x-kom hosting

Obciążenie procesora

Kamashi
utworzono
utworzono

OTL:
[log]OTL logfile created on: 2010-12-06 21:58:11 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\CS\Moje dokumenty\Downloads\Programs
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 129,00 Mb Available Physical Memory | 25,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 63,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 2,00 Gb Free Space | 6,82% Space Free | Partition Type: NTFS
Drive D: | 45,26 Gb Total Space | 27,25 Gb Free Space | 60,20% Space Free | Partition Type: NTFS

Computer Name: AFFFF-115AA4F8B | User Name: CS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-12-06 21:56:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\CS\Moje dokumenty\Downloads\Programs\OTL.exe
PRC - [2010-12-05 08:04:35 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2010-10-27 03:28:32 | 000,614,400 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2010-09-15 11:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2010-09-15 03:50:54 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-09-07 22:54:21 | 003,118,512 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2010-08-25 03:40:23 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009-04-22 17:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2008-06-09 10:37:44 | 000,053,392 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2008-04-14 22:51:52 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:52 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-03-26 17:34:44 | 000,479,412 | ---- | M] (TP-LINK TECHNOLOGIES CO., LTD.) -- C:\Program Files\TP-LINK\TP-LINK 54M Wireless Client Utility\TWCU.exe
PRC - [2008-02-18 14:01:01 | 000,251,312 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2007-02-12 10:03:08 | 000,364,629 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe
PRC - [2006-06-16 15:38:44 | 000,172,032 | ---- | M] (Anti-Malware Development a.s.) -- C:\Program Files\ewido anti-spyware 4.0\guard.exe
PRC - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2004-08-11 00:45:04 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe
PRC - [2004-05-12 21:30:00 | 000,172,032 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-12-06 21:56:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\CS\Moje dokumenty\Downloads\Programs\OTL.exe
MOD - [2009-03-26 16:35:39 | 000,034,224 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:48 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2008-04-14 22:50:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-04-14 22:50:32 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-04-14 22:49:16 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 21:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 21:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2008-06-09 10:37:44 | 000,053,392 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2007-02-12 10:03:08 | 000,364,629 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)
SRV - [2006-06-16 15:38:44 | 000,172,032 | ---- | M] (Anti-Malware Development a.s.) [Auto | Running] -- C:\Program Files\ewido anti-spyware 4.0\guard.exe -- (ewido anti-spyware 4.0 guard)
SRV - [2006-03-03 21:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys -- (hwdatacard)
DRV - [2010-10-27 04:55:48 | 005,524,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010-09-01 21:21:05 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2010-09-01 21:19:58 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010-09-01 21:19:58 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010-08-19 11:41:58 | 000,101,904 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2010-01-10 21:51:18 | 000,000,000 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Ultra.dll -- (ultra)
DRV - [2009-12-10 21:31:50 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-12-25 08:56:42 | 000,433,792 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wfeaglxt.sys -- (WFLR6654) WinFast TV2000 XP Expert (FM1216MK3)
DRV - [2008-04-14 00:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007-11-05 08:55:04 | 000,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray)
DRV - [2007-04-23 14:54:50 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mgmt.sys -- (s115mgmt) Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM)
DRV - [2007-04-23 14:54:50 | 000,098,568 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115obex.sys -- (s115obex)
DRV - [2007-04-23 14:54:48 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mdm.sys -- (s115mdm)
DRV - [2007-04-23 14:54:48 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mdfl.sys -- (s115mdfl)
DRV - [2007-04-23 14:54:46 | 000,083,208 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115bus.sys -- (s115bus) Sony Ericsson Device 115 driver (WDM)
DRV - [2007-03-27 12:27:02 | 000,543,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2006-11-15 01:00:18 | 000,055,840 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006-06-16 15:38:54 | 000,003,968 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\ewido anti-spyware 4.0\guard.sys -- (ewido anti-spyware 4.0 driver)
DRV - [2006-03-01 18:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)
DRV - [2005-01-06 16:55:38 | 000,009,446 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\WinFast\WFTVFM\WFIOCTL.sys -- (WFIOCTL)
DRV - [2004-12-23 17:27:56 | 000,027,392 | ---- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2004-08-03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2003-09-23 10:38:34 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)
DRV - [2001-10-26 16:52:04 | 000,153,631 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\el90xnd5.sys -- (EL90X)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:6.7
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20101009
FF - prefs.js..network.proxy.type: 0


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-09-27 20:11:30 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-09-13 21:48:43 | 000,000,000 | ---D | M]

[2010-01-27 23:35:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Mozilla\Extensions
[2010-11-28 18:13:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Mozilla\Firefox\Profiles\1kmfd40a.default\extensions
[2010-08-28 11:45:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\CS\Dane aplikacji\Mozilla\Firefox\Profiles\1kmfd40a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-09-05 18:37:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\CS\Dane aplikacji\Mozilla\Firefox\Profiles\1kmfd40a.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010-10-21 14:33:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Mozilla\Firefox\Profiles\1kmfd40a.default\extensions\nasanightlaunch@example.com
[2010-11-28 18:13:46 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-09-27 22:25:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-10-20 19:23:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010-08-24 19:12:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010-09-15 03:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-08-25 01:39:29 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-08-25 01:39:29 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-08-25 01:39:29 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-08-25 01:39:29 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-08-25 01:39:29 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-08-25 01:39:29 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2009-12-29 21:02:56 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O4 - HKLM..\Run: [Cmaudio] File not found
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe (HP)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TWCU] C:\Program Files\TP-LINK\TP-LINK 54M Wireless Client Utility\TWCU.exe (TP-LINK TECHNOLOGIES CO., LTD.)
O4 - HKCU..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\20Dollars2Surf.lnk = C:\Program Files\20Dollars2Surf\20dollars2surf.exe (20Dollars2Surf.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LogonInit: DllName - logonInit.dll - C:\Program Files\Common Files\logonInit.dll ()
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O28 - HKLM ShellExecuteHooks: {57B86673-276A-48B2-BAE7-C6DBB3020EB8} - C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll (Anti-Malware Development a.s.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-12-10 20:58:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^kshi^Menu Start^Programy^Autostart^raw32.dll - - File not found
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]ares[/b] - hkey= - key= - C:\Program Files\Ares\Ares.exe File not found
MsConfig - StartUpReg: [b]BitTorrent[/b] - hkey= - key= - C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
MsConfig - StartUpReg: [b]GrooveMonitor[/b] - hkey= - key= - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]HP Software Update[/b] - hkey= - key= - C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Company)
MsConfig - StartUpReg: [b]IPLA![/b] - hkey= - key= - C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
MsConfig - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe File not found
MsConfig - StartUpReg: [b]Sony Ericsson PC Suite[/b] - hkey= - key= - C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
MsConfig - StartUpReg: [b]SpybotSD TeaTimer[/b] - hkey= - key= - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation)
MsConfig - StartUpReg: [b]WinFast Schedule[/b] - hkey= - key= - C:\Program Files\WinFast\WFTVFM\WFWIZ.exe (Leadtek Research Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PEVSystemStart - Reg Error: Value error.
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: procexp90.Sys - Reg Error: Value error.
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PEVSystemStart - Reg Error: Value error.
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: procexp90.Sys - Reg Error: Value error.
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-12-06 11:54:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\CS\Recent
[2010-12-05 22:11:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2010-12-05 22:07:52 | 000,101,904 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\drivers\AtihdXP3.sys
[2010-12-05 22:04:45 | 000,450,560 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIDEMGX.dll
[2010-12-05 22:04:45 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2010-12-05 22:04:45 | 000,057,344 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalrt.dll
[2010-12-05 22:04:45 | 000,017,408 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atitvo32.dll
[2010-12-05 22:04:44 | 004,489,216 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticaldd.dll
[2010-12-05 22:04:44 | 000,118,784 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atibtmon.exe
[2010-12-05 22:04:44 | 000,064,512 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\atimpc32.dll
[2010-12-05 22:04:44 | 000,064,512 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\amdpcom32.dll
[2010-12-05 22:04:44 | 000,053,248 | ---- | C] ( ATI Technologies Inc.) -- C:\WINDOWS\System32\ATIDDC.DLL
[2010-12-05 22:04:44 | 000,045,056 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIODCLI.exe
[2010-12-05 22:04:44 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2010-12-05 22:04:44 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2010-12-05 22:04:44 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll
[2010-12-05 22:04:43 | 016,330,752 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atioglxx.dll
[2010-12-05 22:04:43 | 000,393,216 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiok3x2.dll
[2010-12-05 22:04:43 | 000,159,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2evxx.dll
[2010-12-05 22:04:43 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2erec.dll
[2010-12-05 22:04:43 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalcl.dll
[2010-12-05 22:04:42 | 000,651,264 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atikvmag.dll
[2010-12-05 22:04:42 | 000,311,296 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2010-12-05 22:04:42 | 000,294,912 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIODE.exe
[2010-12-05 22:04:42 | 000,212,992 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2010-12-05 22:04:42 | 000,196,608 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiadlxx.dll
[2010-12-05 22:04:42 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiapfxx.exe
[2010-12-05 08:02:54 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2010-12-03 14:00:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Pulpit\Pih - Dowod rzeczowy nr 1 (2010)
[2010-12-03 10:33:57 | 000,000,000 | ---D | C] -- C:\Program Files\20Dollars2Surf
[2010-12-01 21:24:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-01 21:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\ElfBot NG
[2010-12-01 19:57:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Pulpit\pih
[2010-11-25 16:19:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Pulpit\v_knife
[2010-11-25 15:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\TibiaCam TV Lite
[2010-11-23 00:31:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\cmpnents
[2010-11-22 21:10:38 | 000,032,768 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System32\udaprop.dll
[2010-11-22 21:10:37 | 001,458,176 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\SmWizard.exe
[2010-11-22 21:10:37 | 000,917,504 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\cmids3d.dll
[2010-11-22 21:10:37 | 000,167,936 | ---- | C] (C-Media) -- C:\WINDOWS\System32\cmuda.dll
[2010-11-22 21:10:36 | 002,596,864 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System\cmicnfg.cpl
[2010-11-22 21:10:35 | 000,712,704 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS\System32\Audio3D.dll
[2010-11-22 21:10:31 | 000,000,000 | ---D | C] -- C:\Program Files\C-Media 3D Audio
[2010-11-22 21:02:43 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcmtr.exe
[2010-11-22 21:02:41 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe
[2010-11-22 21:02:26 | 002,879,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SkyTel.exe
[2010-11-22 21:02:25 | 002,157,568 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2010-11-22 21:02:24 | 000,086,016 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SoundMan.exe
[2010-11-22 21:02:17 | 009,709,568 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.exe
[2010-11-22 21:02:16 | 001,191,936 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2010-11-22 21:02:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010-11-22 21:02:15 | 000,299,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSndMgr.cpl
[2010-11-22 21:02:15 | 000,282,624 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.cpl
[2010-11-22 21:02:12 | 004,405,248 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2010-11-22 21:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010-11-22 20:59:34 | 000,499,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2010-11-21 17:16:32 | 000,266,240 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\vbalTreeView6.ocx
[2010-11-21 17:16:32 | 000,188,928 | ---- | C] (Info-ZIP) -- C:\WINDOWS\System32\vbuzip10.DLL
[2010-11-21 17:16:31 | 000,417,792 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\vbalCmdBar6.ocx
[2010-11-21 17:16:31 | 000,262,144 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\lst_v.ocx
[2010-11-21 17:16:31 | 000,159,744 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\wt_menu.dll
[2010-11-21 17:16:31 | 000,094,208 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\img_lst.ocx
[2010-11-21 17:16:31 | 000,040,960 | ---- | C] (vbAccelerator) -- C:\WINDOWS\System32\ssubtmr6.dll
[2010-11-21 17:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Smarty Uninstaller Pro
[2010-11-20 18:36:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Dane aplikacji\QuickScan
[2010-11-08 15:47:00 | 000,000,000 | ---D | C] -- C:\Fraps
[2010-11-08 15:37:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\gctmp
[2010-11-08 15:37:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\Xenocode
[2010-11-08 15:37:26 | 000,000,000 | ---D | C] -- C:\Program Files\Game Cam V2
[2010-11-08 15:31:23 | 000,000,000 | ---D | C] -- C:\Tmp
[2010-11-08 15:30:45 | 000,000,000 | ---D | C] -- C:\Program Files\Taksi
[2010-11-05 15:24:16 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010-11-05 15:24:12 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2010-11-05 15:24:11 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2010-11-05 15:23:58 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2010-11-05 15:23:58 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2010-11-05 15:23:58 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2010-11-05 15:23:58 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2010-11-05 15:23:58 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2010-11-05 15:23:54 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2010-11-05 15:23:51 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2010-11-05 15:23:50 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2010-11-05 15:23:49 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010-11-05 15:23:48 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2010-11-05 15:23:48 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2010-11-05 15:23:48 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2010-11-05 15:23:47 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2010-11-05 15:23:47 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2010-11-05 15:23:47 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2010-11-05 15:23:43 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2010-11-05 15:23:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-11-05 15:23:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-11-05 15:23:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010-11-05 15:23:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010-11-05 15:16:55 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\drivers\amdagp.sys
[2010-11-05 15:16:55 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2010-11-05 15:16:55 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2010-11-05 15:16:55 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2010-11-05 15:16:55 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2010-11-05 15:16:55 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2010-11-05 15:16:55 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2010-11-05 15:16:55 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2010-11-05 15:16:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010-11-05 15:16:54 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010-11-05 15:16:54 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010-11-05 15:16:54 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010-11-05 15:16:54 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010-11-05 15:16:54 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010-11-05 15:16:54 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010-11-05 15:16:54 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010-11-05 15:16:54 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010-11-05 15:16:54 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010-11-05 15:16:53 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010-11-05 15:16:53 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010-11-05 15:16:53 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010-11-05 15:16:53 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010-11-05 15:16:53 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010-11-05 15:16:53 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010-11-05 15:16:53 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010-11-05 15:16:53 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010-11-05 15:16:53 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010-11-05 15:16:53 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2010-11-05 15:16:53 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2010-11-05 15:16:53 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2010-11-05 15:16:53 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010-11-05 15:16:53 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2010-11-05 15:16:53 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010-11-05 15:16:53 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010-11-05 15:16:53 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2010-11-05 15:16:52 | 000,144,384 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2010-11-05 15:16:52 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2010-11-05 15:16:51 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010-11-05 15:16:51 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010-11-05 15:16:51 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010-11-05 15:16:51 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010-11-05 15:16:50 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010-11-05 15:16:50 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010-11-05 15:16:50 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010-11-05 15:16:50 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010-11-05 15:16:50 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010-11-05 15:16:50 | 000,040,960 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\drivers\sisagp.sys
[2010-11-05 15:16:50 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010-11-05 15:16:50 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010-11-05 15:16:50 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2010-11-05 15:16:49 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010-11-05 15:16:49 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010-11-05 15:16:49 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010-11-05 15:16:49 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010-11-05 15:16:49 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010-11-05 15:16:49 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2010-11-05 15:16:49 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010-11-05 15:08:03 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010-11-04 13:17:16 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced IP Scanner
[2010-10-26 19:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Dane aplikacji\eSkiMoS R2
[2010-10-26 19:48:19 | 000,000,000 | ---D | C] -- C:\Program Files\eSkiMoS R2
[2010-10-25 19:40:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Pulpit\GeT_RiGhT - EPS Season III - week 1-2-3 Sd2Sk7pr
[2010-10-22 21:23:48 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010-10-21 14:34:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Pulpit\ambera
[2010-10-20 23:12:04 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2010-10-20 19:23:37 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-10-20 19:23:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-10-20 19:23:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-10-18 23:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Dane aplikacji\mIRC
[2010-10-18 23:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-10-18 21:09:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Dane aplikacji\Malwarebytes
[2010-10-18 21:08:31 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-10-18 21:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-10-18 21:08:27 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-10-18 21:08:27 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-10-18 13:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\Yahoo
[2010-10-18 13:14:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\CS\Moje dokumenty\My Widgets
[2010-10-18 13:13:34 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-10-15 19:07:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\Dane aplikacji\Ventrilo
[2010-10-15 18:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\Ventrilo
[2010-10-15 18:52:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010-10-08 19:28:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CS\DoctorWeb
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-12-06 21:53:13 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-12-06 21:52:59 | 000,001,024 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-12-06 21:52:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-12-06 21:44:40 | 000,001,065 | ---- | M] () -- C:\WINDOWS\winamp.ini
[2010-12-06 21:04:02 | 000,001,120 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004UA.job
[2010-12-06 21:04:02 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-12-06 18:04:07 | 000,001,068 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004Core.job
[2010-12-06 10:54:02 | 000,000,016 | ---- | M] () -- C:\Program Files\Common Files\userInit.dll
[2010-12-05 22:03:24 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-12-05 21:59:39 | 000,000,010 | ---- | M] () -- C:\WINDOWS\Wininit.ini
[2010-12-05 18:09:17 | 000,000,075 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Condition Zero.url
[2010-12-05 17:33:47 | 000,493,976 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-12-05 17:33:47 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-12-05 17:33:47 | 000,085,136 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-12-05 17:33:47 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-12-05 08:08:53 | 000,000,075 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Counter-Strike.url
[2010-12-05 08:07:41 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2010-12-04 23:45:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-12-03 16:00:55 | 000,003,444 | ---- | M] () -- C:\Documents and Settings\CS\.recently-used.xbel
[2010-12-03 10:33:59 | 000,000,702 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\20Dollars2Surf.lnk
[2010-12-03 10:33:59 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\20Dollars2Surf.lnk
[2010-12-01 21:24:25 | 000,027,958 | ---- | M] () -- C:\Program Files\Common Files\logonInit.dll
[2010-11-23 00:52:51 | 000,005,038 | ---- | M] () -- C:\WINDOWS\SR.inf
[2010-11-22 21:10:42 | 000,000,092 | ---- | M] () -- C:\WINDOWS\CMISETUP.INI
[2010-11-22 21:10:41 | 000,000,026 | ---- | M] () -- C:\WINDOWS\CMCDPLAY.INI
[2010-11-22 21:10:38 | 000,000,171 | ---- | M] () -- C:\WINDOWS\System\CmiCnfg.ini
[2010-11-22 21:09:01 | 000,000,281 | -HS- | M] () -- C:\boot.ini
[2010-11-21 19:40:50 | 000,034,134 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\puszek.JPG
[2010-11-21 18:11:31 | 000,039,157 | ---- | M] () -- C:\Documents and Settings\CS\ideal.JPG
[2010-11-21 17:22:34 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-11-20 12:07:36 | 000,001,477 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Counter-Strike 1.6.lnk
[2010-11-20 00:51:56 | 000,001,714 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Counter Strike 1.6 Non Steam.lnk
[2010-11-19 00:07:14 | 000,399,981 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00607.JPG
[2010-11-19 00:06:38 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC00607.JPG
[2010-11-18 23:48:38 | 000,367,473 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00623.JPG
[2010-11-18 23:47:59 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC00623.JPG
[2010-11-18 23:08:30 | 001,588,224 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\SteamInstall.msi
[2010-11-08 15:53:47 | 000,059,392 | ---- | M] () -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-08 15:47:01 | 000,000,478 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Fraps.lnk
[2010-11-05 16:38:32 | 001,504,235 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Grabaż i Strachy na Lachy - Dzień dobry_ kocham cię.mp3
[2010-11-05 15:41:02 | 000,297,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-05 15:16:27 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-11-05 13:32:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-01 13:39:25 | 000,031,515 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\DSC02609.JPG
[2010-11-01 11:40:04 | 003,148,518 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Wrzuta.pl - Patrick Jumpen - Gangster.mp3
[2010-10-31 10:09:20 | 000,303,202 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00366.JPG
[2010-10-31 10:08:42 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC00366.JPG
[2010-10-27 04:55:48 | 005,524,480 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2010-10-27 04:17:30 | 016,330,752 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atioglxx.dll
[2010-10-27 04:10:46 | 000,057,344 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalrt.dll
[2010-10-27 04:10:36 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalcl.dll
[2010-10-27 04:09:28 | 004,489,216 | ---- | M] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticaldd.dll
[2010-10-27 04:02:58 | 000,311,296 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2010-10-27 03:51:30 | 003,958,784 | ---- | M] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2010-10-27 03:50:50 | 000,450,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIDEMGX.dll
[2010-10-27 03:49:48 | 000,301,056 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2010-10-27 03:48:12 | 000,393,216 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiok3x2.dll
[2010-10-27 03:36:08 | 002,671,744 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2010-10-27 03:35:48 | 000,532,480 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010-10-27 03:35:40 | 000,887,724 | ---- | M] () -- C:\WINDOWS\System32\ativva6x.dat
[2010-10-27 03:35:40 | 000,000,003 | ---- | M] () -- C:\WINDOWS\System32\ativva5x.dat
[2010-10-27 03:30:46 | 000,212,992 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2010-10-27 03:30:32 | 000,155,648 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2010-10-27 03:30:24 | 000,026,112 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2010-10-27 03:30:16 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2010-10-27 03:30:04 | 000,159,744 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2evxx.dll
[2010-10-27 03:27:02 | 000,053,248 | ---- | M] ( ATI Technologies Inc.) -- C:\WINDOWS\System32\ATIDDC.DLL
[2010-10-27 03:26:18 | 000,099,504 | ---- | M] () -- C:\WINDOWS\System32\atiapfxx.blb
[2010-10-27 03:26:16 | 000,143,360 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiapfxx.exe
[2010-10-27 03:22:30 | 000,651,264 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atikvmag.dll
[2010-10-27 03:20:30 | 000,196,608 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atiadlxx.dll
[2010-10-27 03:20:30 | 000,064,512 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\atimpc32.dll
[2010-10-27 03:20:30 | 000,064,512 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\WINDOWS\System32\amdpcom32.dll
[2010-10-27 03:20:12 | 000,017,408 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atitvo32.dll
[2010-10-27 03:19:52 | 000,053,248 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2erec.dll
[2010-10-27 03:14:32 | 000,704,512 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2010-10-25 21:23:28 | 001,348,096 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\I Taką Wodą Być.ppt
[2010-10-23 23:53:44 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC04573.JPG
[2010-10-23 01:39:21 | 000,030,136 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\fota.jpg
[2010-10-20 23:12:05 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\SpeedFan.lnk
[2010-10-20 23:12:04 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2010-10-20 15:17:09 | 000,011,022 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\LM.docx
[2010-10-18 23:29:56 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\mIRC.lnk
[2010-10-18 21:08:35 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-10-18 20:41:25 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\CS\Pulpit\Spybot - Search & Destroy.lnk
[2010-10-18 20:18:01 | 000,162,304 | ---- | M] () -- C:\WINDOWS\CleanUpUninstall.exe
[2010-10-18 14:24:33 | 000,813,276 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00606.JPG
[2010-10-15 10:15:50 | 000,046,370 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\]].jpg
[2010-10-15 10:15:29 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\]].jpg
[2010-10-15 10:13:58 | 000,601,991 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC04802.JPG
[2010-10-15 10:13:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC04802.JPG
[2010-10-15 10:09:14 | 000,525,966 | ---- | M] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC04452.JPG
[2010-10-15 10:08:21 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC04452.JPG
[2010-10-14 14:03:01 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\CS\DSC02609.JPG
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-12-05 22:04:45 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010-12-05 22:04:44 | 000,532,480 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010-12-05 22:04:44 | 000,099,504 | ---- | C] () -- C:\WINDOWS\System32\atiapfxx.blb
[2010-12-05 22:04:44 | 000,022,190 | ---- | C] () -- C:\WINDOWS\atiogl.xml
[2010-12-05 22:04:42 | 000,223,990 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010-12-05 22:04:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010-12-05 18:09:17 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Condition Zero.url
[2010-12-05 08:02:55 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2010-12-03 16:00:55 | 000,003,444 | ---- | C] () -- C:\Documents and Settings\CS\.recently-used.xbel
[2010-12-03 10:33:59 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\20Dollars2Surf.lnk
[2010-12-03 10:33:59 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\20Dollars2Surf.lnk
[2010-12-02 11:23:21 | 000,000,016 | ---- | C] () -- C:\Program Files\Common Files\userInit.dll
[2010-12-01 21:24:25 | 000,027,958 | ---- | C] () -- C:\Program Files\Common Files\logonInit.dll
[2010-11-23 00:53:05 | 000,005,038 | ---- | C] () -- C:\WINDOWS\SR.inf
[2010-11-22 21:10:38 | 000,000,171 | ---- | C] () -- C:\WINDOWS\System\CmiCnfg.ini
[2010-11-22 21:10:37 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2010-11-22 21:10:37 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2010-11-22 21:10:31 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2010-11-22 21:02:15 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-11-21 19:40:01 | 000,034,134 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\puszek.JPG
[2010-11-21 18:11:31 | 000,039,157 | ---- | C] () -- C:\Documents and Settings\CS\ideal.JPG
[2010-11-20 12:07:36 | 000,001,477 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Counter-Strike 1.6.lnk
[2010-11-20 00:51:56 | 000,001,714 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Counter Strike 1.6 Non Steam.lnk
[2010-11-19 20:11:11 | 000,002,279 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Google Chrome.lnk
[2010-11-19 20:03:43 | 000,001,120 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004UA.job
[2010-11-19 20:03:42 | 000,001,068 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004Core.job
[2010-11-19 00:06:40 | 000,399,981 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00607.JPG
[2010-11-19 00:06:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC00607.JPG
[2010-11-18 23:48:02 | 000,367,473 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00623.JPG
[2010-11-18 23:47:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC00623.JPG
[2010-11-18 23:08:01 | 001,588,224 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\SteamInstall.msi
[2010-11-08 15:47:01 | 000,000,478 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Fraps.lnk
[2010-11-05 16:37:51 | 001,504,235 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Grabaż i Strachy na Lachy - Dzień dobry_ kocham cię.mp3
[2010-11-05 15:24:21 | 000,046,306 | ---- | C] () -- C:\WINDOWS\System32\ieuinit.inf
[2010-11-05 15:24:15 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010-11-05 15:24:15 | 000,071,460 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2010-11-05 15:24:15 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2010-11-05 15:24:15 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010-11-05 15:24:15 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010-11-05 15:24:15 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010-11-05 15:24:15 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010-11-05 15:24:14 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010-11-05 15:24:14 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010-11-05 15:24:14 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010-11-05 15:24:14 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010-11-05 15:24:14 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010-11-05 15:24:14 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010-11-05 15:24:14 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010-11-05 15:24:14 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010-11-05 15:24:14 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010-11-05 15:24:13 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010-11-05 15:24:13 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2010-11-05 15:24:13 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010-11-05 15:24:13 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010-11-05 15:24:13 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010-11-05 15:24:13 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010-11-05 15:24:13 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010-11-05 15:24:13 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010-11-05 15:24:13 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010-11-05 15:24:13 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010-11-05 15:24:13 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010-11-05 15:24:13 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010-11-05 15:24:13 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010-11-05 15:24:13 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010-11-05 15:24:13 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010-11-05 15:24:13 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010-11-05 15:24:13 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010-11-05 15:24:13 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010-11-05 15:24:13 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010-11-05 15:24:13 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010-11-05 15:24:13 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010-11-05 15:24:13 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010-11-05 15:24:13 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010-11-05 15:24:12 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010-11-05 15:24:12 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010-11-05 15:24:12 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010-11-05 15:24:12 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2010-11-05 15:24:12 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010-11-05 15:24:12 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010-11-05 15:24:12 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2010-11-05 15:24:12 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2010-11-05 15:24:12 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2010-11-05 15:24:12 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2010-11-05 15:24:12 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2010-11-05 15:24:12 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010-11-05 15:24:12 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010-11-05 15:24:12 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2010-11-05 15:24:12 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010-11-05 15:24:12 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2010-11-05 15:24:12 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2010-11-05 15:24:12 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2010-11-05 15:24:12 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2010-11-05 15:24:12 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2010-11-05 15:24:12 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2010-11-05 15:24:12 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2010-11-05 15:24:12 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2010-11-05 15:24:12 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2010-11-05 15:24:12 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010-11-05 15:24:11 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010-11-05 15:24:11 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010-11-05 15:24:11 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010-11-05 15:24:11 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010-11-05 15:24:11 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010-11-05 15:24:11 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010-11-05 15:24:11 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010-11-05 15:24:11 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010-11-05 15:24:11 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010-11-05 15:24:10 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2010-11-05 15:24:10 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010-11-05 15:24:10 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010-11-05 15:24:10 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010-11-05 15:24:10 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010-11-05 15:24:10 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010-11-05 15:24:10 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010-11-05 15:16:53 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010-11-05 15:16:52 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010-11-05 15:16:51 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010-11-05 15:13:09 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010-11-01 11:38:52 | 003,148,518 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Wrzuta.pl - Patrick Jumpen - Gangster.mp3
[2010-10-31 10:08:46 | 000,303,202 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00366.JPG
[2010-10-31 10:08:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC00366.JPG
[2010-10-25 21:22:53 | 001,348,096 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\I Taką Wodą Być.ppt
[2010-10-23 23:53:44 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC04573.JPG
[2010-10-23 01:39:13 | 000,030,136 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\fota.jpg
[2010-10-20 23:12:05 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\SpeedFan.lnk
[2010-10-20 15:17:08 | 000,011,022 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\LM.docx
[2010-10-20 14:52:38 | 000,034,780 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\CV.rtf
[2010-10-18 23:29:56 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\mIRC.lnk
[2010-10-18 21:08:35 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-10-18 20:18:01 | 000,162,304 | ---- | C] () -- C:\WINDOWS\CleanUpUninstall.exe
[2010-10-18 14:23:25 | 000,813,276 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC00606.JPG
[2010-10-15 10:15:33 | 000,046,370 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\]].jpg
[2010-10-15 10:15:29 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\]].jpg
[2010-10-15 10:13:05 | 000,601,991 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC04802.JPG
[2010-10-15 10:13:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC04802.JPG
[2010-10-15 10:08:23 | 000,525,966 | ---- | C] () -- C:\Documents and Settings\CS\Moje dokumenty\DSC04452.JPG
[2010-10-15 10:08:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC04452.JPG
[2010-10-14 14:03:04 | 000,031,515 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\DSC02609.JPG
[2010-10-14 14:03:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\CS\DSC02609.JPG
[2010-10-08 22:26:47 | 000,000,933 | ---- | C] () -- C:\Documents and Settings\CS\Pulpit\Spybot - Search & Destroy.lnk
[2010-09-25 22:08:59 | 000,176,144 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-09-04 20:35:08 | 000,000,009 | ---- | C] () -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\trial.txt
[2010-08-23 15:26:52 | 000,377,014 | ---- | C] () -- C:\WINDOWS\System32\wgapi.dll
[2010-06-07 19:59:32 | 000,010,659 | ---- | C] () -- C:\WINDOWS\hpdj3840.ini
[2010-06-05 20:23:24 | 000,027,136 | ---- | C] () -- C:\WINDOWS\System32\QTUninst.dll
[2010-05-12 22:47:40 | 000,000,110 | ---- | C] () -- C:\WINDOWS\kalkulator.ini
[2010-05-11 20:45:54 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-03-21 18:26:17 | 000,000,048 | ---- | C] () -- C:\WINDOWS\picture2avi.ini
[2010-03-08 20:14:14 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000106.DLL
[2010-02-17 16:34:20 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\CS\Dane aplikacji\PnkBstrK.sys
[2010-01-27 23:40:57 | 000,059,392 | ---- | C] () -- C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-27 00:42:59 | 000,000,040 | ---- | C] () -- C:\WINDOWS\pipeta.INI
[2010-01-10 21:51:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Ultra.dll
[2010-01-01 21:22:54 | 001,867,776 | ---- | C] () -- C:\WINDOWS\python24.dll
[2009-12-29 21:12:10 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\sknc.dll
[2009-12-28 15:35:37 | 000,001,065 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2009-12-22 22:39:56 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-12-22 22:39:55 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009-12-22 22:39:53 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-12-22 22:39:53 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-12-22 22:39:49 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-12-15 21:53:54 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-12-12 22:35:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2009-12-10 22:04:51 | 000,000,400 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2009-12-10 22:04:16 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2009-12-10 21:47:52 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009-12-10 21:43:08 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-12-10 21:31:50 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-12-10 21:12:44 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2009-12-10 21:12:43 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2009-12-10 21:12:42 | 000,000,010 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2009-12-10 21:12:39 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2009-12-10 21:35:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-05-05 12:33:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EarthBrowser
[2010-01-22 21:13:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-08-23 16:46:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-08-27 21:17:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-03 12:55:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-04-05 20:02:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Recisio
[2010-08-05 21:37:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2010-12-01 21:24:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-12-10 21:36:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
[2010-08-23 15:26:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK
[2010-10-20 12:37:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2010-04-17 08:57:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
[2010-09-05 13:44:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2010-09-05 18:26:17 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010-05-29 15:24:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Atari
[2010-12-06 21:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\BitTorrent
[2010-03-16 14:48:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Colasoft MAC Scanner
[2010-02-07 10:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\DAEMON Tools
[2010-02-07 10:04:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\DAEMON Tools Lite
[2010-02-07 10:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\DAEMON Tools Pro
[2010-09-27 21:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\dBpoweramp
[2010-09-02 17:10:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\DC++
[2010-12-06 21:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\DMCache
[2010-05-05 12:33:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\EarthBrowser
[2010-10-26 19:48:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\eSkiMoS R2
[2010-08-23 20:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Gadu-Gadu
[2010-11-22 20:28:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Gadu-Gadu 10
[2010-08-27 10:27:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\GHISLER
[2010-10-27 12:13:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\gtk-2.0
[2010-10-20 23:12:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\IDM
[2010-11-05 13:20:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\ipla
[2010-02-21 11:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Moyea
[2010-08-23 20:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\OpenFM
[2010-01-28 00:15:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Opera
[2010-11-20 18:37:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\QuickScan
[2010-08-25 21:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Stellarium
[2010-08-05 21:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Teleca
[2010-12-01 21:24:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Tibia
[2010-04-13 16:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Tlen.pl
[2010-09-05 18:27:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\TuneUp Software
[2010-03-09 09:21:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CS\Dane aplikacji\Ulead Systems
[2010-12-06 21:53:13 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-12-10 20:58:34 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009-12-26 01:33:58 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-11-22 21:09:01 | 000,000,281 | -HS- | M] () -- C:\boot.ini
[2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr
[2009-12-10 20:58:34 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-04-24 19:50:14 | 000,000,398 | ---- | M] () -- C:\gdi.log
[2010-07-08 22:06:21 | 000,007,452 | ---- | M] () -- C:\hpfr3840.log
[2009-12-10 20:58:34 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2005-11-22 16:41:08 | 000,004,314 | ---- | M] () -- C:\MIR-NFSMW.mds
[2009-12-10 20:58:34 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-09-20 21:25:24 | 000,064,177 | ---- | M] () -- C:\natalia strona.rar
[2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010-11-05 15:16:27 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-12-06 21:52:35 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys
[2010-03-22 17:52:20 | 000,446,976 | ---- | M] () -- C:\sample.avi
[2010-01-04 23:35:50 | 000,117,640 | ---- | M] () -- C:\test.htm
[2006-06-19 22:08:17 | 000,000,054 | ---- | M] () -- C:\ut.bat
[2006-06-22 04:03:22 | 000,000,056 | ---- | M] () -- C:\ut9x.bat


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\AGP440.SYS
[2004-08-04 00:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
[2004-08-04 00:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\ERDNT\cache\AGP440.SYS

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]

RSiT:

[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by CS at 2010-12-06 22:05:44
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 2 GB (7%) free of 30 GB
Total RAM: 511 MB (15% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:06:08, on 2010-12-06
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\TP-LINK\TP-LINK 54M Wireless Client Utility\TWCU.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Steam\Steam.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\CS\Moje dokumenty\Downloads\Programs\OTL.exe
C:\WINDOWS\notepad.exe
C:\WINDOWS\notepad.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\CS\Moje dokumenty\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\CS.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60346
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60346
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
F2 - REG:system.ini: Shell=
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TP-LINK 54M Wireless Client Utility\TWCU.exe" -nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\BitTorrent.exe"
O4 - Startup: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: 20Dollars2Surf.lnk = C:\Program Files\20Dollars2Surf\20dollars2surf.exe
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} (Java Plug-in 1.6.0_21) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{3DA9FB3C-7D7C-42E6-92BD-4F12AF1A82D1}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE6DE9CB-0DB3-49AC-B205-5A0C1776D6E6}: NameServer = 192.168.0.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - Winlogon Notify: LogonInit - logonInit.dll (file missing)
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: TP-LINK Configuration Service (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 8016 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004UA.job
C:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-09-09 173488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-09-15 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-05-12 172032]
"TWCU"=C:\Program Files\TP-LINK\TP-LINK 54M Wireless Client Utility\TWCU.exe [2008-03-26 479412]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-26 98304]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2010-09-07 3118512]
"Google Update"=C:\Documents and Settings\CS\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-10-17 136176]
"Steam"=C:\Program Files\Steam\Steam.exe [2010-12-05 1242448]
"BitTorrent"=C:\Program Files\BitTorrent\BitTorrent.exe [2010-11-22 397176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
C:\Program Files\Ares\Ares.exe -h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
C:\Program Files\BitTorrent\BitTorrent.exe [2010-11-22 397176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10]
C:\Program Files\Gadu-Gadu 10\gg.exe [2010-09-18 12653152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe [2004-05-12 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IPLA!]
C:\Program Files\ipla\ipla.exe [2010-07-07 16222208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe /nosplash /minimized []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe [2010-12-05 1242448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe [2007-10-18 876544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kshi^Menu Start^Programy^Autostart^raw32.dll]
[]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
20Dollars2Surf.lnk - C:\Program Files\20Dollars2Surf\20dollars2surf.exe

C:\Documents and Settings\CS\Menu Start\Programy\Autostart
Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-10-27 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LogonInit]
C:\Program Files\Common Files\logonInit.dll [2010-12-01 27958]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll [2006-06-16 73728]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
:\WINDOWS\system32\srr

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"=""
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"=""
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"=""
"C:\Program Files\DNA\btdna.exe"=""
"C:\WINDOWS\system32\dpvsetup.exe"=""
"C:\Program Files\Sony Ericsson\Update Service\Update Service.exe"=""
"C:\Program Files\BitTorrent\BitTorrent.exe"="C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\steamapps\havamal\counter-strike\hl.exe"="C:\Program Files\Steam\steamapps\havamal\counter-strike\hl.exe:*:Enabled:Counter-Strike"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-12-06 22:05:44 ----D---- C:\rsit
2010-12-05 22:11:32 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ATI
2010-12-05 22:07:52 ----A---- C:\WINDOWS\system32\drivers\AtihdXP3.sys
2010-12-05 22:04:45 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2010-12-05 22:04:45 ----A---- C:\WINDOWS\system32\atitvo32.dll
2010-12-05 22:04:45 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2010-12-05 22:04:45 ----A---- C:\WINDOWS\system32\aticalrt.dll
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\atimpc32.dll
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\aticaldd.dll
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\atibtmon.exe
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2010-12-05 22:04:44 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\atioglxx.dll
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\aticalcl.dll
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2010-12-05 22:04:43 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\ATIODE.exe
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\atikvmag.dll
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2010-12-05 22:04:42 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2010-12-05 08:02:54 ----D---- C:\Program Files\Steam
2010-12-03 10:33:57 ----D---- C:\Program Files\20Dollars2Surf
2010-12-02 11:23:21 ----A---- C:\Program Files\Common Files\userInit.dll
2010-12-01 21:24:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2010-12-01 21:24:25 ----A---- C:\Program Files\Common Files\logonInit.dll
2010-12-01 21:24:03 ----D---- C:\Program Files\ElfBot NG
2010-11-25 15:50:36 ----D---- C:\Program Files\TibiaCam TV Lite
2010-11-23 13:28:25 ----ASH---- C:\pagefile.sys
2010-11-23 00:31:08 ----D---- C:\WINDOWS\cmpnents
2010-11-23 00:10:38 ----A---- C:\WINDOWS\000002_.tmp
2010-11-22 23:43:33 ----A---- C:\WINDOWS\ntbtlog.txt
2010-11-22 21:10:38 ----A---- C:\WINDOWS\system32\udaprop.dll
2010-11-22 21:10:37 ----A---- C:\WINDOWS\system32\drivers\cmuda.sys
2010-11-22 21:10:37 ----A---- C:\WINDOWS\system32\cmuda.dll
2010-11-22 21:10:37 ----A---- C:\WINDOWS\system32\cmirmdrv.exe
2010-11-22 21:10:37 ----A---- C:\WINDOWS\system32\cmirmdrv.dll
2010-11-22 21:10:35 ----A---- C:\WINDOWS\system32\Audio3D.dll
2010-11-22 21:10:31 ----D---- C:\Program Files\C-Media 3D Audio
2010-11-22 21:10:31 ----A---- C:\WINDOWS\CmiRmRedundDir.exe
2010-11-22 21:02:43 ----A---- C:\WINDOWS\Alcmtr.exe
2010-11-22 21:02:41 ----A---- C:\WINDOWS\alcwzrd.exe
2010-11-22 21:02:28 ----A---- C:\WINDOWS\RTHDCPL.exe
2010-11-22 21:02:26 ----A---- C:\WINDOWS\SkyTel.exe
2010-11-22 21:02:25 ----A---- C:\WINDOWS\MicCal.exe
2010-11-22 21:02:24 ----A---- C:\WINDOWS\SoundMan.exe
2010-11-22 21:02:17 ----A---- C:\WINDOWS\RTLCPL.exe
2010-11-22 21:02:16 ----D---- C:\WINDOWS\system32\RTCOM
2010-11-22 21:02:16 ----A---- C:\WINDOWS\RtlUpd.exe
2010-11-22 21:02:15 ----A---- C:\WINDOWS\system32\ChCfg.exe
2010-11-22 21:02:12 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-11-22 21:00:32 ----D---- C:\Program Files\Realtek
2010-11-22 20:59:34 ----A---- C:\WINDOWS\RtlExUpd.dll
2010-11-21 17:16:32 ----A---- C:\WINDOWS\system32\vbuzip10.DLL
2010-11-21 17:16:31 ----A---- C:\WINDOWS\system32\wt_menu.dll
2010-11-21 17:16:31 ----A---- C:\WINDOWS\system32\ssubtmr6.dll
2010-11-21 17:16:30 ----D---- C:\Program Files\Smarty Uninstaller Pro
2010-11-21 16:29:20 ----A---- C:\WINDOWS\000001_.tmp
2010-11-20 18:36:53 ----D---- C:\Documents and Settings\CS\Dane aplikacji\QuickScan
2010-11-08 15:47:00 ----D---- C:\Fraps
2010-11-08 15:37:26 ----D---- C:\Program Files\Game Cam V2
2010-11-08 15:31:23 ----D---- C:\Tmp
2010-11-08 15:30:45 ----D---- C:\Program Files\Taksi

======List of files/folders modified in the last 1 months======

2010-12-06 22:06:08 ----D---- C:\Program Files\Trend Micro
2010-12-06 21:54:35 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-06 21:53:58 ----D---- C:\Documents and Settings\CS\Dane aplikacji\BitTorrent
2010-12-06 21:53:42 ----D---- C:\WINDOWS\temp
2010-12-06 21:53:12 ----D---- C:\Documents and Settings\CS\Dane aplikacji\DMCache
2010-12-06 21:44:40 ----A---- C:\WINDOWS\winamp.ini
2010-12-06 21:25:42 ----D---- C:\WINDOWS\system32\config
2010-12-06 11:54:38 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-12-05 22:10:56 ----D---- C:\WINDOWS
2010-12-05 22:08:45 ----D---- C:\Config.Msi
2010-12-05 22:08:40 ----SHD---- C:\WINDOWS\Installer
2010-12-05 22:08:22 ----D---- C:\Program Files\ATI Technologies
2010-12-05 22:08:09 ----D---- C:\WINDOWS\Prefetch
2010-12-05 22:08:07 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-05 22:08:02 ----D---- C:\WINDOWS\system32\drivers
2010-12-05 22:08:00 ----D---- C:\WINDOWS\system32
2010-12-05 22:07:53 ----HD---- C:\WINDOWS\inf
2010-12-05 22:07:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-12-05 21:59:39 ----A---- C:\WINDOWS\Wininit.ini
2010-12-05 21:57:26 ----A---- C:\WINDOWS\Radeon Omega Drivers v4.8.442 Uninstall Log.txt
2010-12-05 17:33:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-12-05 08:02:54 ----D---- C:\Program Files
2010-12-04 23:44:22 ----D---- C:\WINDOWS\system32\wbem
2010-12-04 23:44:19 ----D---- C:\WINDOWS\Registration
2010-12-02 11:23:21 ----D---- C:\Program Files\Common Files
2010-12-01 21:24:58 ----D---- C:\Documents and Settings\CS\Dane aplikacji\Tibia
2010-11-27 09:53:57 ----D---- C:\Documents and Settings\CS\Dane aplikacji\Identities
2010-11-25 22:37:21 ----D---- C:\Program Files\Asprate
2010-11-25 21:31:52 ----D---- C:\Program Files\Colasoft MAC Scanner 2.2 Pro Demo
2010-11-23 00:58:22 ----SHD---- C:\System Volume Information
2010-11-23 00:32:48 ----D---- C:\WINDOWS\SxsCaPendDel
2010-11-22 21:11:18 ----D---- C:\WINDOWS\system
2010-11-22 21:10:42 ----A---- C:\WINDOWS\CMISETUP.INI
2010-11-22 21:10:41 ----A---- C:\WINDOWS\CMCDPLAY.INI
2010-11-22 21:09:01 ----ASH---- C:\boot.ini
2010-11-22 21:09:01 ----A---- C:\WINDOWS\win.ini
2010-11-22 21:09:01 ----A---- C:\WINDOWS\system.ini
2010-11-22 21:00:31 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-22 20:28:25 ----D---- C:\Documents and Settings\CS\Dane aplikacji\Gadu-Gadu 10
2010-11-21 18:13:17 ----D---- C:\WinFast WorkArea
2010-11-21 17:24:44 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-11-21 17:22:34 ----A---- C:\WINDOWS\imsins.BAK
2010-11-21 17:21:43 ----SD---- C:\WINDOWS\Tasks
2010-11-21 16:29:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-11-20 12:07:29 ----D---- C:\Program Files\Valve
2010-11-08 15:37:35 ----D---- C:\WINDOWS\WinSxS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr magistrali AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-12-10 717296]
R1 atitray;atitray; \??\C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys []
R1 ewido anti-spyware 4.0 driver;ewido anti-spyware 4.0 driver; \??\C:\Program Files\ewido anti-spyware 4.0\guard.sys []
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-03-27 543712]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-10-27 5524480]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2010-08-19 101904]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2010-09-01 27632]
R3 ULCDRHlp;ULCDRHlp; C:\WINDOWS\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WFLR6654;WinFast TV2000 XP Expert (FM1216MK3); C:\WINDOWS\system32\drivers\wfeaglxt.sys [2008-12-25 433792]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2006-11-15 55840]
S3 ac8ny99x;ac8ny99x; C:\WINDOWS\system32\drivers\ac8ny99x.sys []
S3 Bridge;Mostek MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 BridgeMP;Miniport mostka MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-14 71552]
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EL90X;Sterownik karty 3Com EtherLink XL 90X; C:\WINDOWS\system32\DRIVERS\el90xnd5.sys [2001-10-26 153631]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2010-09-01 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2010-09-01 25512]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS []
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;TP-LINK Configuration Service; C:\WINDOWS\system32\acs.exe [2007-02-12 364629]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-10-27 614400]
R2 ewido anti-spyware 4.0 guard;ewido anti-spyware 4.0 guard; C:\Program Files\ewido anti-spyware 4.0\guard.exe [2006-06-16 172032]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-09-15 153376]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2008-06-09 53392]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-05 136176]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

Proszę o pomoc.

Tomek01
komentarz
komentarz

W OTL, w oknie Custom scan/fixes wklej:
[code]:Processes
Explorer.exe

:OTL
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.c...spx?tb_id=60346
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.c...aspx?TbId=60346
MsConfig - StartUpFolder: C:^Documents and Settings^kshi^Menu Start^Programy^Autostart^raw32.dll - - File not found
F2 - REG:system.ini: Shell=

:Files
C:\Program Files\Common Files\logonInit.dll
C:\Program Files\Common Files\userInit.dll
C:\Documents and Settings\kshi\Menu Start\Programy\Autostart\raw32.dll
C:\Documents and Settings\kshi\Menu Start\Programy\Autostart\raw32.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-725345543-682003330-1004UA.job
C:\Documents and Settings\All Users\Dane aplikacji\TEMP
C:\WINDOWS\000002_.tmp
C:\WINDOWS\000001_.tmp

:Reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kshi^Menu Start^Programy^Autostart^raw32.dll]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LogonInit]

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.