x-kom hosting

plik exe. nie jest prawidłową aplikacją systemu Win32

Nowya
utworzono
utworzono

Witam mam problem typu "plik exe. nie jest prawidłową aplikacją systemu Win32" jako że jestem zielony na ten temat a jedynie co zrozumiałem i wyczytałem że trzeba porobić logi.


[log]OTL logfile created on: 2010-11-21 20:05:05 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Ogólny\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 1,58 Gb Free Space | 16,21% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 87,40 Gb Free Space | 89,50% Space Free | Partition Type: NTFS
Drive E: | 78,88 Gb Total Space | 77,69 Gb Free Space | 98,49% Space Free | Partition Type: NTFS

Computer Name: OG-E5EAAB3A9F7A | User Name: Ogólny | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe
PRC - [2010-11-20 01:36:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-11-19 22:47:34 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2010-11-15 13:56:56 | 018,633,728 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe
PRC - [2010-11-08 10:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\gmer\gmer.exe
PRC - [2010-10-11 16:49:48 | 014,940,040 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2010-10-11 16:49:48 | 000,080,256 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-09-07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-05-14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-03-08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009-02-09 11:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2007-03-09 11:01:56 | 000,278,528 | ---- | M] () -- C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe
PRC - [2006-11-03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\Philips\SPC220NC\Monitor.exe
PRC - [2006-10-27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006-10-26 13:45:04 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WISPTIS.EXE
PRC - [2006-06-01 10:22:00 | 000,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2006-02-19 05:24:52 | 000,239,320 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2006-02-19 04:21:22 | 000,288,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2006-02-19 02:41:10 | 000,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2005-05-20 10:11:06 | 000,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe
PRC - [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2004-08-03 23:44:28 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskmgr.exe
PRC - [2004-08-03 23:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2004-08-03 23:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2004-08-03 23:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2004-08-03 23:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-08-03 23:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2004-08-03 23:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2004-08-03 23:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe
MOD - [2009-12-08 10:01:26 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 09:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 16:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 15:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 11:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 14:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-07-03 14:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-02-26 13:01:52 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2004-08-03 23:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2004-08-03 23:44:16 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2004-08-03 23:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2004-08-03 23:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2004-08-03 23:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-08-03 23:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2004-08-03 23:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2004-08-03 23:44:10 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2004-08-03 23:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2004-08-03 23:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2004-08-03 23:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2004-08-03 23:44:08 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2004-08-03 23:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2004-08-03 23:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2004-08-03 23:44:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2004-08-03 23:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2004-08-03 23:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2004-08-03 23:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2004-08-03 23:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2004-08-03 23:42:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004-08-03 22:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_21.11.2010_20-11drv)
DRV - File not found [Kernel | Unknown | Running] -- -- (71409322)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\71409321.sys -- (71409321)
DRV - [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-09-07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-09-07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-09-07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010-09-07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-09-07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2007-01-09 17:59:50 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SPC220NC.SYS -- (SPC220NC)
DRV - [2006-06-01 10:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006-02-23 04:39:06 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt)
DRV - [2006-02-23 04:38:32 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2005-10-05 18:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2005-08-11 14:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2004-10-27 15:21:36 | 000,138,240 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2001-10-26 14:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [Monitor] C:\WINDOWS\Philips\SPC220NC\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [BrowserChoice] C:\WINDOWS\System32\browserchoice.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk = C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-11-21 20:01:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-21 19:53:53 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe
[2010-11-21 19:47:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010-11-21 19:24:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\gmer
[2010-11-21 16:55:36 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010-11-21 16:55:25 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010-11-21 16:55:00 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010-11-21 16:54:59 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010-11-21 16:54:58 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010-11-21 16:54:58 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010-11-21 16:54:57 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010-11-21 16:54:56 | 000,061,440 | ---- | C] (Kolorowy skaner płaski) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010-11-21 16:54:53 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010-11-21 16:54:51 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010-11-21 16:54:50 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010-11-21 16:54:50 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010-11-21 16:28:34 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-11-21 16:24:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-11-21 16:07:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Media Player Classic
[2010-11-21 13:45:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\WINDOWS
[2010-11-21 10:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Sports Interactive
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Sports Interactive
[2010-11-20 20:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010-11-20 20:05:02 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010-11-20 20:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010-11-20 20:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010-11-20 20:00:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010-11-20 19:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\FM
[2010-11-20 19:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010-11-20 19:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 19:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 16:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\WinRAR
[2010-11-20 12:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Csparty.pl JailBreak Mod
[2010-11-20 11:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Szkoła
[2010-11-20 11:52:35 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-11-20 11:27:30 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-11-20 11:27:30 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-11-20 11:27:29 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-11-20 11:27:28 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-11-20 11:27:27 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-11-20 11:27:27 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-11-20 11:27:26 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010-11-20 11:27:16 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-11-20 11:27:16 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-20 11:17:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474
[2010-11-20 11:15:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010-11-20 01:40:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010-11-20 01:37:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-11-20 01:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010-11-20 01:35:16 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2010-11-20 01:35:15 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2010-11-20 01:35:15 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2010-11-20 01:35:12 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-11-20 01:33:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2010-11-20 01:31:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sun
[2010-11-20 01:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-11-20 01:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft Help
[2010-11-20 01:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
[2010-11-20 00:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\StartOffice
[2010-11-20 00:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-11-20 00:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2010-11-20 00:53:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010-11-20 00:53:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Winamp
[2010-11-20 00:47:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IECompatCache
[2010-11-20 00:47:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\PrivacIE
[2010-11-20 00:46:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IETldCache
[2010-11-20 00:45:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010-11-20 00:43:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010-11-20 00:28:46 | 000,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll
[2010-11-20 00:28:46 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2010-11-20 00:28:45 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2010-11-20 00:28:45 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2010-11-20 00:28:45 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2010-11-20 00:28:45 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2010-11-20 00:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-11-20 00:23:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\The Weather Channel
[2010-11-20 00:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2010-11-19 23:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\AskTBar
[2010-11-19 23:17:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2010-11-19 23:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Nero
[2010-11-19 23:09:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
[2010-11-19 23:09:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2010-11-19 23:08:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2010-11-19 23:03:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010-11-19 22:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Google
[2010-11-19 22:54:39 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe
[2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM
[2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices
[2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla
[2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-19 22:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\ipla
[2010-11-19 22:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Adobe
[2010-11-19 22:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Macromedia
[2010-11-19 22:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:51:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-11-19 22:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\VIA
[2010-11-19 22:51:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:47:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\TEMP
[2010-11-19 22:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:47:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\skypePM
[2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2010-11-19 22:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010-11-19 22:45:12 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2010-11-19 22:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Skype
[2010-11-19 22:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2010-11-19 22:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ArcSoft
[2010-11-19 22:38:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Philips
[2010-11-19 22:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\HP
[2010-11-19 22:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2010-11-19 22:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010-11-19 22:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-19 22:33:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010-11-19 22:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-11-19 22:30:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2010-11-19 22:30:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2010-11-19 22:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010-11-19 22:30:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2010-11-19 22:29:34 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010-11-19 22:28:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010-11-19 22:28:23 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010-11-19 22:26:05 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\PCDLIB32.DLL
[2010-11-19 22:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2010-11-19 22:24:16 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-11-19 22:24:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2010-11-19 22:24:11 | 000,000,000 | R--D | C] -- C:\Program Files
[2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-11-19 22:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-11-19 22:23:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-11-19 22:23:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache
[2010-11-19 22:23:00 | 000,507,136 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\drivers\SPC220NC.SYS
[2010-11-19 22:23:00 | 000,119,808 | ---- | C] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\SPC220NC.AX
[2010-11-19 22:23:00 | 000,006,656 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\CoInst.dll
[2010-11-19 22:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Philips
[2010-11-19 22:21:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-11-19 22:21:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-11-19 22:21:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-11-19 22:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\InstallShield
[2010-11-19 22:19:07 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-11-19 22:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-11-19 22:18:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\UserData
[2010-11-19 22:15:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2010-11-19 22:14:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-11-19 22:13:49 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-11-19 22:13:49 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010-11-19 22:13:49 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010-11-19 22:13:49 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-11-19 21:44:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Identities
[2010-11-19 21:44:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-11-19 21:44:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moja muzyka
[2010-11-19 21:44:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moje obrazy
[2010-11-19 21:44:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010-11-19 21:44:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Microsoft
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\SendTo
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Recent
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Ulubione
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Menu Start
[2010-11-19 21:44:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\Cookies
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Szablony
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\PrintHood
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\NetHood
[2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit
[2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:43:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-11-19 21:43:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-11-19 21:43:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-11-19 21:43:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-11-19 21:43:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:42:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-11-19 21:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:41:12 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010-11-19 21:41:11 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010-11-19 21:41:11 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010-11-19 21:36:01 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010-11-19 21:34:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-11-19 21:34:08 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-11-19 21:34:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010-11-19 21:33:59 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010-11-19 21:33:55 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-11-19 21:33:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010-11-19 21:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-11-19 21:32:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-11-19 21:32:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-11-19 21:32:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010-11-19 21:32:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-11-19 21:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010-11-19 21:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-11-19 21:31:49 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010-11-19 21:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-11-19 21:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-11-19 21:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-11-19 21:31:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2010-11-19 21:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-11-19 21:30:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-11-19 21:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2010-11-19 21:30:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-11-19 21:30:42 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-11-19 21:30:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010-11-19 21:30:05 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2010-11-19 21:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-11-19 21:29:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-11-19 21:29:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010-11-19 21:29:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe
[2010-11-21 19:52:42 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT
[2010-11-21 19:52:04 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-11-21 19:40:15 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-11-21 19:09:05 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-11-21 19:08:56 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-11-21 19:08:53 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-21 19:08:47 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-21 19:08:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-21 18:04:21 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Ogólny\ntuser.ini
[2010-11-21 18:04:13 | 004,272,834 | -H-- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-21 17:58:31 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-21 16:43:34 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010-11-21 16:26:08 | 003,912,958 | R--- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\12431ds.exe
[2010-11-21 14:22:41 | 039,223,945 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe
[2010-11-21 11:22:25 | 000,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-21 11:22:25 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-21 11:22:25 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-21 11:22:25 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-21 11:22:25 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-21 11:17:50 | 000,291,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-21 11:04:01 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-11-21 10:53:56 | 000,073,032 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-21 01:39:25 | 000,000,597 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk
[2010-11-20 22:21:09 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk
[2010-11-20 20:23:51 | 063,447,591 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip
[2010-11-20 20:01:01 | 000,000,630 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-11-20 19:42:54 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-20 19:42:52 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-20 19:36:02 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-20 11:52:56 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-20 11:27:30 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2010-11-20 11:27:27 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-20 01:30:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk
[2010-11-20 01:02:35 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini
[2010-11-20 01:01:40 | 000,036,864 | ---- | M] () -- C:\WINDOWS\uinst001.exe
[2010-11-20 00:57:32 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk
[2010-11-20 00:57:32 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk
[2010-11-20 00:53:58 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-20 00:53:38 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-20 00:29:18 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2010-11-19 22:54:32 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk
[2010-11-19 22:49:51 | 000,021,768 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-11-19 22:46:28 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-11-19 22:35:52 | 000,120,253 | ---- | M] () -- C:\WINDOWS\hpoins11.dat
[2010-11-19 22:35:12 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk
[2010-11-19 22:34:35 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-19 22:34:14 | 000,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-19 22:24:15 | 000,001,757 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-11-19 22:23:00 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk
[2010-11-19 22:13:48 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk
[2010-11-19 21:44:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-19 21:42:47 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-19 21:41:49 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:35:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-19 21:35:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-19 21:34:54 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-11-19 21:31:10 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-19 21:31:00 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010-11-19 21:31:00 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-21 16:56:23 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2010-11-21 16:56:23 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2010-11-21 16:56:21 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2010-11-21 16:56:19 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2010-11-21 16:56:17 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2010-11-21 16:56:17 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2010-11-21 16:56:16 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2010-11-21 16:56:05 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2010-11-21 16:28:37 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-11-21 16:28:36 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2010-11-21 16:21:30 | 003,912,958 | R--- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\12431ds.exe
[2010-11-21 16:07:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-21 14:22:41 | 039,223,945 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe
[2010-11-21 01:39:25 | 000,000,597 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk
[2010-11-20 22:21:35 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk
[2010-11-20 20:23:50 | 063,447,591 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip
[2010-11-20 19:42:54 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-20 19:42:52 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-20 19:35:39 | 000,013,926 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fon.docx
[2010-11-20 12:00:21 | 000,822,442 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\skanuj0001.jpg
[2010-11-20 11:58:20 | 000,015,240 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\-.doc
[2010-11-20 11:58:14 | 000,064,722 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Wniosek.pdf
[2010-11-20 11:52:56 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-20 11:43:42 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-20 11:27:30 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2010-11-20 11:17:08 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-11-20 01:35:17 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-11-20 01:35:16 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2010-11-20 01:35:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-11-20 01:35:15 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-11-20 01:35:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-11-20 01:35:15 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-11-20 01:30:57 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk
[2010-11-20 01:01:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini
[2010-11-20 00:59:20 | 000,036,864 | ---- | C] () -- C:\WINDOWS\uinst001.exe
[2010-11-20 00:57:32 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk
[2010-11-20 00:57:32 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk
[2010-11-20 00:57:28 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2010-11-20 00:57:28 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-20 00:57:28 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-11-20 00:53:58 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-20 00:29:18 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2010-11-19 22:54:32 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk
[2010-11-19 22:49:51 | 000,021,768 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-11-19 22:49:48 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-11-19 22:49:43 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-11-19 22:47:28 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-11-19 22:47:28 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-11-19 22:46:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-11-19 22:45:13 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-11-19 22:35:12 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk
[2010-11-19 22:34:35 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-19 22:34:14 | 000,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-19 22:32:25 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2010-11-19 22:28:41 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-11-19 22:28:39 | 000,120,253 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2010-11-19 22:28:29 | 000,073,032 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-19 22:24:19 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010-11-19 22:24:16 | 000,763,990 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-19 22:24:15 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-19 22:24:15 | 000,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-11-19 22:24:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010-11-19 22:24:13 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010-11-19 22:24:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010-11-19 22:24:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010-11-19 22:23:46 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-11-19 22:23:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2010-11-19 22:23:00 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk
[2010-11-19 22:23:00 | 000,000,518 | ---- | C] () -- C:\WINDOWS\System32\SPC220NC.INI
[2010-11-19 22:21:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010-11-19 22:21:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010-11-19 22:21:54 | 001,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT
[2010-11-19 22:21:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010-11-19 22:21:54 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010-11-19 22:21:54 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010-11-19 22:21:54 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010-11-19 22:21:54 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010-11-19 22:21:54 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010-11-19 22:21:54 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010-11-19 22:21:54 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010-11-19 22:21:54 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010-11-19 22:21:54 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010-11-19 22:21:54 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010-11-19 22:21:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010-11-19 22:21:54 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010-11-19 22:21:53 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010-11-19 22:21:53 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010-11-19 22:19:07 | 000,291,680 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-19 22:18:07 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2010-11-19 22:18:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-19 22:16:04 | 004,272,834 | -H-- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-19 22:15:50 | 000,063,804 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-19 22:15:13 | 000,016,960 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2010-11-19 22:13:48 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk
[2010-11-19 21:44:17 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Ogólny\ntuser.ini
[2010-11-19 21:44:16 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\desktop.ini
[2010-11-19 21:44:15 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT
[2010-11-19 21:44:15 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT.LOG
[2010-11-19 21:43:02 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-19 21:42:47 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-19 21:41:49 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-11-19 21:41:44 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010-11-19 21:41:02 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010-11-19 21:40:44 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010-11-19 21:36:42 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010-11-19 21:36:40 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010-11-19 21:36:25 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010-11-19 21:36:18 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010-11-19 21:36:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010-11-19 21:36:04 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010-11-19 21:36:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010-11-19 21:36:00 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010-11-19 21:36:00 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010-11-19 21:36:00 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010-11-19 21:36:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010-11-19 21:35:58 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010-11-19 21:35:58 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010-11-19 21:35:58 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010-11-19 21:35:58 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010-11-19 21:35:58 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010-11-19 21:35:57 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010-11-19 21:35:57 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010-11-19 21:35:55 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010-11-19 21:35:55 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010-11-19 21:35:55 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010-11-19 21:35:55 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010-11-19 21:35:54 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010-11-19 21:35:54 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010-11-19 21:35:08 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:35:04 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-19 21:35:04 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-19 21:35:03 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-11-19 21:33:41 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010-11-19 21:32:33 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010-11-19 21:32:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010-11-19 21:31:58 | 000,379,904 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2010-11-19 21:31:10 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-19 21:31:00 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-11-19 21:31:00 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-11-19 21:30:21 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp
[2010-11-19 21:30:21 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp
[2010-11-19 21:30:20 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp
[2010-11-19 21:30:20 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp
[2010-11-19 21:30:20 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp
[2010-11-19 21:30:20 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp
[2010-11-19 21:30:20 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2010-11-19 21:30:20 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp
[2010-11-19 21:30:20 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp
[2010-11-19 21:30:20 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp
[2010-11-19 21:30:20 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp
[2010-11-19 21:30:19 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010-11-19 21:30:19 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010-11-19 21:30:19 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010-11-19 21:30:19 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010-11-19 21:30:19 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010-11-19 21:30:19 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010-11-19 21:30:18 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010-11-19 21:30:18 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010-11-19 21:30:16 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-11-19 21:30:15 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-11-19 21:30:15 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-11-19 21:30:14 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2010-11-19 21:30:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-11-19 21:30:06 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2006-06-01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-06-01 10:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-06-01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-06-01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-06-01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-06-01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-06-01 10:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004-08-03 23:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2004-08-03 23:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2004-08-03 23:43:58 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2004-08-03 23:43:56 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2004-08-03 23:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2004-08-03 23:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2004-08-03 21:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2004-08-03 21:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2004-08-03 21:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2004-08-03 21:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2004-08-03 21:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2004-08-03 21:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2004-07-17 10:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-10-26 16:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2001-10-26 16:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2001-10-26 16:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2001-10-26 16:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2001-10-26 15:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2001-10-26 15:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2001-10-26 15:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2001-10-26 15:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2001-10-26 14:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2001-10-26 14:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2001-10-26 14:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2001-10-26 14:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2001-10-26 14:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2001-10-26 14:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2001-10-26 14:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2001-08-17 20:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2001-08-17 20:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2001-08-17 20:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2001-08-17 20:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2001-08-17 20:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2001-08-17 20:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2001-08-17 20:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2001-08-17 18:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2001-07-22 01:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2001-07-21 21:16:20 | 000,000,630 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-21 21:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2001-07-21 21:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2001-07-07 03:00:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI

[color=#E56717]========== LOP Check ==========[/color]

[2010-11-20 11:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-20 19:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-19 22:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-20 19:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 12:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10
[2010-11-21 19:08:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla
[2010-11-19 22:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM
[2010-11-21 02:06:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive
[2010-11-21 19:09:05 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2001-07-21 21:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | RHS- | M] () -- C:\cmldr
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-03 21:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr
[2010-11-21 19:08:36 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys
[2004-08-03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\i386\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys
[2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll
[2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe
[2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe

< End of report >
[/log]

Sohei
komentarz
komentarz

przeskanuj system dr web cure it i daj loga na forum. Nie usuwaj tego co znajdzie

Nowya
komentarz
komentarz

Oto co mi wyszło ze skanowania.

Sohei
komentarz
komentarz

To tak to co znalazł dr web można usunąć. Podejrzewałem poważniejsza infekcje , na szczęście jej tutaj nie ma

[code]:Processes
Explorer.exe



:OTL
DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_21.11.2010_20-11drv)
DRV - File not found [Kernel | Unknown | Running] -- -- (71409322)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\71409321.sys -- (71409321)




:files
C:\WINDOWS\System32\DRIVERS\71409321.sys

:services
71409322
71409321
setup_9.0.0.722_21.11.2010_20-11drv

:Commands
[emptytemp]
[start explorer]
[reboot][/code]
Wklejasz to do OTL w białe okienko i klikasz run fix(wykonaj skrypt).
Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url]
Co znajda usun po czym daj logi z usuwania + nowy log OTL +log GMER

Nowya
komentarz
komentarz

Log z usuniecia.

[log]All processes killed
========== PROCESSES ==========
No active process named Explorer.exe was found!
========== OTL ==========
Error: No service named setup_9.0.0.722_21.11.2010_20-11drv was found to stop!
Service\Driver key setup_9.0.0.722_21.11.2010_20-11drv not found.
Error: No service named 71409322 was found to stop!
Service\Driver key 71409322 not found.
Error: No service named 71409321 was found to stop!
Service\Driver key 71409321 not found.
File C:\WINDOWS\System32\DRIVERS\71409321.sys not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\DRIVERS\71409321.sys not found.
========== SERVICES/DRIVERS ==========
Error: No service named 71409322 was found to stop!
Service\Driver key 71409322 not found.
Error: No service named 71409321 was found to stop!
Service\Driver key 71409321 not found.
Error: No service named setup_9.0.0.722_21.11.2010_20-11drv was found to stop!
Service\Driver key setup_9.0.0.722_21.11.2010_20-11drv not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Ogólny
->Temp folder emptied: 56097276 bytes
->Temporary Internet Files folder emptied: 34120794 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 1766 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 235246 bytes
RecycleBin emptied: 83773745 bytes

Total Files Cleaned = 168,00 mb


OTL by OldTimer - Version 3.2.17.3 log created on 11222010_205640

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF15D4.tmp not found!
File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF302C.tmp not found!
File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF94D.tmp not found!
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\VI6CFCKA\OTL[1].html moved successfully.
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\QA6V9Q8T\adsCALBOCNA.htm moved successfully.
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\ads[10].htm moved successfully.
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\index[1].php moved successfully.
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\likebox[1].htm moved successfully.
C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
File\Folder C:\WINDOWS\temp\_avast5_\unp167284632.tmp not found!
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
[/log]


Log z MBAM

[log]Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Wersja bazy: 5172

Windows 5.1.2600 Dodatek Service Pack 2
Internet Explorer 8.0.6001.18702

2010-11-22 21:28:38
mbam-log-2010-11-22 (21-28-38).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|)
Przeskanowano obiektów: 187323
Upłynęło: 21 minut(y), 30 sekund(y)

Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 0
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 0
Zainfekowanych folderów: 0
Zainfekowanych plików: 0

Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:
(Nie znaleziono zagrożeń)

Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)

Zainfekowane informacje rejestru systemowego:
(Nie znaleziono zagrożeń)

Zainfekowanych folderów:
(Nie znaleziono zagrożeń)

Zainfekowanych plików:
(Nie znaleziono zagrożeń)
[/log]


Nowy log z OTL

[log]
OTL logfile created on: 2010-11-22 21:33:04 - Run 2
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Ogólny\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 1,40 Gb Free Space | 14,35% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 87,40 Gb Free Space | 89,50% Space Free | Partition Type: NTFS
Drive E: | 78,88 Gb Total Space | 77,69 Gb Free Space | 98,49% Space Free | Partition Type: NTFS
Drive F: | 620,93 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: OG-E5EAAB3A9F7A | User Name: Ogólny | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe
PRC - [2010-11-20 01:36:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-11-19 22:47:34 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2010-11-15 13:56:56 | 018,633,728 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-09-07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-05-14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-04-01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-03-08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009-02-09 11:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2007-03-09 11:01:56 | 000,278,528 | ---- | M] () -- C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe
PRC - [2006-11-03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\Philips\SPC220NC\Monitor.exe
PRC - [2006-10-27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006-10-26 13:45:04 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WISPTIS.EXE
PRC - [2006-06-01 10:22:00 | 000,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2006-02-19 05:24:52 | 000,239,320 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2006-02-19 04:21:22 | 000,288,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2006-02-19 02:41:10 | 000,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2005-05-20 10:11:06 | 000,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe
PRC - [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2004-08-03 23:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2004-08-03 23:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2004-08-03 23:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2004-08-03 23:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2004-08-03 23:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-08-03 23:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2004-08-03 23:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2004-08-03 23:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe
MOD - [2009-12-08 10:01:26 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 09:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 16:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 15:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 11:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 14:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-07-03 14:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-02-26 13:01:52 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2004-08-03 23:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2004-08-03 23:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2004-08-03 23:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2004-08-03 23:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-08-03 23:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2004-08-03 23:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2004-08-03 23:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2004-08-03 23:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2004-08-03 23:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2004-08-03 23:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2004-08-03 23:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2004-08-03 23:44:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2004-08-03 23:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2004-08-03 23:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2004-08-03 23:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2004-08-03 23:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2004-08-03 23:42:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004-08-03 22:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-09-07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-09-07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-09-07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010-09-07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-09-07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2007-01-09 17:59:50 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SPC220NC.SYS -- (SPC220NC)
DRV - [2006-06-01 10:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006-02-23 04:39:06 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt)
DRV - [2006-02-23 04:38:32 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2005-10-05 18:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2005-08-11 14:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2004-10-27 15:21:36 | 000,138,240 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2001-10-26 14:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [Monitor] C:\WINDOWS\Philips\SPC220NC\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] D:\Programy\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk = C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [1996-09-16 03:00:00 | 000,000,213 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-11-22 21:05:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Malwarebytes
[2010-11-22 21:05:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-11-22 21:05:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-11-22 21:05:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-11-22 21:03:46 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ogólny\Pulpit\mbam-setup-1.46(dobreprogramy.pl).exe
[2010-11-22 20:56:40 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-11-22 20:55:46 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe
[2010-11-22 00:52:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\DoctorWeb
[2010-11-21 20:01:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-21 16:55:36 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010-11-21 16:55:25 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010-11-21 16:55:00 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010-11-21 16:54:59 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010-11-21 16:54:58 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010-11-21 16:54:58 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010-11-21 16:54:57 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010-11-21 16:54:56 | 000,061,440 | ---- | C] (Kolorowy skaner płaski) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010-11-21 16:54:53 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010-11-21 16:54:51 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010-11-21 16:54:50 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010-11-21 16:54:50 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010-11-21 16:28:34 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-11-21 16:24:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-11-21 16:07:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Media Player Classic
[2010-11-21 13:45:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\WINDOWS
[2010-11-21 10:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Sports Interactive
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive
[2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Sports Interactive
[2010-11-20 20:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010-11-20 20:05:02 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010-11-20 20:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010-11-20 20:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010-11-20 20:00:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010-11-20 19:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\FM
[2010-11-20 19:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010-11-20 19:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 19:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 16:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\WinRAR
[2010-11-20 12:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Csparty.pl JailBreak Mod
[2010-11-20 11:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Szkoła
[2010-11-20 11:52:35 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-11-20 11:27:30 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-11-20 11:27:30 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-11-20 11:27:29 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-11-20 11:27:28 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-11-20 11:27:27 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-11-20 11:27:27 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-11-20 11:27:26 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010-11-20 11:27:16 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-11-20 11:27:16 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-20 11:17:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474
[2010-11-20 11:15:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010-11-20 01:40:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010-11-20 01:37:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-11-20 01:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010-11-20 01:35:16 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2010-11-20 01:35:15 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2010-11-20 01:35:15 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2010-11-20 01:35:12 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-11-20 01:33:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2010-11-20 01:31:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sun
[2010-11-20 01:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-11-20 01:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft Help
[2010-11-20 01:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
[2010-11-20 00:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\StartOffice
[2010-11-20 00:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-11-20 00:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2010-11-20 00:53:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010-11-20 00:53:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Winamp
[2010-11-20 00:47:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IECompatCache
[2010-11-20 00:47:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\PrivacIE
[2010-11-20 00:46:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IETldCache
[2010-11-20 00:45:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010-11-20 00:43:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010-11-20 00:28:46 | 000,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll
[2010-11-20 00:28:46 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2010-11-20 00:28:45 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2010-11-20 00:28:45 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2010-11-20 00:28:45 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2010-11-20 00:28:45 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2010-11-20 00:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-11-20 00:23:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\The Weather Channel
[2010-11-20 00:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2010-11-19 23:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\AskTBar
[2010-11-19 23:17:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2010-11-19 23:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Nero
[2010-11-19 23:09:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
[2010-11-19 23:09:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2010-11-19 23:08:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2010-11-19 23:03:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010-11-19 22:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Google
[2010-11-19 22:54:39 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe
[2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM
[2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices
[2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla
[2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-19 22:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\ipla
[2010-11-19 22:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Adobe
[2010-11-19 22:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Macromedia
[2010-11-19 22:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:51:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-11-19 22:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\VIA
[2010-11-19 22:51:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:47:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\TEMP
[2010-11-19 22:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:47:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Google
[2010-11-19 22:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\skypePM
[2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2010-11-19 22:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010-11-19 22:45:12 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2010-11-19 22:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Skype
[2010-11-19 22:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2010-11-19 22:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ArcSoft
[2010-11-19 22:38:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Philips
[2010-11-19 22:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\HP
[2010-11-19 22:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2010-11-19 22:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010-11-19 22:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-19 22:33:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010-11-19 22:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-11-19 22:30:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2010-11-19 22:30:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2010-11-19 22:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010-11-19 22:30:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2010-11-19 22:29:34 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010-11-19 22:28:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010-11-19 22:28:23 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010-11-19 22:26:05 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\PCDLIB32.DLL
[2010-11-19 22:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2010-11-19 22:24:16 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-11-19 22:24:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2010-11-19 22:24:11 | 000,000,000 | R--D | C] -- C:\Program Files
[2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-11-19 22:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-11-19 22:23:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-11-19 22:23:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache
[2010-11-19 22:23:00 | 000,507,136 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\drivers\SPC220NC.SYS
[2010-11-19 22:23:00 | 000,119,808 | ---- | C] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\SPC220NC.AX
[2010-11-19 22:23:00 | 000,006,656 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\CoInst.dll
[2010-11-19 22:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Philips
[2010-11-19 22:21:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-11-19 22:21:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-11-19 22:21:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-11-19 22:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\InstallShield
[2010-11-19 22:19:07 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-11-19 22:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-11-19 22:18:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\UserData
[2010-11-19 22:15:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2010-11-19 22:14:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-11-19 22:13:49 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-11-19 22:13:49 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010-11-19 22:13:49 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010-11-19 22:13:49 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-11-19 21:44:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Identities
[2010-11-19 21:44:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-11-19 21:44:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moja muzyka
[2010-11-19 21:44:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moje obrazy
[2010-11-19 21:44:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010-11-19 21:44:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Microsoft
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\SendTo
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Recent
[2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Ulubione
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty
[2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Menu Start
[2010-11-19 21:44:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\Cookies
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Szablony
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\PrintHood
[2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\NetHood
[2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit
[2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:43:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-11-19 21:43:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-11-19 21:43:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-11-19 21:43:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-11-19 21:43:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:42:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-11-19 21:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-19 21:41:12 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010-11-19 21:41:11 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010-11-19 21:41:11 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010-11-19 21:36:01 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010-11-19 21:34:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-11-19 21:34:08 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-11-19 21:34:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010-11-19 21:33:59 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010-11-19 21:33:55 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-11-19 21:33:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010-11-19 21:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-11-19 21:32:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-11-19 21:32:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-11-19 21:32:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010-11-19 21:32:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-11-19 21:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010-11-19 21:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-11-19 21:31:49 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010-11-19 21:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-11-19 21:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-11-19 21:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-11-19 21:31:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2010-11-19 21:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-11-19 21:30:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-11-19 21:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2010-11-19 21:30:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-11-19 21:30:42 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-11-19 21:30:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010-11-19 21:30:05 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2010-11-19 21:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-11-19 21:29:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-11-19 21:29:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010-11-19 21:29:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-11-22 21:21:57 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-22 21:05:11 | 000,000,547 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-22 21:03:46 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ogólny\Pulpit\mbam-setup-1.46(dobreprogramy.pl).exe
[2010-11-22 21:00:47 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-22 21:00:42 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-11-22 20:59:59 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-11-22 20:59:59 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-22 20:59:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-22 20:58:47 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT
[2010-11-22 20:58:24 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Ogólny\ntuser.ini
[2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe
[2010-11-22 20:52:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-11-22 20:28:10 | 000,296,730 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\robak.bmp
[2010-11-22 20:18:55 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-11-22 16:59:14 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-11-22 16:38:06 | 000,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-22 16:38:06 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-22 16:38:06 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-22 16:38:06 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-22 16:38:06 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-22 13:52:54 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-11-22 01:33:55 | 004,273,366 | -H-- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-22 00:51:31 | 052,324,064 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\launch.exe
[2010-11-22 00:45:26 | 000,073,032 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-22 00:44:46 | 000,291,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-21 16:43:34 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010-11-21 14:22:41 | 039,223,945 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe
[2010-11-21 01:39:25 | 000,000,597 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk
[2010-11-20 22:21:09 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk
[2010-11-20 20:23:51 | 063,447,591 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip
[2010-11-20 20:01:01 | 000,000,630 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-11-20 19:42:54 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-20 19:42:52 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-20 19:36:02 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-20 11:52:56 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-20 11:27:30 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2010-11-20 11:27:27 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-20 01:30:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk
[2010-11-20 01:02:35 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini
[2010-11-20 01:01:40 | 000,036,864 | ---- | M] () -- C:\WINDOWS\uinst001.exe
[2010-11-20 00:57:32 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk
[2010-11-20 00:57:32 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk
[2010-11-20 00:53:58 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-20 00:53:38 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-20 00:29:18 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2010-11-19 22:54:32 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk
[2010-11-19 22:49:51 | 000,021,768 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-11-19 22:46:28 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-11-19 22:35:52 | 000,120,253 | ---- | M] () -- C:\WINDOWS\hpoins11.dat
[2010-11-19 22:35:12 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk
[2010-11-19 22:34:35 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-19 22:34:14 | 000,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-19 22:24:15 | 000,001,757 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-11-19 22:23:00 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk
[2010-11-19 22:13:48 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk
[2010-11-19 21:44:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-19 21:42:47 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-19 21:41:49 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:35:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-19 21:35:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-19 21:34:54 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-11-19 21:31:10 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-19 21:31:00 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010-11-19 21:31:00 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-22 21:05:11 | 000,000,547 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-22 20:28:09 | 000,296,730 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\robak.bmp
[2010-11-22 01:05:39 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-11-22 00:51:29 | 052,324,064 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\launch.exe
[2010-11-21 16:56:23 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2010-11-21 16:56:23 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2010-11-21 16:56:21 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2010-11-21 16:56:19 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2010-11-21 16:56:17 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2010-11-21 16:56:17 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2010-11-21 16:56:16 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2010-11-21 16:56:05 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2010-11-21 16:28:37 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-11-21 16:28:36 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2010-11-21 16:07:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-21 14:22:41 | 039,223,945 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe
[2010-11-21 01:39:25 | 000,000,597 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk
[2010-11-20 22:21:35 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk
[2010-11-20 20:23:50 | 063,447,591 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip
[2010-11-20 19:42:54 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2010-11-20 19:42:52 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-11-20 19:35:39 | 000,013,926 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fon.docx
[2010-11-20 12:00:21 | 000,822,442 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\skanuj0001.jpg
[2010-11-20 11:58:20 | 000,015,240 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\-.doc
[2010-11-20 11:58:14 | 000,064,722 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Wniosek.pdf
[2010-11-20 11:52:56 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-11-20 11:43:42 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-20 11:27:30 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2010-11-20 11:17:08 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-11-20 01:35:17 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-11-20 01:35:16 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2010-11-20 01:35:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-11-20 01:35:15 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-11-20 01:35:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-11-20 01:35:15 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-11-20 01:30:57 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk
[2010-11-20 01:01:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini
[2010-11-20 00:59:20 | 000,036,864 | ---- | C] () -- C:\WINDOWS\uinst001.exe
[2010-11-20 00:57:32 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk
[2010-11-20 00:57:32 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk
[2010-11-20 00:57:28 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2010-11-20 00:57:28 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-20 00:57:28 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-11-20 00:53:58 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2010-11-20 00:29:18 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2010-11-19 22:54:32 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk
[2010-11-19 22:49:51 | 000,021,768 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-11-19 22:49:48 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-11-19 22:49:43 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-11-19 22:47:28 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-11-19 22:47:28 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-11-19 22:46:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-11-19 22:45:13 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-11-19 22:35:12 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk
[2010-11-19 22:34:35 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-19 22:34:14 | 000,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-19 22:32:25 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2010-11-19 22:28:41 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-11-19 22:28:39 | 000,120,253 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2010-11-19 22:28:29 | 000,073,032 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-19 22:24:19 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010-11-19 22:24:16 | 000,763,990 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-19 22:24:15 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-19 22:24:15 | 000,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk
[2010-11-19 22:24:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010-11-19 22:24:13 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010-11-19 22:24:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010-11-19 22:24:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010-11-19 22:23:46 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-11-19 22:23:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2010-11-19 22:23:00 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk
[2010-11-19 22:23:00 | 000,000,518 | ---- | C] () -- C:\WINDOWS\System32\SPC220NC.INI
[2010-11-19 22:21:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010-11-19 22:21:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010-11-19 22:21:54 | 001,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT
[2010-11-19 22:21:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010-11-19 22:21:54 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010-11-19 22:21:54 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010-11-19 22:21:54 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010-11-19 22:21:54 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010-11-19 22:21:54 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010-11-19 22:21:54 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010-11-19 22:21:54 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010-11-19 22:21:54 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010-11-19 22:21:54 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010-11-19 22:21:54 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010-11-19 22:21:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010-11-19 22:21:54 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010-11-19 22:21:53 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010-11-19 22:21:53 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010-11-19 22:19:07 | 000,291,680 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-19 22:18:07 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2010-11-19 22:18:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-11-19 22:16:04 | 004,273,366 | -H-- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-19 22:15:50 | 000,063,804 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-19 22:15:13 | 000,016,960 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2010-11-19 22:13:48 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk
[2010-11-19 21:44:17 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Ogólny\ntuser.ini
[2010-11-19 21:44:16 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\desktop.ini
[2010-11-19 21:44:15 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT
[2010-11-19 21:44:15 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT.LOG
[2010-11-19 21:43:02 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-19 21:42:47 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010-11-19 21:41:49 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-11-19 21:41:44 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010-11-19 21:41:02 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010-11-19 21:40:44 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010-11-19 21:36:42 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010-11-19 21:36:40 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010-11-19 21:36:25 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010-11-19 21:36:18 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010-11-19 21:36:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010-11-19 21:36:04 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010-11-19 21:36:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010-11-19 21:36:00 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010-11-19 21:36:00 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010-11-19 21:36:00 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010-11-19 21:36:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010-11-19 21:35:58 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010-11-19 21:35:58 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010-11-19 21:35:58 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010-11-19 21:35:58 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010-11-19 21:35:58 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010-11-19 21:35:57 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010-11-19 21:35:57 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010-11-19 21:35:55 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010-11-19 21:35:55 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010-11-19 21:35:55 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010-11-19 21:35:55 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010-11-19 21:35:54 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010-11-19 21:35:54 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010-11-19 21:35:08 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:35:04 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-11-19 21:35:04 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-11-19 21:35:03 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-11-19 21:33:41 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010-11-19 21:32:33 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010-11-19 21:32:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010-11-19 21:31:58 | 000,379,904 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2010-11-19 21:31:10 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-19 21:31:00 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-11-19 21:31:00 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-11-19 21:30:21 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp
[2010-11-19 21:30:21 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp
[2010-11-19 21:30:20 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp
[2010-11-19 21:30:20 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp
[2010-11-19 21:30:20 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp
[2010-11-19 21:30:20 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp
[2010-11-19 21:30:20 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2010-11-19 21:30:20 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp
[2010-11-19 21:30:20 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp
[2010-11-19 21:30:20 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp
[2010-11-19 21:30:20 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp
[2010-11-19 21:30:19 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010-11-19 21:30:19 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010-11-19 21:30:19 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010-11-19 21:30:19 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010-11-19 21:30:19 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010-11-19 21:30:19 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010-11-19 21:30:18 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010-11-19 21:30:18 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010-11-19 21:30:16 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-11-19 21:30:15 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-11-19 21:30:15 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-11-19 21:30:14 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2010-11-19 21:30:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-11-19 21:30:06 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2006-06-01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-06-01 10:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-06-01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-06-01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-06-01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-06-01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-06-01 10:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004-08-03 23:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2004-08-03 23:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2004-08-03 23:43:58 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2004-08-03 23:43:56 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2004-08-03 23:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2004-08-03 23:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2004-08-03 21:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2004-08-03 21:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2004-08-03 21:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2004-08-03 21:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2004-08-03 21:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2004-08-03 21:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2004-07-17 10:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-10-26 16:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2001-10-26 16:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2001-10-26 16:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2001-10-26 16:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2001-10-26 15:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2001-10-26 15:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2001-10-26 15:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2001-10-26 15:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2001-10-26 14:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2001-10-26 14:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2001-10-26 14:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2001-10-26 14:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2001-10-26 14:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2001-10-26 14:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2001-10-26 14:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2001-08-17 20:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2001-08-17 20:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2001-08-17 20:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2001-08-17 20:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2001-08-17 20:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2001-08-17 20:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2001-08-17 20:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2001-08-17 18:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2001-07-22 01:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2001-07-21 21:16:20 | 000,000,630 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-21 21:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2001-07-21 21:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2001-07-07 03:00:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI

[color=#E56717]========== LOP Check ==========[/color]

[2010-11-20 11:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-20 19:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-19 22:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-19 22:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-20 19:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite
[2010-11-20 12:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10
[2010-11-22 21:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla
[2010-11-19 22:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM
[2010-11-21 02:06:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive
[2010-11-22 21:00:42 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2001-07-21 21:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | RHS- | M] () -- C:\cmldr
[2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-03 21:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr
[2010-11-22 20:59:49 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys
[2004-08-03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\i386\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys
[2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll
[2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe
[2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe

< End of report >
[/log]

logi z GMERA

[log]
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-11-22 22:46:05
Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7 SAMSUNG_SP2004C rev.VM100-41
Running: gmer.exe; Driver: C:\DOCUME~1\OGLNY~1\USTAWI~1\Temp\kgryqkow.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwClose [0xB6C47CF0]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateKey [0xB6C47BAC]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDeleteKey [0xB6C48160]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDeleteValueKey [0xB6C4808A]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDuplicateObject [0xB6C47782]
SSDT spsb.sys ZwEnumerateKey [0xB9ECDDA4]
SSDT spsb.sys ZwEnumerateValueKey [0xB9ECE132]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenKey [0xB6C47C86]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenProcess [0xB6C476C2]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenThread [0xB6C47726]
SSDT spsb.sys ZwQueryKey [0xB9ECE20A]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwQueryValueKey [0xB6C47DA6]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRenameKey [0xB6C4822E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRestoreKey [0xB6C47D66]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwSetValueKey [0xB6C47EE6]

INT 0x62 ? 89C54BF8
INT 0x63 ? 89C54BF8
INT 0x74 ? 8994ABF8
INT 0x82 ? 89C54BF8
INT 0x84 ? 8994ABF8
INT 0x94 ? 8994ABF8
INT 0xB4 ? 89C54BF8
INT 0xB4 ? 89C54BF8
INT 0xB4 ? 8994ABF8
INT 0xB4 ? 8994ABF8
INT 0xB4 ? 89C54BF8

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB6C54BAE]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0xB6C549D2]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0xB6C54B0C]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Kernel code sections - GMER 1.0.15 ----

PAGE ntkrnlpa.exe!ZwLoadDriver 80582EA6 7 Bytes JMP B6C54B10 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!NtCreateSection 805A9E9E 7 Bytes JMP B6C549D6 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObMakeTemporaryObject 805BAF9A 5 Bytes JMP B6C505D4 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObInsertObject 805C18D0 5 Bytes JMP B6C51FFA \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ZwCreateProcessEx 805CFA2E 7 Bytes JMP B6C54BB2 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
? spsb.sys Nie można odnaleźć określonego pliku. !
.text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB98DB360, 0x240F7E, 0xE8000020]
.text USBPORT.SYS!DllUnload B989962C 5 Bytes JMP 8994A1D8
.text aoeft1jb.SYS B9823386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...]
.text aoeft1jb.SYS B98233AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...]
.text aoeft1jb.SYS B98233C4 3 Bytes [00, 80, 02]
.text aoeft1jb.SYS B98233C9 1 Byte [30]
.text aoeft1jb.SYS B98233C9 11 Bytes [30, 00, 00, 00, 5E, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESI; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL}
.text ...
init C:\WINDOWS\system32\drivers\Senfilt.sys entry point in "init" section [0xB6E77A80]
pnidata C:\WINDOWS\system32\DRIVERS\secdrv.sys unknown last section [0xB5378F00, 0x24000, 0x48000000]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1024] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Alwil Software\Avast5\AvastSvc.exe[1416] kernel32.dll!SetUnhandledExceptionFilter 7C8447ED 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP }
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3060] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3560] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [B9EB6042] spsb.sys
IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [B9EB613E] spsb.sys
IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [B9EB60C0] spsb.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [B9EB6800] spsb.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [B9EB66D6] spsb.sys
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfAcquireSpinLock] 0C8D1C46
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_UCHAR] B48B8932
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KeGetCurrentIrql] 89000001
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfRaiseIrql] 0001C083
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfLowerIrql] 24468B00
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!HalGetInterruptVector] 89820C8D
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!HalTranslateBusAddress] D18BF84D
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KeStallExecutionProcessor] 860F1639
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfReleaseSpinLock] 000000BD
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] 020CB389
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_USHORT] 83660000
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 7400067E
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!WRITE_PORT_UCHAR] 89D60320
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[WMILIB.SYS!WmiSystemControl] 8D168B00
IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[WMILIB.SYS!WmiCompleteRequest] F0003284

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\WINDOWS\system32\services.exe[732] @ C:\WINDOWS\system32\services.exe [ADVAPI32.dll!CreateProcessAsUserW] 003C0002
IAT C:\WINDOWS\system32\services.exe[732] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!CreateProcessW] 003C0000
IAT C:\Program Files\Internet Explorer\iexplore.exe[1024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [451F1ACB] C:\Program Files\Internet Explorer\xpshims.dll (Internet Explorer Compatibility Shims for XP/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3060] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [451F1ACB] C:\Program Files\Internet Explorer\xpshims.dll (Internet Explorer Compatibility Shims for XP/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
Device \FileSystem\Ntfs \Ntfs 89C531F8

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\PCI_PNP2966 \Device\00000043 spsb.sys
Device \Driver\usbuhci \Device\USBPDO-0 899491F8
Device \Driver\dmio \Device\DmControl\DmIoDaemon 89BE41F8
Device \Driver\dmio \Device\DmControl\DmConfig 89BE41F8
Device \Driver\dmio \Device\DmControl\DmPnP 89BE41F8
Device \Driver\dmio \Device\DmControl\DmInfo 89BE41F8
Device \Driver\usbuhci \Device\USBPDO-1 899491F8
Device \Driver\usbuhci \Device\USBPDO-2 899491F8
Device \Driver\usbuhci \Device\USBPDO-3 899491F8
Device \Driver\usbehci \Device\USBPDO-4 8992F1F8

AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\sptd \Device\3276829216 spsb.sys
Device \Driver\Ftdisk \Device\HarddiskVolume1 89C551F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{9F0F0750-245C-4579-BC7C-59029FDFEECC} 892BE1F8
Device \Driver\Ftdisk \Device\HarddiskVolume2 89C551F8
Device \Driver\Cdrom \Device\CdRom0 89A151F8
Device \Driver\atapi \Device\Ide\IdePort0 89C541F8
Device \Driver\atapi \Device\Ide\IdePort1 89C541F8
Device \Driver\atapi \Device\Ide\IdePort2 89C541F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-7 89C541F8
Device \Driver\atapi \Device\Ide\IdePort3 89C541F8
Device \Driver\atapi \Device\Ide\IdePort4 89C541F8
Device \Driver\atapi \Device\Ide\IdePort5 89C541F8
Device \Driver\atapi \Device\Ide\IdeDeviceP4T0L0-16 89C541F8
Device \Driver\Cdrom \Device\CdRom1 89A151F8
Device \Driver\Ftdisk \Device\HarddiskVolume3 89C551F8
Device \Driver\usbstor \Device\00000075 89A45500
Device \Driver\NetBT \Device\NetBt_Wins_Export 892BE1F8
Device \Driver\usbstor \Device\00000079 89A45500
Device \Driver\NetBT \Device\NetbiosSmb 892BE1F8

AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\usbuhci \Device\USBFDO-0 899491F8
Device \Driver\usbstor \Device\0000007a 89A45500
Device \Driver\usbuhci \Device\USBFDO-1 899491F8
Device \Driver\usbstor \Device\0000007b 89A45500
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 892611F8
Device \Driver\usbuhci \Device\USBFDO-2 899491F8
Device \Driver\usbstor \Device\0000007c 89A45500
Device \FileSystem\MRxSmb \Device\LanmanRedirector 892611F8
Device \Driver\usbuhci \Device\USBFDO-3 899491F8
Device \Driver\usbehci \Device\USBFDO-4 8992F1F8
Device \Driver\Ftdisk \Device\FtControl 89C551F8
Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1 899CB1F8
Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1Port6Path0Target0Lun0 899CB1F8
Device \FileSystem\Cdfs \Cdfs 8976E500

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xED 0x40 0xDC 0xB6 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x4E 0x6D 0x4C 0xCC ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xD0 0xD2 0x45 0x0B ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x31 0x29 0x09 0xA9 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x4E 0x6D 0x4C 0xCC ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xD0 0xD2 0x45 0x0B ...

---- EOF - GMER 1.0.15 ----
[/log]

[log]
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2010-11-22 22:47:49
Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7 SAMSUNG_SP2004C rev.VM100-41
Running: gmer.exe; Driver: C:\DOCUME~1\OGLNY~1\USTAWI~1\Temp\kgryqkow.sys


---- System - GMER 1.0.15 ----

SSDT spsb.sys ZwEnumerateKey [0xB9ECDDA4]
SSDT spsb.sys ZwEnumerateValueKey [0xB9ECE132]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB6C54BAE]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0xB6C549D2]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0xB6C54B0C]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdePort0 89C541F8
Device \Driver\atapi \Device\Ide\IdePort1 89C541F8
Device \Driver\atapi \Device\Ide\IdePort2 89C541F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-7 89C541F8
Device \Driver\atapi \Device\Ide\IdePort3 89C541F8
Device \Driver\atapi \Device\Ide\IdePort4 89C541F8
Device \Driver\atapi \Device\Ide\IdePort5 89C541F8
Device \Driver\atapi \Device\Ide\IdeDeviceP4T0L0-16 89C541F8
Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1 899CB1F8
Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1Port6Path0Target0Lun0 899CB1F8
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
Device \FileSystem\Ntfs \Ntfs 89C531F8

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

---- EOF - GMER 1.0.15 ----
[/log]

Sohei
komentarz
komentarz

C:\WINDOWS\System32\dllcache\srframe.mmf
C:\WINDOWS\System32\shiftjis.uce

Przeskanuj jeszcze te 2 pliki na virustotal ale raczej są one czyste. Innych infekcji nie widać w komputerze

Nowya
komentarz
komentarz

Pliki są czyste jednak nie zmienia to problemu, że w dalszym ciągu nie moge otworzyć żadnego pliku exe.

Tomek01
komentarz
komentarz

Log z Gmer'a jest wykonany w nieprawidłowym środowisku. Widać sterowniki od Deamon Tools'a. Powinieneś odinstalować wszystko co emuluje napęd. Czyli Deamon Tools, Alcohol oraz usunąć sterownik sptd.sys. Wtedy log z Gmer'a byłby bardziej wiarygodny.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.