Nowya utworzono 21 listopada 2010 utworzono 21 listopada 2010 Witam mam problem typu "plik exe. nie jest prawidłową aplikacją systemu Win32" jako że jestem zielony na ten temat a jedynie co zrozumiałem i wyczytałem że trzeba porobić logi. [log]OTL logfile created on: 2010-11-21 20:05:05 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Ogólny\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 9,77 Gb Total Space | 1,58 Gb Free Space | 16,21% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 87,40 Gb Free Space | 89,50% Space Free | Partition Type: NTFS Drive E: | 78,88 Gb Total Space | 77,69 Gb Free Space | 98,49% Space Free | Partition Type: NTFS Computer Name: OG-E5EAAB3A9F7A | User Name: Ogólny | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe PRC - [2010-11-20 01:36:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-11-19 22:47:34 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2010-11-15 13:56:56 | 018,633,728 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe PRC - [2010-11-08 10:32:38 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\gmer\gmer.exe PRC - [2010-10-11 16:49:48 | 014,940,040 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe PRC - [2010-10-11 16:49:48 | 000,080,256 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-09-07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010-05-14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-03-08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe PRC - [2009-02-09 11:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2007-03-09 11:01:56 | 000,278,528 | ---- | M] () -- C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe PRC - [2006-11-03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\Philips\SPC220NC\Monitor.exe PRC - [2006-10-27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2006-10-26 13:45:04 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WISPTIS.EXE PRC - [2006-06-01 10:22:00 | 000,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2006-02-19 05:24:52 | 000,239,320 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2006-02-19 04:21:22 | 000,288,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2006-02-19 02:41:10 | 000,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2005-05-20 10:11:06 | 000,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-03 23:44:28 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskmgr.exe PRC - [2004-08-03 23:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-03 23:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-03 23:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-03 23:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-03 23:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2004-08-03 23:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-03 23:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe MOD - [2009-12-08 10:01:26 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-03 14:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-02-26 13:01:52 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2004-08-03 23:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-03 23:44:16 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2004-08-03 23:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-03 23:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2004-08-03 23:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-03 23:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-03 23:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-03 23:44:10 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2004-08-03 23:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-03 23:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-03 23:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-03 23:44:08 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2004-08-03 23:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-03 23:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-03 23:44:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2004-08-03 23:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-03 23:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2004-08-03 23:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-03 23:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2004-08-03 23:42:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll MOD - [2004-08-03 22:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_21.11.2010_20-11drv) DRV - File not found [Kernel | Unknown | Running] -- -- (71409322) DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\71409321.sys -- (71409321) DRV - [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-09-07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-09-07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010-09-07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-09-07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-09-07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-09-07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2007-01-09 17:59:50 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SPC220NC.SYS -- (SPC220NC) DRV - [2006-06-01 10:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2006-02-23 04:39:06 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt) DRV - [2006-02-23 04:38:32 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32) DRV - [2005-10-05 18:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService) DRV - [2005-08-11 14:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService) DRV - [2004-10-27 15:21:36 | 000,138,240 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService) DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com) IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2001-10-26 14:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [GrooveMonitor] D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider) O4 - HKLM..\Run: [Monitor] C:\WINDOWS\Philips\SPC220NC\Monitor.exe (PixArt Imaging Incorporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [BrowserChoice] C:\WINDOWS\System32\browserchoice.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk = C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-21 20:01:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-11-21 19:53:53 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe [2010-11-21 19:47:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2010-11-21 19:24:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\gmer [2010-11-21 16:55:36 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys [2010-11-21 16:55:25 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys [2010-11-21 16:55:00 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys [2010-11-21 16:54:59 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys [2010-11-21 16:54:58 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys [2010-11-21 16:54:58 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys [2010-11-21 16:54:57 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys [2010-11-21 16:54:56 | 000,061,440 | ---- | C] (Kolorowy skaner płaski) -- C:\WINDOWS\System32\dllcache\acerscad.dll [2010-11-21 16:54:53 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll [2010-11-21 16:54:51 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys [2010-11-21 16:54:50 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys [2010-11-21 16:54:50 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll [2010-11-21 16:28:34 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-11-21 16:24:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-11-21 16:07:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Media Player Classic [2010-11-21 13:45:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\WINDOWS [2010-11-21 10:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Sports Interactive [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Sports Interactive [2010-11-20 20:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-11-20 20:05:02 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-11-20 20:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-11-20 20:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-11-20 20:00:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-11-20 19:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\FM [2010-11-20 19:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-11-20 19:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite [2010-11-20 19:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-20 16:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\WinRAR [2010-11-20 12:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Csparty.pl JailBreak Mod [2010-11-20 11:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Szkoła [2010-11-20 11:52:35 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-11-20 11:27:30 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-11-20 11:27:30 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-11-20 11:27:29 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-11-20 11:27:28 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-11-20 11:27:27 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-11-20 11:27:27 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-11-20 11:27:26 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-11-20 11:27:16 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-11-20 11:27:16 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-20 11:17:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-11-20 11:15:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2010-11-20 01:40:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-11-20 01:37:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-11-20 01:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-11-20 01:35:16 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-11-20 01:35:15 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-11-20 01:35:15 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-11-20 01:35:12 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-11-20 01:33:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-11-20 01:31:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sun [2010-11-20 01:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-11-20 01:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-11-20 01:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-11-20 00:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\StartOffice [2010-11-20 00:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-11-20 00:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2010-11-20 00:53:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-11-20 00:53:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Winamp [2010-11-20 00:47:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IECompatCache [2010-11-20 00:47:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\PrivacIE [2010-11-20 00:46:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IETldCache [2010-11-20 00:45:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-11-20 00:43:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2010-11-20 00:28:46 | 000,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll [2010-11-20 00:28:46 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2010-11-20 00:28:45 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2010-11-20 00:28:45 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2010-11-20 00:28:45 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2010-11-20 00:28:45 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2010-11-20 00:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-11-20 00:23:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\The Weather Channel [2010-11-20 00:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [2010-11-19 23:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\AskTBar [2010-11-19 23:17:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak [2010-11-19 23:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Nero [2010-11-19 23:09:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2010-11-19 23:09:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2010-11-19 23:08:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2010-11-19 23:03:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010-11-19 22:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Google [2010-11-19 22:54:39 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe [2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM [2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices [2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla [2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-19 22:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2010-11-19 22:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Adobe [2010-11-19 22:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Macromedia [2010-11-19 22:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:51:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-11-19 22:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\VIA [2010-11-19 22:51:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:47:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\TEMP [2010-11-19 22:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:47:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\skypePM [2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2010-11-19 22:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-11-19 22:45:12 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-11-19 22:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Skype [2010-11-19 22:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-11-19 22:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ArcSoft [2010-11-19 22:38:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Philips [2010-11-19 22:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\HP [2010-11-19 22:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP [2010-11-19 22:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-11-19 22:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-19 22:33:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-11-19 22:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates [2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-11-19 22:30:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7 [2010-11-19 22:30:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$ [2010-11-19 22:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010-11-19 22:30:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ [2010-11-19 22:29:34 | 000,000,000 | ---D | C] -- C:\Config.Msi [2010-11-19 22:28:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2010-11-19 22:28:23 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-11-19 22:26:05 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\PCDLIB32.DLL [2010-11-19 22:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft [2010-11-19 22:24:16 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-11-19 22:24:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-11-19 22:24:11 | 000,000,000 | R--D | C] -- C:\Program Files [2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-11-19 22:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-11-19 22:23:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-11-19 22:23:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache [2010-11-19 22:23:00 | 000,507,136 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\drivers\SPC220NC.SYS [2010-11-19 22:23:00 | 000,119,808 | ---- | C] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\SPC220NC.AX [2010-11-19 22:23:00 | 000,006,656 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\CoInst.dll [2010-11-19 22:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Philips [2010-11-19 22:21:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-11-19 22:21:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-11-19 22:21:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-11-19 22:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\InstallShield [2010-11-19 22:19:07 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-11-19 22:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-11-19 22:18:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\UserData [2010-11-19 22:15:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-11-19 22:14:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-11-19 22:13:49 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-11-19 22:13:49 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-11-19 22:13:49 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-11-19 22:13:49 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-11-19 21:44:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Identities [2010-11-19 21:44:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-11-19 21:44:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moja muzyka [2010-11-19 21:44:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moje obrazy [2010-11-19 21:44:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-11-19 21:44:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Microsoft [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\SendTo [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Recent [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Ulubione [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Menu Start [2010-11-19 21:44:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\Cookies [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Szablony [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\PrintHood [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\NetHood [2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit [2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:43:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-11-19 21:43:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-11-19 21:43:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-11-19 21:43:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-11-19 21:43:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:42:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-11-19 21:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:41:12 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-11-19 21:41:11 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-11-19 21:41:11 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-11-19 21:36:01 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-11-19 21:34:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-11-19 21:34:08 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-11-19 21:34:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-11-19 21:33:59 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-11-19 21:33:55 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-11-19 21:33:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-11-19 21:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-11-19 21:32:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-11-19 21:32:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-11-19 21:32:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-11-19 21:32:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-11-19 21:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-11-19 21:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-11-19 21:31:49 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-11-19 21:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-11-19 21:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-11-19 21:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-11-19 21:31:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-11-19 21:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-11-19 21:30:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-11-19 21:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-11-19 21:30:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-11-19 21:30:42 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-11-19 21:30:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-11-19 21:30:05 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-11-19 21:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-11-19 21:29:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-11-19 21:29:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-11-19 21:29:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-11-21 19:53:57 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL.exe [2010-11-21 19:52:42 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT [2010-11-21 19:52:04 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-21 19:40:15 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-21 19:09:05 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010-11-21 19:08:56 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-21 19:08:53 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-21 19:08:47 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-21 19:08:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-21 18:04:21 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Ogólny\ntuser.ini [2010-11-21 18:04:13 | 004,272,834 | -H-- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-21 17:58:31 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-11-21 16:43:34 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2010-11-21 16:26:08 | 003,912,958 | R--- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\12431ds.exe [2010-11-21 14:22:41 | 039,223,945 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe [2010-11-21 11:22:25 | 000,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-21 11:22:25 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-21 11:22:25 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-21 11:22:25 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-21 11:22:25 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-21 11:17:50 | 000,291,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-21 11:04:01 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-11-21 10:53:56 | 000,073,032 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-11-21 01:39:25 | 000,000,597 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk [2010-11-20 22:21:09 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk [2010-11-20 20:23:51 | 063,447,591 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip [2010-11-20 20:01:01 | 000,000,630 | ---- | M] () -- C:\WINDOWS\win.ini [2010-11-20 19:42:54 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-20 19:36:02 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-20 11:52:56 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-20 11:27:30 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-11-20 11:27:27 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-20 01:30:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk [2010-11-20 01:02:35 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini [2010-11-20 01:01:40 | 000,036,864 | ---- | M] () -- C:\WINDOWS\uinst001.exe [2010-11-20 00:57:32 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk [2010-11-20 00:57:32 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk [2010-11-20 00:53:58 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-20 00:53:38 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-20 00:29:18 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2010-11-19 22:54:32 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-19 22:49:51 | 000,021,768 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-11-19 22:46:28 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-11-19 22:35:52 | 000,120,253 | ---- | M] () -- C:\WINDOWS\hpoins11.dat [2010-11-19 22:35:12 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk [2010-11-19 22:34:35 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-19 22:34:14 | 000,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-19 22:24:15 | 000,001,757 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk [2010-11-19 22:23:00 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk [2010-11-19 22:13:48 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk [2010-11-19 21:44:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-19 21:42:47 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-19 21:41:49 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-19 21:35:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-19 21:35:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-19 21:34:54 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-11-19 21:31:10 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-19 21:31:00 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-11-19 21:31:00 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-21 16:56:23 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys [2010-11-21 16:56:23 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys [2010-11-21 16:56:21 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys [2010-11-21 16:56:19 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys [2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys [2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys [2010-11-21 16:56:17 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys [2010-11-21 16:56:17 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys [2010-11-21 16:56:16 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys [2010-11-21 16:56:05 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys [2010-11-21 16:28:37 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010-11-21 16:28:36 | 000,262,400 | RHS- | C] () -- C:\cmldr [2010-11-21 16:21:30 | 003,912,958 | R--- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\12431ds.exe [2010-11-21 16:07:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-11-21 14:22:41 | 039,223,945 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe [2010-11-21 01:39:25 | 000,000,597 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk [2010-11-20 22:21:35 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk [2010-11-20 20:23:50 | 063,447,591 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip [2010-11-20 19:42:54 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-20 19:42:52 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-20 19:35:39 | 000,013,926 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fon.docx [2010-11-20 12:00:21 | 000,822,442 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\skanuj0001.jpg [2010-11-20 11:58:20 | 000,015,240 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\-.doc [2010-11-20 11:58:14 | 000,064,722 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Wniosek.pdf [2010-11-20 11:52:56 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-20 11:43:42 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-20 11:27:30 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-11-20 11:17:08 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-11-20 01:35:17 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-11-20 01:35:16 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-11-20 01:35:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-11-20 01:35:15 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-11-20 01:35:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-11-20 01:35:15 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-11-20 01:30:57 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk [2010-11-20 01:01:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini [2010-11-20 00:59:20 | 000,036,864 | ---- | C] () -- C:\WINDOWS\uinst001.exe [2010-11-20 00:57:32 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk [2010-11-20 00:57:32 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk [2010-11-20 00:57:28 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2010-11-20 00:57:28 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-11-20 00:57:28 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2010-11-20 00:53:58 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-20 00:29:18 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2010-11-19 22:54:32 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-19 22:49:51 | 000,021,768 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-11-19 22:49:48 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010-11-19 22:49:43 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-11-19 22:47:28 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-19 22:47:28 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-19 22:46:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-11-19 22:45:13 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-19 22:35:12 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk [2010-11-19 22:34:35 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-19 22:34:14 | 000,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-19 22:32:25 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll [2010-11-19 22:28:41 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-11-19 22:28:39 | 000,120,253 | ---- | C] () -- C:\WINDOWS\hpoins11.dat [2010-11-19 22:28:29 | 000,073,032 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-11-19 22:24:19 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-11-19 22:24:16 | 000,763,990 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-19 22:24:15 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-11-19 22:24:15 | 000,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk [2010-11-19 22:24:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-11-19 22:24:13 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-11-19 22:24:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-11-19 22:24:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-11-19 22:23:46 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-11-19 22:23:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-11-19 22:23:00 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk [2010-11-19 22:23:00 | 000,000,518 | ---- | C] () -- C:\WINDOWS\System32\SPC220NC.INI [2010-11-19 22:21:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-11-19 22:21:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-11-19 22:21:54 | 001,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT [2010-11-19 22:21:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2010-11-19 22:21:54 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-11-19 22:21:54 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-11-19 22:21:54 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-11-19 22:21:54 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-11-19 22:21:54 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-11-19 22:21:54 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-11-19 22:21:54 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-11-19 22:21:54 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-11-19 22:21:54 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-11-19 22:21:54 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-11-19 22:21:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-11-19 22:21:54 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-11-19 22:21:53 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-11-19 22:21:53 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-11-19 22:19:07 | 000,291,680 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-19 22:18:07 | 000,000,327 | RHS- | C] () -- C:\boot.ini [2010-11-19 22:18:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-19 22:16:04 | 004,272,834 | -H-- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-19 22:15:50 | 000,063,804 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-19 22:15:13 | 000,016,960 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-11-19 22:13:48 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk [2010-11-19 21:44:17 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Ogólny\ntuser.ini [2010-11-19 21:44:16 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\desktop.ini [2010-11-19 21:44:15 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT [2010-11-19 21:44:15 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT.LOG [2010-11-19 21:43:02 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-19 21:42:47 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-19 21:41:49 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-11-19 21:41:44 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-11-19 21:41:02 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-11-19 21:40:44 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-11-19 21:36:42 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-11-19 21:36:40 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-11-19 21:36:25 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-11-19 21:36:18 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-11-19 21:36:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-11-19 21:36:04 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-11-19 21:36:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-11-19 21:36:00 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-11-19 21:36:00 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-11-19 21:36:00 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-11-19 21:36:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-11-19 21:35:58 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-11-19 21:35:58 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-11-19 21:35:58 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-11-19 21:35:58 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-11-19 21:35:58 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-11-19 21:35:57 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-11-19 21:35:57 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-11-19 21:35:55 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-11-19 21:35:55 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-11-19 21:35:55 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-11-19 21:35:55 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-11-19 21:35:54 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-11-19 21:35:54 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-11-19 21:35:08 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-11-19 21:35:04 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-19 21:35:04 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-19 21:35:03 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-11-19 21:33:41 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-11-19 21:32:33 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-11-19 21:32:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010-11-19 21:31:58 | 000,379,904 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-11-19 21:31:10 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-19 21:31:00 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-11-19 21:31:00 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-11-19 21:30:21 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-11-19 21:30:21 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-11-19 21:30:20 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-11-19 21:30:20 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-11-19 21:30:20 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-11-19 21:30:20 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-11-19 21:30:20 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-11-19 21:30:20 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-11-19 21:30:20 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-11-19 21:30:20 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-11-19 21:30:20 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-11-19 21:30:19 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-11-19 21:30:19 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-11-19 21:30:19 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-11-19 21:30:19 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-11-19 21:30:19 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-11-19 21:30:19 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-11-19 21:30:18 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-11-19 21:30:18 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-11-19 21:30:16 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-11-19 21:30:15 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-11-19 21:30:15 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-11-19 21:30:14 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-11-19 21:30:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-11-19 21:30:06 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2006-06-01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-06-01 10:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-06-01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-06-01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-06-01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-06-01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-06-01 10:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2004-08-03 23:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2004-08-03 23:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2004-08-03 23:43:58 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2004-08-03 23:43:56 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2004-08-03 23:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2004-08-03 23:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2004-08-03 21:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2004-08-03 21:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2004-08-03 21:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2004-08-03 21:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2004-08-03 21:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2004-08-03 21:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2004-07-17 10:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-10-26 16:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2001-10-26 16:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2001-10-26 16:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2001-10-26 16:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2001-10-26 15:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2001-10-26 15:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2001-10-26 15:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2001-10-26 15:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2001-10-26 14:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2001-10-26 14:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2001-10-26 14:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2001-10-26 14:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2001-10-26 14:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2001-10-26 14:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2001-10-26 14:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2001-08-17 20:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2001-08-17 20:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2001-08-17 20:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2001-08-17 20:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2001-08-17 20:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2001-08-17 20:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2001-08-17 20:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2001-08-17 18:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2001-07-22 01:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2001-07-21 21:16:20 | 000,000,630 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-21 21:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-21 21:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2001-07-07 03:00:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [color=#E56717]========== LOP Check ==========[/color] [2010-11-20 11:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-20 19:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-19 22:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-20 19:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite [2010-11-20 12:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10 [2010-11-21 19:08:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla [2010-11-19 22:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM [2010-11-21 02:06:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive [2010-11-21 19:09:05 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2001-07-21 21:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:14 | 000,262,400 | RHS- | M] () -- C:\cmldr [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004-08-03 21:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr [2010-11-21 19:08:36 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys [2004-08-03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\i386\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys [2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\ERDNT\cache\eventlog.dll [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\ERDNT\cache\winlogon.exe [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe < End of report > [/log]
Sohei komentarz 21 listopada 2010 komentarz 21 listopada 2010 przeskanuj system dr web cure it i daj loga na forum. Nie usuwaj tego co znajdzie
Sohei komentarz 22 listopada 2010 komentarz 22 listopada 2010 To tak to co znalazł dr web można usunąć. Podejrzewałem poważniejsza infekcje , na szczęście jej tutaj nie ma [code]:Processes Explorer.exe :OTL DRV - File not found [File_System | Unknown | Running] -- -- (setup_9.0.0.722_21.11.2010_20-11drv) DRV - File not found [Kernel | Unknown | Running] -- -- (71409322) DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\DRIVERS\71409321.sys -- (71409321) :files C:\WINDOWS\System32\DRIVERS\71409321.sys :services 71409322 71409321 setup_9.0.0.722_21.11.2010_20-11drv :Commands [emptytemp] [start explorer] [reboot][/code] Wklejasz to do OTL w białe okienko i klikasz run fix(wykonaj skrypt). Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL +log GMER
Nowya komentarz 22 listopada 2010 Autor komentarz 22 listopada 2010 Log z usuniecia. [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== Error: No service named setup_9.0.0.722_21.11.2010_20-11drv was found to stop! Service\Driver key setup_9.0.0.722_21.11.2010_20-11drv not found. Error: No service named 71409322 was found to stop! Service\Driver key 71409322 not found. Error: No service named 71409321 was found to stop! Service\Driver key 71409321 not found. File C:\WINDOWS\System32\DRIVERS\71409321.sys not found. ========== FILES ========== File\Folder C:\WINDOWS\System32\DRIVERS\71409321.sys not found. ========== SERVICES/DRIVERS ========== Error: No service named 71409322 was found to stop! Service\Driver key 71409322 not found. Error: No service named 71409321 was found to stop! Service\Driver key 71409321 not found. Error: No service named setup_9.0.0.722_21.11.2010_20-11drv was found to stop! Service\Driver key setup_9.0.0.722_21.11.2010_20-11drv not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 65748 bytes ->Temporary Internet Files folder emptied: 32902 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 67 bytes User: Ogólny ->Temp folder emptied: 56097276 bytes ->Temporary Internet Files folder emptied: 34120794 bytes ->Java cache emptied: 0 bytes ->Flash cache emptied: 1766 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2114584 bytes %systemroot%\System32 .tmp files removed: 2596 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 235246 bytes RecycleBin emptied: 83773745 bytes Total Files Cleaned = 168,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11222010_205640 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF15D4.tmp not found! File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF302C.tmp not found! File\Folder C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temp\~DF94D.tmp not found! C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\VI6CFCKA\OTL[1].html moved successfully. C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\QA6V9Q8T\adsCALBOCNA.htm moved successfully. C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\ads[10].htm moved successfully. C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\index[1].php moved successfully. C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\Content.IE5\FFRYHE2P\likebox[1].htm moved successfully. C:\Documents and Settings\Ogólny\Ustawienia lokalne\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully. File\Folder C:\WINDOWS\temp\_avast5_\unp167284632.tmp not found! File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot. Registry entries deleted on Reboot... [/log] Log z MBAM [log]Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Wersja bazy: 5172 Windows 5.1.2600 Dodatek Service Pack 2 Internet Explorer 8.0.6001.18702 2010-11-22 21:28:38 mbam-log-2010-11-22 (21-28-38).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|) Przeskanowano obiektów: 187323 Upłynęło: 21 minut(y), 30 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 0 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 0 Zainfekowanych plików: 0 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: (Nie znaleziono zagrożeń) Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: (Nie znaleziono zagrożeń) Zainfekowanych plików: (Nie znaleziono zagrożeń) [/log] Nowy log z OTL [log] OTL logfile created on: 2010-11-22 21:33:04 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Ogólny\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 9,77 Gb Total Space | 1,40 Gb Free Space | 14,35% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 87,40 Gb Free Space | 89,50% Space Free | Partition Type: NTFS Drive E: | 78,88 Gb Total Space | 77,69 Gb Free Space | 98,49% Space Free | Partition Type: NTFS Drive F: | 620,93 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: OG-E5EAAB3A9F7A | User Name: Ogólny | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe PRC - [2010-11-20 01:36:48 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-11-19 22:47:34 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2010-11-15 13:56:56 | 018,633,728 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-09-07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010-05-14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-03-08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe PRC - [2009-02-09 11:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2007-03-09 11:01:56 | 000,278,528 | ---- | M] () -- C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe PRC - [2006-11-03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\Philips\SPC220NC\Monitor.exe PRC - [2006-10-27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2006-10-26 13:45:04 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WISPTIS.EXE PRC - [2006-06-01 10:22:00 | 000,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2006-02-19 05:24:52 | 000,239,320 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2006-02-19 04:21:22 | 000,288,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2006-02-19 02:41:10 | 000,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2005-05-20 10:11:06 | 000,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-03 23:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-03 23:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-03 23:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-03 23:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2004-08-03 23:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-03 23:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-03 23:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2004-08-03 23:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-03 23:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe MOD - [2009-12-08 10:01:26 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 14:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-03 14:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-02-26 13:01:52 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2004-08-03 23:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-03 23:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-03 23:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2004-08-03 23:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-03 23:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-03 23:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-03 23:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-03 23:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-03 23:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-03 23:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-03 23:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-03 23:44:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2004-08-03 23:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-03 23:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2004-08-03 23:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-03 23:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2004-08-03 23:42:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll MOD - [2004-08-03 22:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010-09-07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-09-07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-09-07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010-09-07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-09-07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-09-07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-09-07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2007-01-09 17:59:50 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SPC220NC.SYS -- (SPC220NC) DRV - [2006-06-01 10:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2006-02-23 04:39:06 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt) DRV - [2006-02-23 04:38:32 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32) DRV - [2005-10-05 18:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService) DRV - [2005-08-11 14:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService) DRV - [2004-10-27 15:21:36 | 000,138,240 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService) DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\URLSearchHook: {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com) IE - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2001-10-26 14:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [GrooveMonitor] D:\Programy\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider) O4 - HKLM..\Run: [Monitor] C:\WINDOWS\Philips\SPC220NC\Monitor.exe (PixArt Imaging Incorporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] D:\Programy\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk = C:\Program Files\Philips\Philips SPC220NC Webcam\TrayMin220.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1229272821-1275210071-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Programy\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [1996-09-16 03:00:00 | 000,000,213 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-22 21:05:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Malwarebytes [2010-11-22 21:05:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-11-22 21:05:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-11-22 21:05:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-11-22 21:03:46 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ogólny\Pulpit\mbam-setup-1.46(dobreprogramy.pl).exe [2010-11-22 20:56:40 | 000,000,000 | ---D | C] -- C:\_OTL [2010-11-22 20:55:46 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe [2010-11-22 00:52:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\DoctorWeb [2010-11-21 20:01:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-11-21 16:55:36 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys [2010-11-21 16:55:25 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys [2010-11-21 16:55:00 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys [2010-11-21 16:54:59 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys [2010-11-21 16:54:58 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys [2010-11-21 16:54:58 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys [2010-11-21 16:54:57 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys [2010-11-21 16:54:56 | 000,061,440 | ---- | C] (Kolorowy skaner płaski) -- C:\WINDOWS\System32\dllcache\acerscad.dll [2010-11-21 16:54:53 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll [2010-11-21 16:54:51 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys [2010-11-21 16:54:50 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys [2010-11-21 16:54:50 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll [2010-11-21 16:28:34 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-11-21 16:24:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-11-21 16:07:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Media Player Classic [2010-11-21 13:45:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\WINDOWS [2010-11-21 10:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Sports Interactive [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive [2010-11-21 02:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Sports Interactive [2010-11-20 20:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-11-20 20:05:02 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-11-20 20:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-11-20 20:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-11-20 20:00:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-11-20 19:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\FM [2010-11-20 19:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-11-20 19:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite [2010-11-20 19:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-20 16:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\WinRAR [2010-11-20 12:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Csparty.pl JailBreak Mod [2010-11-20 11:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit\Szkoła [2010-11-20 11:52:35 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-11-20 11:27:30 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-11-20 11:27:30 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-11-20 11:27:29 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-11-20 11:27:28 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-11-20 11:27:27 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-11-20 11:27:27 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-11-20 11:27:26 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-11-20 11:27:16 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-11-20 11:27:16 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010-11-20 11:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-20 11:17:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-11-20 11:15:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2010-11-20 01:40:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-11-20 01:37:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-11-20 01:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-11-20 01:35:16 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-11-20 01:35:15 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-11-20 01:35:15 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-11-20 01:35:12 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-11-20 01:33:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-11-20 01:31:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sun [2010-11-20 01:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-11-20 01:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-11-20 01:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-11-20 00:59:54 | 000,000,000 | ---D | C] -- C:\Program Files\StartOffice [2010-11-20 00:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-11-20 00:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2010-11-20 00:53:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-11-20 00:53:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-11-20 00:52:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Winamp [2010-11-20 00:47:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IECompatCache [2010-11-20 00:47:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\PrivacIE [2010-11-20 00:46:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\IETldCache [2010-11-20 00:45:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-11-20 00:43:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2010-11-20 00:28:46 | 000,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll [2010-11-20 00:28:46 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2010-11-20 00:28:45 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2010-11-20 00:28:45 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2010-11-20 00:28:45 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2010-11-20 00:28:45 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2010-11-20 00:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-11-20 00:23:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\The Weather Channel [2010-11-20 00:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [2010-11-19 23:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\AskTBar [2010-11-19 23:17:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak [2010-11-19 23:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Nero [2010-11-19 23:09:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2010-11-19 23:09:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2010-11-19 23:08:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2010-11-19 23:03:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010-11-19 22:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Google [2010-11-19 22:54:39 | 000,045,056 | ---- | C] (adi) -- C:\WINDOWS\System32\CleanUp.exe [2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM [2010-11-19 22:54:39 | 000,000,000 | ---D | C] -- C:\Program Files\Analog Devices [2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla [2010-11-19 22:54:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-19 22:54:27 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2010-11-19 22:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Adobe [2010-11-19 22:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Macromedia [2010-11-19 22:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:51:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-11-19 22:51:07 | 000,000,000 | ---D | C] -- C:\Program Files\VIA [2010-11-19 22:51:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:50:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:47:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\TEMP [2010-11-19 22:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:47:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Google [2010-11-19 22:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\skypePM [2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-11-19 22:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2010-11-19 22:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-11-19 22:45:12 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-11-19 22:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Skype [2010-11-19 22:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-11-19 22:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ArcSoft [2010-11-19 22:38:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\Philips [2010-11-19 22:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\HP [2010-11-19 22:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP [2010-11-19 22:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-11-19 22:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-19 22:33:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-11-19 22:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates [2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-11-19 22:31:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-11-19 22:30:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7 [2010-11-19 22:30:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$ [2010-11-19 22:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010-11-19 22:30:15 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ [2010-11-19 22:29:34 | 000,000,000 | ---D | C] -- C:\Config.Msi [2010-11-19 22:28:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2010-11-19 22:28:23 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-11-19 22:26:05 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\PCDLIB32.DLL [2010-11-19 22:26:05 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft [2010-11-19 22:24:16 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-11-19 22:24:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-11-19 22:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-11-19 22:24:11 | 000,000,000 | R--D | C] -- C:\Program Files [2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-11-19 22:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-11-19 22:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-11-19 22:23:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-11-19 22:23:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-11-19 22:23:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-11-19 22:23:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache [2010-11-19 22:23:00 | 000,507,136 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\drivers\SPC220NC.SYS [2010-11-19 22:23:00 | 000,119,808 | ---- | C] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\SPC220NC.AX [2010-11-19 22:23:00 | 000,006,656 | ---- | C] (PixArt Imaging Inc.) -- C:\WINDOWS\System32\CoInst.dll [2010-11-19 22:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Philips [2010-11-19 22:21:57 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-11-19 22:21:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-11-19 22:21:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-11-19 22:21:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-11-19 22:20:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\InstallShield [2010-11-19 22:19:07 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-11-19 22:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-11-19 22:18:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\UserData [2010-11-19 22:15:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-11-19 22:14:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-11-19 22:13:49 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-11-19 22:13:49 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-11-19 22:13:49 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-11-19 22:13:49 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-11-19 22:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-11-19 21:44:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Identities [2010-11-19 21:44:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-11-19 21:44:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moja muzyka [2010-11-19 21:44:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty\Moje obrazy [2010-11-19 21:44:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-11-19 21:44:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Microsoft [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\SendTo [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Recent [2010-11-19 21:44:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Ogólny\Dane aplikacji [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Ulubione [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Moje dokumenty [2010-11-19 21:44:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Ogólny\Menu Start [2010-11-19 21:44:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Ogólny\Cookies [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\Szablony [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\PrintHood [2010-11-19 21:44:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Ogólny\NetHood [2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Pulpit [2010-11-19 21:44:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:43:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-11-19 21:43:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-11-19 21:43:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-11-19 21:43:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-11-19 21:43:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:42:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-11-19 21:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-19 21:41:12 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-11-19 21:41:11 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-11-19 21:41:11 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-11-19 21:36:01 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-11-19 21:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-11-19 21:34:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-11-19 21:34:08 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-11-19 21:34:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-11-19 21:33:59 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-11-19 21:33:55 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-11-19 21:33:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-11-19 21:32:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-11-19 21:32:27 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-11-19 21:32:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-11-19 21:32:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-11-19 21:32:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-11-19 21:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-11-19 21:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-11-19 21:31:49 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-11-19 21:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-11-19 21:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-11-19 21:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-11-19 21:31:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-11-19 21:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-11-19 21:30:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-11-19 21:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-11-19 21:30:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-11-19 21:30:42 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-11-19 21:30:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-11-19 21:30:05 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-11-19 21:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-11-19 21:29:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-11-19 21:29:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-11-19 21:29:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-11-22 21:21:57 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-11-22 21:05:11 | 000,000,547 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-22 21:03:46 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ogólny\Pulpit\mbam-setup-1.46(dobreprogramy.pl).exe [2010-11-22 21:00:47 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-22 21:00:42 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010-11-22 20:59:59 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-22 20:59:59 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-22 20:59:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-22 20:58:47 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT [2010-11-22 20:58:24 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Ogólny\ntuser.ini [2010-11-22 20:55:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ogólny\Pulpit\OTL_3.2.17.3(dobreprogramy.pl).exe [2010-11-22 20:52:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-22 20:28:10 | 000,296,730 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\robak.bmp [2010-11-22 20:18:55 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-11-22 16:59:14 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-22 16:38:06 | 000,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-22 16:38:06 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-22 16:38:06 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-22 16:38:06 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-22 16:38:06 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-22 13:52:54 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-11-22 01:33:55 | 004,273,366 | -H-- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-22 00:51:31 | 052,324,064 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\launch.exe [2010-11-22 00:45:26 | 000,073,032 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-11-22 00:44:46 | 000,291,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-21 16:43:34 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2010-11-21 14:22:41 | 039,223,945 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe [2010-11-21 01:39:25 | 000,000,597 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk [2010-11-20 22:21:09 | 000,000,474 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk [2010-11-20 20:23:51 | 063,447,591 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip [2010-11-20 20:01:01 | 000,000,630 | ---- | M] () -- C:\WINDOWS\win.ini [2010-11-20 19:42:54 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-20 19:42:52 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-20 19:36:02 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-20 11:52:56 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-20 11:27:30 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-11-20 11:27:27 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-20 01:30:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk [2010-11-20 01:02:35 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini [2010-11-20 01:01:40 | 000,036,864 | ---- | M] () -- C:\WINDOWS\uinst001.exe [2010-11-20 00:57:32 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk [2010-11-20 00:57:32 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk [2010-11-20 00:53:58 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-20 00:53:38 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-20 00:29:18 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2010-11-19 22:54:32 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-19 22:49:51 | 000,021,768 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-11-19 22:46:28 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-11-19 22:35:52 | 000,120,253 | ---- | M] () -- C:\WINDOWS\hpoins11.dat [2010-11-19 22:35:12 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk [2010-11-19 22:34:35 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-19 22:34:14 | 000,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-19 22:24:15 | 000,001,757 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk [2010-11-19 22:23:00 | 000,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk [2010-11-19 22:13:48 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk [2010-11-19 21:44:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-19 21:42:47 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-19 21:41:49 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-19 21:35:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-19 21:35:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-19 21:34:54 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-11-19 21:34:08 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-11-19 21:31:10 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-19 21:31:00 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-11-19 21:31:00 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-22 21:05:11 | 000,000,547 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-22 20:28:09 | 000,296,730 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\robak.bmp [2010-11-22 01:05:39 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-11-22 00:51:29 | 052,324,064 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\launch.exe [2010-11-21 16:56:23 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys [2010-11-21 16:56:23 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys [2010-11-21 16:56:21 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys [2010-11-21 16:56:19 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys [2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys [2010-11-21 16:56:18 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys [2010-11-21 16:56:17 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys [2010-11-21 16:56:17 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys [2010-11-21 16:56:16 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys [2010-11-21 16:56:05 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys [2010-11-21 16:28:37 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010-11-21 16:28:36 | 000,262,400 | RHS- | C] () -- C:\cmldr [2010-11-21 16:07:37 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-11-21 14:22:41 | 039,223,945 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fm2007_patch_7.0.2.exe [2010-11-21 01:39:25 | 000,000,597 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Football Manager 2007.lnk [2010-11-20 22:21:35 | 000,000,474 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\The Neverhood.lnk [2010-11-20 20:23:50 | 063,447,591 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Bambino Update 2010.zip [2010-11-20 19:42:54 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-20 19:42:52 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-20 19:35:39 | 000,013,926 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\fon.docx [2010-11-20 12:00:21 | 000,822,442 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\skanuj0001.jpg [2010-11-20 11:58:20 | 000,015,240 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\-.doc [2010-11-20 11:58:14 | 000,064,722 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Wniosek.pdf [2010-11-20 11:52:56 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-20 11:43:42 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-20 11:27:30 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2010-11-20 11:17:08 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-11-20 01:35:17 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-11-20 01:35:16 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-11-20 01:35:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-11-20 01:35:15 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-11-20 01:35:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-11-20 01:35:15 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-11-20 01:30:57 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\WinRAR.lnk [2010-11-20 01:01:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\sversion.ini [2010-11-20 00:59:20 | 000,036,864 | ---- | C] () -- C:\WINDOWS\uinst001.exe [2010-11-20 00:57:32 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Napi-projekt.lnk [2010-11-20 00:57:32 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\ALLPlayer V4.5.lnk [2010-11-20 00:57:28 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2010-11-20 00:57:28 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-11-20 00:57:28 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2010-11-20 00:53:58 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-20 00:29:18 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2010-11-19 22:54:32 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ipla.lnk [2010-11-19 22:49:51 | 000,021,768 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-11-19 22:49:48 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010-11-19 22:49:43 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-11-19 22:47:28 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-19 22:47:28 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-19 22:46:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-11-19 22:45:13 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-11-19 22:35:12 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential.lnk [2010-11-19 22:34:35 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-19 22:34:14 | 000,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-19 22:32:25 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll [2010-11-19 22:28:41 | 000,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-11-19 22:28:39 | 000,120,253 | ---- | C] () -- C:\WINDOWS\hpoins11.dat [2010-11-19 22:28:29 | 000,073,032 | ---- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-11-19 22:24:19 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-11-19 22:24:16 | 000,763,990 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-19 22:24:15 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-11-19 22:24:15 | 000,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 6.0 CE.lnk [2010-11-19 22:24:13 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-11-19 22:24:13 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-11-19 22:24:13 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-11-19 22:24:12 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-11-19 22:24:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-11-19 22:24:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-11-19 22:24:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-11-19 22:24:04 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-11-19 22:24:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-11-19 22:24:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-11-19 22:23:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-11-19 22:23:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-11-19 22:23:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-11-19 22:23:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-11-19 22:23:46 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-11-19 22:23:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-11-19 22:23:00 | 000,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TrayMin220.lnk [2010-11-19 22:23:00 | 000,000,518 | ---- | C] () -- C:\WINDOWS\System32\SPC220NC.INI [2010-11-19 22:21:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-11-19 22:21:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-11-19 22:21:54 | 001,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT [2010-11-19 22:21:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2010-11-19 22:21:54 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-11-19 22:21:54 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-11-19 22:21:54 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-11-19 22:21:54 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-11-19 22:21:54 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-11-19 22:21:54 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-11-19 22:21:54 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-11-19 22:21:54 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-11-19 22:21:54 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-11-19 22:21:54 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-11-19 22:21:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-11-19 22:21:54 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-11-19 22:21:53 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-11-19 22:21:53 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-11-19 22:19:07 | 000,291,680 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-19 22:18:07 | 000,000,327 | RHS- | C] () -- C:\boot.ini [2010-11-19 22:18:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-19 22:16:04 | 004,273,366 | -H-- | C] () -- C:\Documents and Settings\Ogólny\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-19 22:15:50 | 000,063,804 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-19 22:15:13 | 000,016,960 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-11-19 22:13:48 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Ogólny\Pulpit\Internet.lnk [2010-11-19 21:44:17 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Ogólny\ntuser.ini [2010-11-19 21:44:16 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\Ogólny\Dane aplikacji\desktop.ini [2010-11-19 21:44:15 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT [2010-11-19 21:44:15 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\Ogólny\NTUSER.DAT.LOG [2010-11-19 21:43:02 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-19 21:42:47 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-19 21:41:49 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-11-19 21:41:44 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-11-19 21:41:05 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-11-19 21:41:02 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-11-19 21:40:44 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-11-19 21:36:42 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-11-19 21:36:40 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-11-19 21:36:25 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-11-19 21:36:18 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-11-19 21:36:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-11-19 21:36:04 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-11-19 21:36:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-11-19 21:36:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-11-19 21:36:00 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-11-19 21:36:00 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-11-19 21:36:00 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-11-19 21:36:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-11-19 21:36:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-11-19 21:35:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-11-19 21:35:58 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-11-19 21:35:58 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-11-19 21:35:58 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-11-19 21:35:58 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-11-19 21:35:58 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-11-19 21:35:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-11-19 21:35:57 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-11-19 21:35:57 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-11-19 21:35:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-11-19 21:35:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-11-19 21:35:55 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-11-19 21:35:55 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-11-19 21:35:55 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-11-19 21:35:55 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-11-19 21:35:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-11-19 21:35:54 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-11-19 21:35:54 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-11-19 21:35:08 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-11-19 21:35:04 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-19 21:35:04 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-19 21:35:03 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-11-19 21:34:08 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-11-19 21:34:03 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-11-19 21:33:41 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-11-19 21:32:41 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-11-19 21:32:33 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-11-19 21:32:15 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010-11-19 21:31:58 | 000,379,904 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-11-19 21:31:10 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-19 21:31:00 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-11-19 21:31:00 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-11-19 21:30:21 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-11-19 21:30:21 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-11-19 21:30:20 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-11-19 21:30:20 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-11-19 21:30:20 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-11-19 21:30:20 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-11-19 21:30:20 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-11-19 21:30:20 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-11-19 21:30:20 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-11-19 21:30:20 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-11-19 21:30:20 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-11-19 21:30:19 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-11-19 21:30:19 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-11-19 21:30:19 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-11-19 21:30:19 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-11-19 21:30:19 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-11-19 21:30:19 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-11-19 21:30:18 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-11-19 21:30:18 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-11-19 21:30:16 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-11-19 21:30:15 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-11-19 21:30:15 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-11-19 21:30:14 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-11-19 21:30:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-11-19 21:30:06 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2006-06-01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-06-01 10:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-06-01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-06-01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-06-01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-06-01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-06-01 10:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2004-08-03 23:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2004-08-03 23:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2004-08-03 23:43:58 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2004-08-03 23:43:56 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2004-08-03 23:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2004-08-03 23:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2004-08-03 21:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2004-08-03 21:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2004-08-03 21:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2004-08-03 21:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2004-08-03 21:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2004-08-03 21:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2004-07-17 10:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-10-26 16:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2001-10-26 16:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2001-10-26 16:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2001-10-26 16:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2001-10-26 15:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2001-10-26 15:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2001-10-26 15:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2001-10-26 15:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2001-10-26 14:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2001-10-26 14:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2001-10-26 14:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2001-10-26 14:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2001-10-26 14:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2001-10-26 14:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2001-10-26 14:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2001-08-17 20:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2001-08-17 20:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2001-08-17 20:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2001-08-17 20:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2001-08-17 20:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2001-08-17 20:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2001-08-17 20:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2001-08-17 18:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2001-07-22 01:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2001-07-21 21:16:20 | 000,000,630 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-21 21:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-21 21:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2001-07-07 03:00:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [color=#E56717]========== LOP Check ==========[/color] [2010-11-20 11:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-20 19:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-19 22:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-19 22:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-11-20 19:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\DAEMON Tools Lite [2010-11-20 12:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Gadu-Gadu 10 [2010-11-22 21:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\ipla [2010-11-19 22:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\RDRM [2010-11-21 02:06:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ogólny\Dane aplikacji\Sports Interactive [2010-11-22 21:00:42 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-19 21:28:39 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010-11-21 16:28:37 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2001-07-21 21:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:14 | 000,262,400 | RHS- | M] () -- C:\cmldr [2010-11-19 21:35:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-19 21:35:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004-08-03 21:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr [2010-11-22 20:59:49 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\agp440.sys [2004-08-03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\i386\atapi.sys [2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-17 20:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\cdrom.sys [2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\ERDNT\cache\eventlog.dll [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [2008-04-14 18:20:31 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys [2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\ERDNT\cache\winlogon.exe [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe [2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\winlogon.exe < End of report > [/log] logi z GMERA [log] GMER 1.0.15.15530 - http://www.gmer.net Rootkit scan 2010-11-22 22:46:05 Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7 SAMSUNG_SP2004C rev.VM100-41 Running: gmer.exe; Driver: C:\DOCUME~1\OGLNY~1\USTAWI~1\Temp\kgryqkow.sys ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwClose [0xB6C47CF0] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateKey [0xB6C47BAC] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDeleteKey [0xB6C48160] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDeleteValueKey [0xB6C4808A] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwDuplicateObject [0xB6C47782] SSDT spsb.sys ZwEnumerateKey [0xB9ECDDA4] SSDT spsb.sys ZwEnumerateValueKey [0xB9ECE132] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenKey [0xB6C47C86] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenProcess [0xB6C476C2] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwOpenThread [0xB6C47726] SSDT spsb.sys ZwQueryKey [0xB9ECE20A] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwQueryValueKey [0xB6C47DA6] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRenameKey [0xB6C4822E] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRestoreKey [0xB6C47D66] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwSetValueKey [0xB6C47EE6] INT 0x62 ? 89C54BF8 INT 0x63 ? 89C54BF8 INT 0x74 ? 8994ABF8 INT 0x82 ? 89C54BF8 INT 0x84 ? 8994ABF8 INT 0x94 ? 8994ABF8 INT 0xB4 ? 89C54BF8 INT 0xB4 ? 89C54BF8 INT 0xB4 ? 8994ABF8 INT 0xB4 ? 8994ABF8 INT 0xB4 ? 89C54BF8 Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB6C54BAE] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0xB6C549D2] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0xB6C54B0C] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject ---- Kernel code sections - GMER 1.0.15 ---- PAGE ntkrnlpa.exe!ZwLoadDriver 80582EA6 7 Bytes JMP B6C54B10 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntkrnlpa.exe!NtCreateSection 805A9E9E 7 Bytes JMP B6C549D6 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntkrnlpa.exe!ObMakeTemporaryObject 805BAF9A 5 Bytes JMP B6C505D4 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntkrnlpa.exe!ObInsertObject 805C18D0 5 Bytes JMP B6C51FFA \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntkrnlpa.exe!ZwCreateProcessEx 805CFA2E 7 Bytes JMP B6C54BB2 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ? spsb.sys Nie można odnaleźć określonego pliku. ! .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB98DB360, 0x240F7E, 0xE8000020] .text USBPORT.SYS!DllUnload B989962C 5 Bytes JMP 8994A1D8 .text aoeft1jb.SYS B9823386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...] .text aoeft1jb.SYS B98233AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...] .text aoeft1jb.SYS B98233C4 3 Bytes [00, 80, 02] .text aoeft1jb.SYS B98233C9 1 Byte [30] .text aoeft1jb.SYS B98233C9 11 Bytes [30, 00, 00, 00, 5E, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESI; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL} .text ... init C:\WINDOWS\system32\drivers\Senfilt.sys entry point in "init" section [0xB6E77A80] pnidata C:\WINDOWS\system32\DRIVERS\secdrv.sys unknown last section [0xB5378F00, 0x24000, 0x48000000] ---- User code sections - GMER 1.0.15 ---- .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[748] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[1024] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Alwil Software\Avast5\AvastSvc.exe[1416] kernel32.dll!SetUnhandledExceptionFilter 7C8447ED 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP } .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3060] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!CallNextHookEx 77D3ED6E 5 Bytes JMP 4069D0ED C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!CreateWindowExW 77D41AD5 5 Bytes JMP 406ADB1C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxParamW 77D46702 5 Bytes JMP 405D54C5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxParamA 77D488E1 5 Bytes JMP 407A47AC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxIndirectParamW 77D52598 5 Bytes JMP 407A480F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxIndirectA 77D5AEF1 5 Bytes JMP 407A4741 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 406A9AC9 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 4061467C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxExW 77D70559 5 Bytes JMP 407A4612 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxExA 77D7057D 5 Bytes JMP 407A4674 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!DialogBoxIndirectParamA 77D76CED 5 Bytes JMP 407A4872 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] USER32.dll!MessageBoxIndirectW 77D860B7 5 Bytes JMP 407A46D6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] ole32.dll!OleLoadFromStream 77508C62 5 Bytes JMP 407A4B77 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3560] ole32.dll!CoCreateInstance 77516009 5 Bytes JMP 406ADB78 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) ---- Kernel IAT/EAT - GMER 1.0.15 ---- IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [B9EB6042] spsb.sys IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [B9EB613E] spsb.sys IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [B9EB60C0] spsb.sys IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [B9EB6800] spsb.sys IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [B9EB66D6] spsb.sys IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfAcquireSpinLock] 0C8D1C46 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_UCHAR] B48B8932 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KeGetCurrentIrql] 89000001 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfRaiseIrql] 0001C083 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfLowerIrql] 24468B00 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!HalGetInterruptVector] 89820C8D IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!HalTranslateBusAddress] D18BF84D IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KeStallExecutionProcessor] 860F1639 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!KfReleaseSpinLock] 000000BD IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] 020CB389 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!READ_PORT_USHORT] 83660000 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 7400067E IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[HAL.dll!WRITE_PORT_UCHAR] 89D60320 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[WMILIB.SYS!WmiSystemControl] 8D168B00 IAT \SystemRoot\System32\Drivers\aoeft1jb.SYS[WMILIB.SYS!WmiCompleteRequest] F0003284 ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\WINDOWS\system32\services.exe[732] @ C:\WINDOWS\system32\services.exe [ADVAPI32.dll!CreateProcessAsUserW] 003C0002 IAT C:\WINDOWS\system32\services.exe[732] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!CreateProcessW] 003C0000 IAT C:\Program Files\Internet Explorer\iexplore.exe[1024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [451F1ACB] C:\Program Files\Internet Explorer\xpshims.dll (Internet Explorer Compatibility Shims for XP/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3060] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [451F1ACB] C:\Program Files\Internet Explorer\xpshims.dll (Internet Explorer Compatibility Shims for XP/Microsoft Corporation) ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software) Device \FileSystem\Ntfs \Ntfs 89C531F8 AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software) AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) Device \Driver\PCI_PNP2966 \Device\00000043 spsb.sys Device \Driver\usbuhci \Device\USBPDO-0 899491F8 Device \Driver\dmio \Device\DmControl\DmIoDaemon 89BE41F8 Device \Driver\dmio \Device\DmControl\DmConfig 89BE41F8 Device \Driver\dmio \Device\DmControl\DmPnP 89BE41F8 Device \Driver\dmio \Device\DmControl\DmInfo 89BE41F8 Device \Driver\usbuhci \Device\USBPDO-1 899491F8 Device \Driver\usbuhci \Device\USBPDO-2 899491F8 Device \Driver\usbuhci \Device\USBPDO-3 899491F8 Device \Driver\usbehci \Device\USBPDO-4 8992F1F8 AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) Device \Driver\sptd \Device\3276829216 spsb.sys Device \Driver\Ftdisk \Device\HarddiskVolume1 89C551F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{9F0F0750-245C-4579-BC7C-59029FDFEECC} 892BE1F8 Device \Driver\Ftdisk \Device\HarddiskVolume2 89C551F8 Device \Driver\Cdrom \Device\CdRom0 89A151F8 Device \Driver\atapi \Device\Ide\IdePort0 89C541F8 Device \Driver\atapi \Device\Ide\IdePort1 89C541F8 Device \Driver\atapi \Device\Ide\IdePort2 89C541F8 Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-7 89C541F8 Device \Driver\atapi \Device\Ide\IdePort3 89C541F8 Device \Driver\atapi \Device\Ide\IdePort4 89C541F8 Device \Driver\atapi \Device\Ide\IdePort5 89C541F8 Device \Driver\atapi \Device\Ide\IdeDeviceP4T0L0-16 89C541F8 Device \Driver\Cdrom \Device\CdRom1 89A151F8 Device \Driver\Ftdisk \Device\HarddiskVolume3 89C551F8 Device \Driver\usbstor \Device\00000075 89A45500 Device \Driver\NetBT \Device\NetBt_Wins_Export 892BE1F8 Device \Driver\usbstor \Device\00000079 89A45500 Device \Driver\NetBT \Device\NetbiosSmb 892BE1F8 AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) Device \Driver\usbuhci \Device\USBFDO-0 899491F8 Device \Driver\usbstor \Device\0000007a 89A45500 Device \Driver\usbuhci \Device\USBFDO-1 899491F8 Device \Driver\usbstor \Device\0000007b 89A45500 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 892611F8 Device \Driver\usbuhci \Device\USBFDO-2 899491F8 Device \Driver\usbstor \Device\0000007c 89A45500 Device \FileSystem\MRxSmb \Device\LanmanRedirector 892611F8 Device \Driver\usbuhci \Device\USBFDO-3 899491F8 Device \Driver\usbehci \Device\USBFDO-4 8992F1F8 Device \Driver\Ftdisk \Device\FtControl 89C551F8 Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1 899CB1F8 Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1Port6Path0Target0Lun0 899CB1F8 Device \FileSystem\Cdfs \Cdfs 8976E500 ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xED 0x40 0xDC 0xB6 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x4E 0x6D 0x4C 0xCC ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xD0 0xD2 0x45 0x0B ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x31 0x29 0x09 0xA9 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x4E 0x6D 0x4C 0xCC ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xD0 0xD2 0x45 0x0B ... ---- EOF - GMER 1.0.15 ---- [/log] [log] GMER 1.0.15.15530 - http://www.gmer.net Rootkit quick scan 2010-11-22 22:47:49 Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7 SAMSUNG_SP2004C rev.VM100-41 Running: gmer.exe; Driver: C:\DOCUME~1\OGLNY~1\USTAWI~1\Temp\kgryqkow.sys ---- System - GMER 1.0.15 ---- SSDT spsb.sys ZwEnumerateKey [0xB9ECDDA4] SSDT spsb.sys ZwEnumerateValueKey [0xB9ECE132] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB6C54BAE] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0xB6C549D2] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0xB6C54B0C] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject ---- Devices - GMER 1.0.15 ---- Device \Driver\atapi \Device\Ide\IdePort0 89C541F8 Device \Driver\atapi \Device\Ide\IdePort1 89C541F8 Device \Driver\atapi \Device\Ide\IdePort2 89C541F8 Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-7 89C541F8 Device \Driver\atapi \Device\Ide\IdePort3 89C541F8 Device \Driver\atapi \Device\Ide\IdePort4 89C541F8 Device \Driver\atapi \Device\Ide\IdePort5 89C541F8 Device \Driver\atapi \Device\Ide\IdeDeviceP4T0L0-16 89C541F8 Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1 899CB1F8 Device \Driver\aoeft1jb \Device\Scsi\aoeft1jb1Port6Path0Target0Lun0 899CB1F8 Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software) Device \FileSystem\Ntfs \Ntfs 89C531F8 AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software) AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) ---- EOF - GMER 1.0.15 ---- [/log]
Sohei komentarz 22 listopada 2010 komentarz 22 listopada 2010 C:\WINDOWS\System32\dllcache\srframe.mmf C:\WINDOWS\System32\shiftjis.uce Przeskanuj jeszcze te 2 pliki na virustotal ale raczej są one czyste. Innych infekcji nie widać w komputerze
Nowya komentarz 22 listopada 2010 Autor komentarz 22 listopada 2010 Pliki są czyste jednak nie zmienia to problemu, że w dalszym ciągu nie moge otworzyć żadnego pliku exe.
Tomek01 komentarz 23 listopada 2010 komentarz 23 listopada 2010 Log z Gmer'a jest wykonany w nieprawidłowym środowisku. Widać sterowniki od Deamon Tools'a. Powinieneś odinstalować wszystko co emuluje napęd. Czyli Deamon Tools, Alcohol oraz usunąć sterownik sptd.sys. Wtedy log z Gmer'a byłby bardziej wiarygodny.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.