WINDOWS\system32\pl 2010-11-23 21:00:06 ----D---- C:\WINDOWS\l2schemas 2010-11-23 21:00:05 ----D---- C:\WINDOWS\system32\bits 2010-11-23 20:51:29 ----D---- C:\WINDOWS\network diagnostic 2010-11-23 20:37:35 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2010-11-23 20:23:59 ----HD---- C:\VritualRoot 2010-11-23 20:15:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Comodo 2010-11-23 20:15:29 ----D---- C:\Program Files\COMODO 2010-11-23 20:09:13 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys 2010-11-23 20:09:11 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys 2010-11-23 20:09:11 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys 2010-11-23 20:09:11 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys 2010-11-23 20:09:11 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys 2010-11-23 20:09:09 ----D---- C:\Program Files\Avira 2010-11-23 20:09:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Avira 2010-11-23 15:00:23 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$ 2010-11-22 23:21:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$ 2010-11-22 23:11:17 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\RDRM 2010-11-22 23:11:15 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\ipla 2010-11-22 23:11:15 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ipla 2010-11-22 23:10:11 ----D---- C:\WINDOWS\RegisteredPackages 2010-11-22 23:10:09 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-11-22 23:10:04 ----A---- C:\WINDOWS\system32\wmp.dll 2010-11-22 23:08:42 ----D---- C:\Program Files\ipla 2010-11-22 23:01:44 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\PriceGong 2010-11-22 21:03:20 ----D---- C:\Program Files\Ashampoo 2010-11-21 17:22:53 ----ASH---- C:\hiberfil.sys 2010-11-21 17:20:59 ----D---- C:\WINDOWS\nview 2010-11-21 15:06:46 ----HD---- C:\WINDOWS\PIF 2010-11-17 14:58:22 ----D---- C:\WINDOWS\Minidump 2010-11-16 21:42:15 ----D---- C:\Program Files\GoldWave 2010-11-13 22:39:02 ----D---- C:\WINDOWS\system32\appmgmt 2010-11-13 22:30:28 ----D---- C:\WINDOWS\system32\QuickTime 2010-11-13 22:30:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith 2010-11-13 19:39:40 ----D---- C:\Program Files\Microsoft Office 2010-11-13 19:39:25 ----D---- C:\Program Files\MSECache 2010-11-12 20:32:44 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys 2010-11-12 19:10:46 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys 2010-11-12 10:32:30 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\DivX 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\vxblock.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxwave.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxsfs.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxmas.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxinsi64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxdrv.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxcpyi64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\pxafs.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\px.dll 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2010-11-12 10:32:01 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2010-11-12 10:31:28 ----D---- C:\Program Files\Common Files\DivX Shared 2010-11-12 10:28:35 ----D---- C:\Program Files\DivX 2010-11-12 10:27:40 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\DivX 2010-11-10 18:24:32 ----D---- C:\Program Files\Common Files\Symantec Shared 2010-11-09 14:08:21 ----HDC---- C:\WINDOWS\$NtUninstallKB909394$ 2010-11-09 14:07:47 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys 2010-11-09 14:07:47 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys 2010-11-09 14:07:35 ----D---- C:\Program Files\Microsoft ActiveSync 2010-11-09 13:26:31 ----A---- C:\WINDOWS\system32\drivers\wceusbsh.sys 2010-11-05 07:43:46 ----D---- C:\WINDOWS\system32\drivers\NSS 2010-11-05 07:43:45 ----D---- C:\Program Files\Norton Security Scan 2010-11-05 07:43:45 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Norton 2010-11-05 07:43:44 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Symantec 2010-11-05 07:43:37 ----D---- C:\Program Files\NortonInstaller 2010-11-05 07:43:37 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller 2010-11-04 19:00:44 ----D---- C:\WINDOWS\system32\Adobe 2010-11-01 13:05:03 ----A---- C:\WINDOWS\system32\KMVIDC32.DLL 2010-10-29 18:37:42 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Google 2010-10-29 18:35:41 ----D---- C:\Program Files\Google 2010-10-25 17:42:23 ----D---- C:\Program Files\SubEdit-Player ======List of files/folders modified in the last 1 months====== 2010-11-24 14:54:42 ----D---- C:\Program Files\trend micro 2010-11-24 14:39:38 ----D---- C:\WINDOWS\Temp 2010-11-24 14:38:51 ----SD---- C:\WINDOWS\Tasks 2010-11-24 14:38:42 ----D---- C:\WINDOWS 2010-11-24 14:38:04 ----D---- C:\WINDOWS\system32\CatRoot2 2010-11-24 14:36:43 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-11-24 14:34:13 ----RD---- C:\Program Files 2010-11-24 14:31:58 ----D---- C:\Pobieranie 2010-11-24 14:23:26 ----D---- C:\WINDOWS\Debug 2010-11-24 11:50:00 ----D---- C:\Filmy i Muzyka 2010-11-24 08:57:08 ----HD---- C:\WINDOWS\inf 2010-11-24 08:54:10 ----HD---- C:\WINDOWS\$hf_mig$ 2010-11-24 08:28:08 ----D---- C:\WINDOWS\system32 2010-11-23 22:17:29 ----D---- C:\WINDOWS\system32\CatRoot 2010-11-23 22:17:24 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-11-23 22:17:07 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-11-23 22:16:49 ----D---- C:\WINDOWS\system32\drivers 2010-11-23 22:13:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-11-23 21:43:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-11-23 21:43:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2010-11-23 21:42:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-11-23 21:42:52 ----SH---- C:\boot.ini 2010-11-23 21:42:52 ----A---- C:\WINDOWS\win.ini 2010-11-23 21:42:52 ----A---- C:\WINDOWS\system.ini 2010-11-23 21:42:27 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-11-23 21:40:21 ----D---- C:\Program Files\Outlook Express 2010-11-23 21:31:04 ----D---- C:\WINDOWS\pss 2010-11-23 21:19:10 ----SHD---- C:\WINDOWS\Installer 2010-11-23 21:15:04 ----D---- C:\WINDOWS\system32\Setup 2010-11-23 21:15:04 ----D---- C:\WINDOWS\AppPatch 2010-11-23 21:15:03 ----D---- C:\WINDOWS\system32\wbem 2010-11-23 21:15:01 ----RSD---- C:\WINDOWS\Fonts 2010-11-23 21:13:45 ----D---- C:\WINDOWS\security 2010-11-23 21:08:21 ----D---- C:\Program Files\Messenger 2010-11-23 21:01:12 ----D---- C:\WINDOWS\WinSxS 2010-11-23 21:00:52 ----D---- C:\Program Files\Windows Media Player 2010-11-23 21:00:51 ----D---- C:\WINDOWS\Help 2010-11-23 21:00:32 ----D---- C:\WINDOWS\ehome 2010-11-23 21:00:30 ----D---- C:\WINDOWS\system32\inetsrv 2010-11-23 21:00:30 ----D---- C:\WINDOWS\ime 2010-11-23 21:00:08 ----D---- C:\WINDOWS\system32\usmt 2010-11-23 21:00:07 ----D---- C:\Program Files\Internet Explorer 2010-11-23 21:00:05 ----D---- C:\WINDOWS\PeerNet 2010-11-23 21:00:05 ----D---- C:\Program Files\Movie Maker 2010-11-23 20:55:15 ----D---- C:\WINDOWS\ServicePackFiles 2010-11-23 20:54:58 ----D---- C:\WINDOWS\system32\Restore 2010-11-23 20:54:58 ----D---- C:\WINDOWS\system32\npp 2010-11-23 20:54:56 ----D---- C:\WINDOWS\msagent 2010-11-23 20:54:52 ----D---- C:\WINDOWS\srchasst 2010-11-23 20:54:49 ----D---- C:\Program Files\NetMeeting 2010-11-23 20:54:47 ----D---- C:\WINDOWS\system32\Com 2010-11-23 20:54:44 ----D---- C:\Program Files\Windows NT 2010-11-23 20:54:38 ----D---- C:\Program Files\Common Files\System 2010-11-23 20:54:17 ----D---- C:\WINDOWS\system32\oobe 2010-11-23 20:54:14 ----D---- C:\WINDOWS\system 2010-11-23 20:48:49 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-11-23 13:44:33 ----A---- C:\WINDOWS\cdplayer.ini 2010-11-23 10:43:54 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM 2010-11-22 14:35:18 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\BitTorrent 2010-11-22 11:01:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real 2010-11-22 11:01:34 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Real 2010-11-21 17:20:27 ----D---- C:\NVIDIA 2010-11-21 13:41:30 ----A---- C:\Program Files\BitTorrent.exe 2010-11-19 21:55:12 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Skype 2010-11-19 21:46:34 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\skypePM 2010-11-19 15:15:02 ----D---- C:\Program Files\Ventrilo 2010-11-19 11:45:14 ----HD---- C:\Program Files\InstallShield Installation Information 2010-11-19 11:21:04 ----D---- C:\WINDOWS\system32\DirectX 2010-11-16 10:32:40 ----D---- C:\Gry 2010-11-14 17:16:38 ----SD---- C:\Documents and Settings\Ursus\Dane aplikacji\Microsoft 2010-11-13 22:38:13 ----D---- C:\Program Files\Common Files 2010-11-13 19:39:49 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-11-10 15:01:18 ----A---- C:\WINDOWS\system32\MRT.exe 2010-11-04 19:02:31 ----D---- C:\Documents and Settings\Ursus\Dane aplikacji\Adobe 2010-10-29 10:23:05 ----D---- C:\Program Files\NAPI-PROJEKT ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248] R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2010-09-10 91560] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648] R0 uagp35;Filtr AGPv3.5 firmy Microsoft; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672] R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904] R1 AmdK7;Sterownik procesora AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-08-02 126856] R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2010-09-10 239240] R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2010-09-10 25240] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-08-02 60936] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816] R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2003-01-27 35328] R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2007-07-19 22296] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-07-19 2109592] R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-07-19 2142488] R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2007-07-19 1920920] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-07-18 25624] R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-07-19 41752] R3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2007-07-19 3599000] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2003-05-02 1312555] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368] R3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys [] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 usbvideo;Urządzenie wideo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984] S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-08-02 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-08-02 267944] R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2010-11-19 151432] R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-09-10 1901056] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-02 153376] R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-07-19 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-07-19 137752] R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2003-05-02 69632] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-25 136176] S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-07-19 141848] S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-08-02 3780040] -----------------EOF----------------- [/log] Info z RSiT po usuwaniu: [log]info.txt logfile of random's system information tool 1.08 2010-11-24 14:55:26 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10k_ActiveX.exe -maintain activex Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe" Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9L$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe" Any Video Converter 3.0.7-->"C:\Program Files\AnvSoft\Any Video Converter\unins000.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Ashampoo Burning Studio 10.0.4-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 10\unins000.exe" Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE BitTorrent-->"C:\Program Files\BitTorrent.exe" /UNINSTALL Camera Driver-->"C:\Program Files\Common Files\LogiShrd\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT CCleaner-->"C:\Program Files\CCleaner\uninst.exe" COMODO GeekBuddy-->C:\Program Files\COMODO\COMODO GeekBuddy\uninstall.exe COMODO Internet Security-->MsiExec.exe /I{FD8E178D-8B4E-42DA-B434-EFF270329B1C} Counter-Strike-->"C:\Gry\Steam\steam.exe" steam://uninstall/10 dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat DivX Setup-->C:\Documents and Settings\All Users\Dane aplikacji\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe" Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe GoldWave v5.58-->"C:\Program Files\GoldWave\unstall.exe" "GoldWave v5.58" "C:\Program Files\GoldWave\unstall.log" Google Earth Plug-in-->MsiExec.exe /X{171E6C1E-B5FC-11DF-B115-005056C00008} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ipla 2.2.1-->C:\Program Files\ipla\uninst.exe Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} K-Lite Codec Pack 6.2.0 (Basic)-->"C:\Program Files\BestPlayer\K-Lite Codec Pack\unins000.exe" Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x9 UNINSTALL Logitech QuickCam-->MsiExec.exe /X{364EC092-93CF-4DDC-9D7A-7278452028E0} Microsoft ActiveSync-->MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE} Microsoft Office PowerPoint Viewer 2007 (Polish)-->MsiExec.exe /X{95120000-00AF-0415-0000-0000000FF1CE} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93} NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe" Norton Security Scan-->C:\Program Files\Norton Security Scan\Engine\2.7.3.34\InstWrap.exe NVIDIA Windows 2000/XP Display Drivers-->rundll32.exe C:\WINDOWS\system32\nvinstnt.dll,NvUninstallNT4 nv4_disp.inf Pack Crystal XP 3.0-->C:\WINDOWS\Packs\Crystal XP\Uninstall.exe Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0 RealUpgrade 1.0-->MsiExec.exe /I{F4F4F84E-804F-4E9A-84D7-C34283F0088F} Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A} Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe" Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe" VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} Ventrilo-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======System event log====== Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 5 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Regs Record Number: 4 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 3 Source Name: Application Popup Time Written: 20101115084312.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 2 Source Name: EventLog Time Written: 20101115084248.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 6009 Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 2 Uniprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20101115084248.000000+060 Event Type: informacje User: =====Application event log===== Computer Name: URSUSS Event Code: 1517 Message: System Windows zapisał rejestr użytkownika URSUSS\Ursus, kiedy aplikacja lub usługa nadal użytkowała rejestr podczas wylogowania. Pamięć używana przez rejestr użytkownika nie została zwolniona. Rejestr zostanie zwolniony, kiedy nie będzie używany. Najczęstszą tego przyczyną są usługi uruchamiane z konta użytkownika. Próbuj skonfigurować te usługi, aby były uruchamiane z konta LocalService lub NetworkService. Record Number: 5 Source Name: Userenv Time Written: 20101121124954.000000+060 Event Type: ostrzeżenie User: ZARZĄDZANIE NT\SYSTEM Computer Name: URSUSS Event Code: 0 Message: Record Number: 4 Source Name: gupdate Time Written: 20101121091046.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 1800 Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona. Record Number: 3 Source Name: SecurityCenter Time Written: 20101121091017.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 0 Message: Record Number: 2 Source Name: LVCOMSer Time Written: 20101121091015.000000+060 Event Type: informacje User: Computer Name: URSUSS Event Code: 0 Message: Record Number: 1 Source Name: gupdate Time Written: 20101121091012.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD "PROCESSOR_REVISION"=0801 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log] Wynik skanowania Malwarebytes: [log]Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Wersja bazy: 4052 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 6.0.2900.5512 2010-11-24 16:36:58 mbam-log-2010-11-24 (16-36-58).txt Typ skanowania: Pełne skanowanie (C:\|) Przeskanowano obiektów: 165602 Upłynęło: 1 godzin(y), 38 minut(y), 36 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 0 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 0 Zainfekowanych plików: 0 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: (Nie znaleziono zagrożeń) Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: (Nie znaleziono zagrożeń) Zainfekowanych plików: (Nie znaleziono zagrożeń) [/log]
Tomek01 komentarz 24 listopada 2010 komentarz 24 listopada 2010 Wygląda ok. Jakby DrWeb coś wykrył, zapraszam. Przed jego użyciem wyłącz przywracanie systemu i za chwilę go ponownie włącz.
UnTouch komentarz 24 listopada 2010 Autor komentarz 24 listopada 2010 Więc co może być nie tak z tym kompem? Przecież on nie jest aż tak tragiczny, żeby strony internetowe mi się zacinały... Może w środku by go coś wyczyścić?
UnTouch komentarz 24 listopada 2010 Autor komentarz 24 listopada 2010 http://img208.imageshack.us/img208/5481/asddq.png
Tomek01 komentarz 25 listopada 2010 komentarz 25 listopada 2010 Mówię, jeśli DrWeb już nic nie wykryje to wina nie leży po stronie infekcji. Dlatego przeskanuj. Czy gry, które uruchamiasz i się zacinają są online ?
UnTouch komentarz 26 listopada 2010 Autor komentarz 26 listopada 2010 (edytowane) Tak, są online, ale ostatnio zainstalowałem Painkillera, w którego dawniej grałem bez problemów i na najmniejszych wymaganiach się zacinał jeszcze. Z online gram w Counter-Strike, ale ta gra też nie jest na tyle wymagające, żeby miec 20 FPS'ów w granacie dymnym... To już się trochę pokaz slajdów robi. Dodam, że nawet filmiki na Youtube [nie HD] mi się zacinają...
Tomek01 komentarz 26 listopada 2010 komentarz 26 listopada 2010 To coś na łączach, tylko z której strony ?
UnTouch komentarz 26 listopada 2010 Autor komentarz 26 listopada 2010 Pytanie skierowane do mnie? xD Jeśli tak, to sprecyzuj
Tomek01 komentarz 26 listopada 2010 komentarz 26 listopada 2010 To było pytanie retoryczne, po prostu mnie to zastanawia. Próbuję Cię nakierować bo uważam, że problem jest z niestabilnością internetu. Sprawdzałeś jakie masz ping'i ?
UnTouch komentarz 27 listopada 2010 Autor komentarz 27 listopada 2010 Zazwyczaj około 20-30. Intenet Speed Test też tyle pokazuje.
MC Jay komentarz 27 listopada 2010 komentarz 27 listopada 2010 (edytowane) [quote]żeby miec 20 FPS'ów[/quote] w csie to bardzo znany problem który ma większość graczy i jak ta większość masz bardzo słaby komputer, procesor 1250mhz i ty chcesz żeby on dobrze działał ? I co z tego że taka grafika jak procesor nawet w 1/3 jej nie wykorzystuje, jak na te czasy to procesor masz archaiczny, do sprzętu przydałby się lepszy procesor bo przypuszczam że masz athlona 1400+ np. coś takiego za 30zł z przesyłką http://allegro.pl/procesor-amd-athlon-2400-xp-266mhz-thoroughbred-i1321568924.html na dodatek na Thoroughbred'zie czyli podatny na o/c, lub jeszli dołożysz jeszcze 20zł to będzie można osadzić Bartona który ma więcej cache 512kb a athlon 256kb Ja ci powiem żebyś zainstalował Win2k lub ME bo na tym Xpku i takim procesorem z grami dalego nie zajedziesz moim zdaniem problem nie dotyczy jakiegoś spyware i innego szkodliwego oprogramowania tylko procesora który przy odpaleniu samego csa juz tnie sam pamietam jak grałem na celku 1ghz jakie to czasy były i jak potrafił ciąć
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.