chmur0n utworzono 18 grudnia 2010 utworzono 18 grudnia 2010 (edytowane) Czasem ma lekkie zwieszki, gra czasem na sekunde się zatnie mimo bardzo niskich wymagań (a bardzo dobrego sprzętu) Oto logi: RSIT: [log]Logfile of random's system information tool 1.08 (written by random/random) Run by NEQ at 2010-12-18 20:44:37 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 178 GB (71%) free of 250 GB Total RAM: 3327 MB (78% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:44:42, on 2010-12-18 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe C:\Kaspersky Anti-Virus 2011\avp.exe D:\Unlocker\UnlockerAssistant.exe D:\iTunes\iTunesHelper.exe C:\WINDOWS\system32\RunDll32.exe C:\program files\relevantknowledge\rlvknlg.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe C:\WINDOWS\system32\ctfmon.exe D:\Steam\steam.exe D:\EslWire\wire.exe C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Kaspersky Anti-Virus 2011\avp.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wuauclt.exe D:\EslWire\inGame32.exe D:\EslWire\dbus-daemon.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe D:\EslWire\pluginContainer\wire-plugin.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Kaspersky Anti-Virus 2011\klwtblfs.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe C:\WINDOWS\system32\wuauclt.exe D:\Ventrilo\Ventrilo.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\RSIT.exe C:\Program Files\trend micro\NEQ.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe" -r O4 - HKLM\..\Run: [AVP] "C:\Kaspersky Anti-Virus 2011\avp.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "D:\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd O4 - HKLM\..\Run: [RelevantKnowledge] C:\program files\relevantknowledge\rlvknlg.exe -boot O4 - HKLM\..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent O4 - HKCU\..\Run: [ESL Wire] "D:\EslWire\wire.exe" --tray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O20 - AppInit_DLLs: C:\KASPER~1\mzvkbd3.dll O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Usługa Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Kaspersky Anti-Virus 2011\avp.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 7559 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Kaspersky Anti-Virus 2011\ievkbd.dll [2010-07-01 68280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-13 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll [2010-07-01 191160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-12-13 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-08-02 13570048] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-08-02 86016] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-16 16806400] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344] "Six Engine"=C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe [2008-07-23 5625344] "AVP"=C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] "UnlockerAssistant"=D:\Unlocker\UnlockerAssistant.exe [2010-07-04 17408] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888] "iTunesHelper"=D:\iTunes\iTunesHelper.exe [2010-09-24 421160] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "Cm108Sound"=RunDll32 cm108.cpl,CMICtrlWnd [] "RelevantKnowledge"=C:\program files\relevantknowledge\rlvknlg.exe [2010-11-08 2508928] "GammaAdjuster"=C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [2003-02-21 191488] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2009-10-16 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-12 328056] "Steam"=D:\Steam\steam.exe [2010-12-12 1242448] "ESL Wire"=D:\EslWire\wire.exe [2010-12-13 2570752] C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart GIGABYTE Gamer HUD.lnk - C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\KASPER~1\mzvkbd3.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2010-07-01 228024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2009-10-16 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe"="C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component" "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application" "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe"="D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player" "C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "D:\iTunes\iTunes.exe"="D:\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011" "D:\EslWire\wire.exe"="D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "D:\mIRC\mirc.exe"="D:\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary" "C:\Program Files\RelevantKnowledge\rlvknlg.exe"="C:\Program Files\RelevantKnowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe" "C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth" "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe"="D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" ======List of files/folders created in the last 1 months====== 2010-12-18 20:44:37 ----D---- C:\rsit 2010-12-18 20:44:37 ----D---- C:\Program Files\trend micro 2010-12-18 05:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2010-12-17 22:42:59 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Google 2010-12-17 22:41:57 ----D---- C:\Program Files\Google 2010-12-17 19:06:04 ----D---- C:\Program Files\RelevantKnowledge 2010-12-16 17:15:32 ----D---- C:\WINDOWS\pss 2010-12-16 16:48:05 ----A---- C:\WINDOWS\system32\CM108rm.exe 2010-12-16 16:48:05 ----A---- C:\WINDOWS\Cm108.ini.cfl 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cmi108Uninstall.exe 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cm108.ini.cfg 2010-12-16 16:47:35 ----A---- C:\WINDOWS\cm108.ini 2010-12-16 16:47:29 ----D---- C:\Program Files\SteelSeries USB Soundcard v1.20 2010-12-16 16:47:29 ----A---- C:\WINDOWS\system32\drivers\CM108.sys 2010-12-16 16:25:12 ----A---- C:\WINDOWS\system32\hidserv.dll 2010-12-16 16:25:03 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2010-12-16 09:06:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Common Files\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Adobe 2010-12-16 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$ 2010-12-16 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$ 2010-12-16 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$ 2010-12-16 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$ 2010-12-16 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$ 2010-12-16 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$ 2010-12-16 03:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$ 2010-12-15 08:26:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-12-15 08:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-12-14 03:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$ 2010-12-14 03:05:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$ 2010-12-14 03:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$ 2010-12-14 03:05:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$ 2010-12-14 03:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-12-14 03:05:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-12-14 03:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$ 2010-12-14 03:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-12-14 03:04:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$ 2010-12-14 03:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-12-14 03:04:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-12-14 03:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$ 2010-12-14 03:04:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-12-14 03:04:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2010-12-14 03:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-12-14 03:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$ 2010-12-14 03:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-12-14 03:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-12-14 03:04:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$ 2010-12-14 03:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-12-14 03:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-12-14 03:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$ 2010-12-14 03:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$ 2010-12-14 03:03:30 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-12-14 03:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-12-14 03:03:23 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-12-14 03:03:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$ 2010-12-14 03:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-12-14 03:03:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-12-14 03:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-12-14 03:01:10 ----D---- C:\WINDOWS\ie8updates 2010-12-14 03:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-12-14 03:01:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2010-12-14 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-12-14 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$ 2010-12-14 03:00:49 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-12-14 03:00:46 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-12-14 03:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-12-14 03:00:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-12-14 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$ 2010-12-14 03:00:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$ 2010-12-14 03:00:32 ----D---- C:\Program Files\MSXML 4.0 2010-12-14 03:00:26 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-12-14 03:00:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-12-14 03:00:20 ----A---- C:\WINDOWS\imsins.BAK 2010-12-14 03:00:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$ 2010-12-13 18:07:42 ----D---- C:\WINDOWS\Sun 2010-12-13 14:55:05 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire 2010-12-13 14:53:17 ----D---- C:\WINDOWS\system32\appmgmt 2010-12-13 07:51:28 ----D---- C:\Program Files\KONAMI 2010-12-13 07:51:28 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI 2010-12-13 03:03:08 ----N---- C:\WINDOWS\system32\browserchoice.exe 2010-12-13 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-12-13 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-12-13 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-12-13 03:00:28 ----D---- C:\WINDOWS\system32\PreInstall 2010-12-13 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-12-13 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-12-13 03:00:18 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-12-13 00:40:44 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys 2010-12-13 00:40:13 ----D---- C:\Program Files\iPod 2010-12-13 00:40:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2010-12-13 00:39:39 ----D---- C:\Program Files\QuickTime 2010-12-13 00:39:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer 2010-12-13 00:39:28 ----D---- C:\Program Files\Apple Software Update 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\usbaaplrc.dll 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\drivers\usbaapl.sys 2010-12-13 00:38:58 ----D---- C:\Program Files\Common Files\Apple 2010-12-13 00:38:58 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaws.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaw.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\java.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-12-13 00:32:59 ----D---- C:\Program Files\Java 2010-12-13 00:32:16 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Sun 2010-12-13 00:03:26 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo 2010-12-12 23:27:13 ----A---- C:\WINDOWS\system32\drivers\ESLWireACD.sys 2010-12-12 23:26:15 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC 2010-12-12 23:25:03 ----A---- C:\WINDOWS\system32\drivers\ESLvnic.sys 2010-12-12 23:24:57 ----A---- C:\WINDOWS\system32\msonpmon.dll 2010-12-12 23:24:39 ----D---- C:\Program Files\Microsoft Works 2010-12-12 23:24:31 ----D---- C:\Program Files\Common Files\DESIGNER 2010-12-12 23:24:19 ----D---- C:\Program Files\Microsoft.NET 2010-12-12 23:22:49 ----D---- C:\WINDOWS\SHELLNEW 2010-12-12 23:22:36 ----D---- C:\Program Files\Microsoft Office 2010-12-12 23:22:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2010-12-12 23:21:52 ----RHD---- C:\MSOCache 2010-12-12 21:36:09 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-12-12 21:35:53 ----D---- C:\Kaspersky Anti-Virus 2011 2010-12-12 21:35:53 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab 2010-12-12 21:35:44 ----A---- C:\WINDOWS\system32\drivers\klif.sys 2010-12-12 21:09:01 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$ 2010-12-12 21:07:41 ----D---- C:\Program Files\MSBuild 2010-12-12 21:05:55 ----D---- C:\WINDOWS\system32\XPSViewer 2010-12-12 21:05:54 ----D---- C:\WINDOWS\system32\en-us 2010-12-12 21:05:26 ----D---- C:\Program Files\Reference Assemblies 2010-12-12 21:05:02 ----N---- C:\WINDOWS\system32\spmsg2.dll 2010-12-12 21:05:00 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-12-12 21:03:51 ----RSD---- C:\WINDOWS\assembly 2010-12-12 21:03:38 ----D---- C:\WINDOWS\Microsoft.NET 2010-12-12 20:57:25 ----D---- C:\Program Files\SopCast 2010-12-12 20:56:51 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks 2010-12-12 20:56:33 ----D---- C:\Program Files\TVUPlayer 2010-12-12 20:38:19 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP 2010-12-12 20:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$ 2010-12-12 20:28:30 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files 2010-12-12 20:19:33 ----SHD---- C:\RECYCLER 2010-12-12 12:54:42 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2010-12-12 12:54:34 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2010-12-12 12:32:20 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR 2010-12-12 10:26:50 ----A---- C:\WINDOWS\system32\h323log.txt 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\drivers\AsIO.sys 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\AsIO.dll 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp64.sys 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp32.sys 2010-12-12 10:11:33 ----D---- C:\Program Files\ASUS 2010-12-12 10:11:26 ----D---- C:\WINDOWS\system32\Lang 2010-12-12 10:10:06 ----R---- C:\WINDOWS\system32\ChCfg.exe 2010-12-12 10:10:05 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2010-12-12 10:10:03 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2010-12-12 10:10:02 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2010-12-12 10:10:01 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2010-12-12 10:10:00 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2010-12-12 10:09:59 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2010-12-12 10:09:58 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010-12-12 10:09:57 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2010-12-12 10:09:56 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010-12-12 10:09:53 ----D---- C:\WINDOWS\system32\RTCOM 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2010-12-12 10:09:51 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2010-12-12 10:09:49 ----R---- C:\WINDOWS\SoundMan.exe 2010-12-12 10:09:48 ----R---- C:\WINDOWS\SkyTel.exe 2010-12-12 10:09:46 ----R---- C:\WINDOWS\RtlUpd.exe 2010-12-12 10:09:43 ----R---- C:\WINDOWS\RTLCPL.exe 2010-12-12 10:09:40 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.sys 2010-12-12 10:09:33 ----R---- C:\WINDOWS\RTHDCPL.exe 2010-12-12 10:09:30 ----R---- C:\WINDOWS\MicCal.exe 2010-12-12 10:09:21 ----RA---- C:\WINDOWS\system32\drivers\l1e51x86.sys 2010-12-12 10:09:21 ----R---- C:\WINDOWS\Alcmtr.exe 2010-12-12 10:09:20 ----R---- C:\WINDOWS\alcwzrd.exe 2010-12-12 10:09:18 ----D---- C:\Program Files\Realtek 2010-12-12 10:09:16 ----D---- C:\WINDOWS\system32\Atheros_L1e 2010-12-12 10:09:12 ----HD---- C:\Program Files\InstallShield Installation Information 2010-12-12 10:09:07 ----A---- C:\WINDOWS\HideWin.exe 2010-12-12 10:09:06 ----R---- C:\WINDOWS\RtlExUpd.dll 2010-12-12 10:09:01 ----D---- C:\Program Files\Common Files\InstallShield 2010-12-12 10:05:05 ----D---- C:\WINDOWS\system32\drivers\INF 2010-12-12 10:05:04 ----D---- C:\WINDOWS\system32\drivers\system32 2010-12-12 10:04:42 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-12-12 10:04:34 ----RA---- C:\WINDOWS\system32\CSVer.dll 2010-12-12 10:04:34 ----D---- C:\Program Files\Intel 2010-12-12 10:03:11 ----D---- C:\Intel 2010-12-12 09:59:49 ----D---- C:\WINDOWS\ASUSInstAll 2010-12-12 09:55:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec 2010-12-12 09:53:51 ----D---- C:\Program Files\Common Files\Symantec Shared 2010-12-12 09:52:35 ----A---- C:\WINDOWS\Ascd_log.ini 2010-12-12 09:52:15 ----RA---- C:\WINDOWS\system32\drivers\ASACPI.sys 2010-12-12 09:52:01 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2010-12-12 09:52:01 ----A---- C:\WINDOWS\Ascd_tmp.ini 2010-12-12 09:50:45 ----D---- C:\Program Files\GIGABYTE 2010-12-12 09:50:13 ----D---- C:\WINDOWS\system32\AGEIA 2010-12-12 09:50:13 ----D---- C:\Program Files\AGEIA Technologies 2010-12-12 09:49:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-12-12 09:48:30 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:46:41 ----D---- C:\WINDOWS\nview 2010-12-12 09:46:41 ----A---- C:\WINDOWS\system32\nvudisp.exe 2010-12-12 09:46:10 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2010-12-12 09:45:33 ----A---- C:\WINDOWS\system32\hpf3l70v.dll 2010-12-12 09:43:26 ----D---- C:\Program Files\Common Files\HP 2010-12-12 09:43:22 ----D---- C:\Program Files\Common Files\Hewlett-Packard 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hppldcoi.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposwia_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hpost_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposc_d02a.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\difxapi.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\hpzids01.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZius12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZipr12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZid412.sys 2010-12-12 09:43:17 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-12-12 09:43:13 ----D---- C:\Program Files\HP 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2010-12-12 09:43:11 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2010-12-12 09:43:03 ----HD---- C:\Config.Msi 2010-12-12 09:42:13 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:42:02 ----D---- C:\Program Files\Gadu-Gadu 10 2010-12-12 09:41:22 ----D---- C:\Program Files\WinRAR 2010-12-12 09:41:03 ----D---- C:\Program Files\uTorrent 2010-12-12 09:40:50 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent 2010-12-12 09:40:31 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla 2010-12-12 09:40:27 ----D---- C:\Program Files\Mozilla Firefox 2010-12-12 09:36:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Identities 2010-12-12 09:36:36 ----HD---- C:\Program Files\Uninstall Information 2010-12-12 09:36:34 ----ASH---- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini 2010-12-12 09:36:33 ----SD---- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft 2010-12-12 09:35:57 ----D---- C:\WINDOWS\SoftwareDistribution 2010-12-12 09:35:56 ----SD---- C:\WINDOWS\system32\Microsoft 2010-12-12 09:35:56 ----D---- C:\WINDOWS\Prefetch 2010-12-12 09:35:55 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-12-12 09:31:54 ----D---- C:\WINDOWS\system32\xircom 2010-12-12 09:31:54 ----D---- C:\Program Files\xerox 2010-12-12 09:31:54 ----D---- C:\Program Files\microsoft frontpage 2010-12-12 09:31:21 ----HD---- C:\WINDOWS\$hf_mig$ 2010-12-12 09:31:18 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-12-12 09:31:10 ----RASH---- C:\MSDOS.SYS 2010-12-12 09:31:10 ----RASH---- C:\IO.SYS 2010-12-12 09:31:10 ----A---- C:\WINDOWS\control.ini 2010-12-12 09:31:10 ----A---- C:\CONFIG.SYS 2010-12-12 09:31:10 ----A---- C:\AUTOEXEC.BAT 2010-12-12 09:30:58 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-12-12 09:30:28 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-12-12 09:30:26 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-12-12 09:30:23 ----HD---- C:\Program Files\WindowsUpdate 2010-12-12 09:30:20 ----D---- C:\Program Files\Usługi online 2010-12-12 09:30:07 ----D---- C:\WINDOWS\system32\DirectX 2010-12-12 09:30:00 ----A---- C:\WINDOWS\system32\atrace.dll 2010-12-12 09:29:58 ----A---- C:\WINDOWS\system32\desktop.ini 2010-12-12 09:29:58 ----A---- C:\WINDOWS\desktop.ini 2010-12-12 09:29:52 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-12-12 09:29:50 ----D---- C:\Program Files\Common Files\Services 2010-12-12 09:29:50 ----A---- C:\WINDOWS\system32\acctres.dll 2010-12-12 09:29:47 ----SD---- C:\WINDOWS\Tasks 2010-12-12 09:29:47 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-12-12 09:29:46 ----D---- C:\Program Files\Common Files\MSSoap 2010-12-12 09:29:40 ----D---- C:\WINDOWS\srchasst 2010-12-12 09:29:39 ----D---- C:\WINDOWS\system32\Macromed 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wups.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-12-12 09:29:36 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-12-12 09:29:33 ----D---- C:\Program Files\Movie Maker 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-12-12 09:29:13 ----D---- C:\WINDOWS\system32\Restore 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srclient.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\ils.dll 2010-12-12 09:29:11 ----A---- C:\WINDOWS\system32\msconf.dll 2010-12-12 09:29:09 ----D---- C:\Program Files\NetMeeting 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-12-12 09:29:08 ----A---- C:\WINDOWS\system32\inetres.dll 2010-12-12 09:29:07 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-12-12 09:29:06 ----D---- C:\Program Files\Outlook Express 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstask.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\isign32.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-12-12 09:29:00 ----D---- C:\Program Files\Common Files\System 2010-12-12 09:28:59 ----D---- C:\Program Files\Internet Explorer 2010-12-12 09:28:34 ----D---- C:\Program Files\ComPlus Applications 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vbaddin.ini 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vb.ini 2010-12-12 09:28:29 ----D---- C:\WINDOWS\Registration 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Player 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Connect 2 2010-12-12 09:28:13 ----D---- C:\Program Files\Messenger 2010-12-12 09:28:10 ----D---- C:\Program Files\MSN Gaming Zone 2010-12-12 09:28:10 ----A---- C:\WINDOWS\system32\write.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\hticons.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avwav.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-12-12 09:28:01 ----A---- C:\WINDOWS\system32\winchat.exe 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\getuname.dll 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\charmap.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\winmine.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\sol.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\calc.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tskill.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\shadow.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\reset.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\freecell.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\regini.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msg.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\logoff.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-12-12 09:27:47 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-12-12 09:27:45 ----D---- C:\Program Files\Windows NT 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\spider.exe 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tsgqec.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\aaclient.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-12-12 09:27:41 ----D---- C:\WINDOWS\system32\MsDtc 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-12-12 09:27:38 ----D---- C:\WINDOWS\system32\Com 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\stclient.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\colbact.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comuid.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-12-12 09:27:32 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys 2010-12-12 05:06:14 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2010-12-12 05:05:33 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2010-12-12 05:04:47 ----A---- C:\WINDOWS\system32\usbui.dll 2010-12-12 05:03:59 ----SHD---- C:\WINDOWS\Installer 2010-12-12 05:03:59 ----D---- C:\Program Files\Common Files\ODBC 2010-12-12 05:03:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-12-12 05:03:59 ----A---- C:\WINDOWS\ODBCINST.INI 2010-12-12 05:03:56 ----RD---- C:\Program Files 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\SpeechEngines 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\irclass.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-12-12 05:03:36 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2010-12-12 05:03:36 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\storprop.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\batt.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-12-12 05:03:29 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot2 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot 2010-12-12 05:01:56 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-12-12 05:01:39 ----SHD---- C:\System Volume Information 2010-12-12 05:01:39 ----D---- C:\Documents and Settings 2010-12-12 05:00:37 ----SH---- C:\boot.ini 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Offline Web Pages 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-12-12 04:57:41 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-12-12 04:57:41 ----RSD---- C:\WINDOWS\Fonts 2010-12-12 04:57:41 ----RD---- C:\WINDOWS\Web 2010-12-12 04:57:41 ----HD---- C:\WINDOWS\inf 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WinSxS 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WBEM 2010-12-12 04:57:41 ----D---- C:\WINDOWS\twain_32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Temp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wins 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wbem 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\usmt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\spool 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ShellExt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\Setup 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ras 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl-pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\oobe 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\npp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\inetsrv 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\IME 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\icsxml 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ias 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\export 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\etc 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\disdn 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\dhcp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3com_dmi 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3076 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\2052 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1054 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1045 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1042 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1041 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1037 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1033 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1031 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1028 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1025 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system 2010-12-12 04:57:41 ----D---- C:\WINDOWS\security 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Resources 2010-12-12 04:57:41 ----D---- C:\WINDOWS\repair 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Provisioning 2010-12-12 04:57:41 ----D---- C:\WINDOWS\PeerNet 2010-12-12 04:57:41 ----D---- C:\WINDOWS\pchealth 2010-12-12 04:57:41 ----D---- C:\WINDOWS\NLDRV 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Network Diagnostic 2010-12-12 04:57:41 ----D---- C:\WINDOWS\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msapps 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msagent 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Media 2010-12-12 04:57:41 ----D---- C:\WINDOWS\L2Schemas 2010-12-12 04:57:41 ----D---- C:\WINDOWS\java 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ime 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Help 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ehome 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Driver Cache 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Debug 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Cursors 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Connection Wizard 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\AppPatch 2010-12-12 04:57:41 ----D---- C:\WINDOWS\addins 2010-12-12 04:57:41 ----D---- C:\WINDOWS 2010-12-12 04:57:41 ----ASH---- C:\pagefile.sys ======List of files/folders modified in the last 1 months====== 2010-12-12 09:31:08 ----A---- C:\WINDOWS\win.ini 2010-12-12 09:30:51 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2010-12-12 05:03:55 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 KL1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2010-06-09 132184] R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2009-10-16 40448] R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2010-06-09 11352] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-12-12 475736] R2 ESLWireAC;ESLWireAC; \??\C:\WINDOWS\system32\drivers\ESLWireACD.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2009-10-16 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2009-10-16 10368] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-16 4747776] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472] R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-06-25 36864] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-10-16 12160] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-08-02 6121856] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 USBPNPA;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2009-12-22 1511936] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-10-16 62336] S0 Si3114r5;Si3114r5; C:\WINDOWS\system32\drivers\Si3114r5.sys [2009-10-16 195072] S0 Si3124;Si3124; C:\WINDOWS\system32\drivers\Si3124.sys [2009-10-16 69248] S0 Si3132;Si3132; C:\WINDOWS\system32\drivers\Si3132.sys [2009-10-16 74672] S0 Si3132r5;Si3132r5; C:\WINDOWS\system32\drivers\Si3132r5.sys [2009-10-16 215856] S0 Si3531;Si3531; C:\WINDOWS\system32\drivers\Si3531.sys [2009-10-16 212520] S3 ESLvnic1;ESLvnic Virtual Network 32 Bit; C:\WINDOWS\system32\DRIVERS\ESLvnic.sys [2010-08-12 24504] S3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2010-05-07 32856] S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2009-10-16 26368] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-10-16 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-10-16 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672] R2 AVP;Usługa Kaspersky Anti-Virus; C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-12-13 153376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-08-02 163908] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-09-24 820008] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-17 136176] S3 aspnet_state;„Usługa stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2009-10-16 14336] S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log] info.txt [log]info.txt logfile of random's system information tool 1.08 2010-12-18 20:44:45 ======Uninstall list====== -->MsiExec /X{699BAC7F-DC10-4709-97D8-45379301BBE7} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL 32 Bit HP CIO Components Installer-->MsiExec.exe /I{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin Adobe Reader 9.4.0 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001} AIMP2-->D:\AIMP2\Uninstall.exe Aktualizacja dla systemu Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe" Apple Application Support-->MsiExec.exe /I{DAEAFD68-BB4A-4507-A241-C8804D2EA66D} Apple Mobile Device Support-->MsiExec.exe /I{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887} Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39EF732F19B1} Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver-->"C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\Setup.exe" -runfromtemp -l0x0009 -removeonly CCleaner-->"D:\CCleaner\uninst.exe" Counter-Strike-->"D:\Steam\steam.exe" steam://uninstall/10 CWK (Czasowy Wyłącznik Komputera)-->"D:\CWK\CWK.exe" /uninstall Dark Messiah Might and Magic Multi-Player-->"D:\Steam\steam.exe" steam://uninstall/2130 EPU-4 Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}\setup.exe" -l0x9 ESL Wire 1.9.1-->"D:\EslWire\unins000.exe" Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe Gamer HUD-->MsiExec.exe /I{84FB24B0-9973-4370-B107-7C38DDF20ABC} Google Earth-->MsiExec.exe /X{C768790F-04FB-11E0-9B2C-001AA037B01E} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" HP Deskjet F2400 All-in-One Driver 14.0 Rel. 6-->C:\Program Files\HP\Digital Imaging\{819CA3BC-2FF8-4811-B42F-421F7BFD3559}\setup\hpzscr01.exe -datfile hposcr44.dat -onestop -forcereboot iTunes-->MsiExec.exe /I{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4} Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF} Kaspersky Anti-Virus 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347} Kaspersky Anti-Virus 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347} LiveUpdate (Symantec Corporation)-->MsiExec.exe /x {E80F62FF-5D3C-4A19-8409-9721F2928206} /l*v "C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate" Microsoft .NET Framework 2.0 — pakiet języka polskiego-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - PLK\install.exe Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Polish Language Pack-->MsiExec.exe /X{FD593DE6-C3A0-4722-8E86-9DEEF0A93290} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE} Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE} Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE} Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE} Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE} Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} mIRC-->D:\mIRC\uninstall.exe _?=D:\mIRC Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Mp3 Knife 3.2-->"D:\Mp3 Knife\unins000.exe" MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08} NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI NVIDIA PhysX v8.08.01-->MsiExec.exe /X{699BAC7F-DC10-4709-97D8-45379301BBE7} Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 Polish Language Pack\setup.exe Poprawka dla systemu Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB942288-v3)-->"C:\WINDOWS\$NtUninstallKB942288-v3$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe" Pro Evolution Soccer 2011-->MsiExec.exe /X{9773450C-E2F3-46C3-9464-1D7EDE5EFB63} QuickTime-->MsiExec.exe /I{E7004147-2CCA-431C-AA05-2AB166B9785D} Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x15 -removeonly RelevantKnowledge-->C:\program files\relevantknowledge\rlvknlg.exe -bootremove -uninst:RelevantKnowledge Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT="" SopCast 3.2.9-->C:\Program Files\SopCast\uninst.exe Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} SteelSeries USB Soundcard v1.20-->C:\WINDOWS\Cmi108Uninstall.exe C:\Program Files\SteelSeries USB Soundcard v1.20#USB PnP Sound Device#SteelSeries USB Soundcard v1.20# TVUPlayer 2.5.3.1-->C:\Program Files\TVUPlayer\uninst.exe Unlocker 1.9.0-->D:\Unlocker\uninst.exe Ventrilo-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F} Windows Presentation Foundation Language Pack (PLK)-->MsiExec.exe /X{2D43FD89-B225-4334-B4AA-0983400BE61B} Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840} Windows Workflow Foundation PL Language Pack-->MsiExec.exe /I{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C} XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" ======System event log====== Computer Name: NEQ-FBF2E6E4BA3 Event Code: 15007 Message: Pomyślnie dodano rezerwację przestrzeni nazw, identyfikowaną przez prefiks adresu URL http://*:2869/. Record Number: 5 Source Name: HTTP Time Written: 20101212093022.000000+060 Event Type: informacje User: Computer Name: NEQ-FBF2E6E4BA3 Event Code: 6011 Message: Nazwa NetBIOS i nazwa hosta DNS tego komputera uległy zmianie z MACHINENAME na NEQ-FBF2E6E4BA3. Record Number: 4 Source Name: EventLog Time Written: 20101212092656.000000+060 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 2 Message: Podczas sprawdzania, czy \Device\Serial0 jest rzeczywiście portem szeregowym, wykryto kolejkę typu fifo. Zostanie ona użyta. Record Number: 3 Source Name: Serial Time Written: 20101212050206.000000+060 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 2 Source Name: EventLog Time Written: 20101212050144.000000+060 Event Type: informacje User: Computer Name: MACHINENAME Event Code: 6009 Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 3 Multiprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20101212050144.000000+060 Event Type: informacje User: =====Application event log===== Computer Name: NEQ-FBF2E6E4BA3 Event Code: 1000 Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 5 Source Name: LoadPerf Time Written: 20101212092826.000000+060 Event Type: informacje User: Computer Name: NEQ-FBF2E6E4BA3 Event Code: 1000 Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 4 Source Name: LoadPerf Time Written: 20101212092824.000000+060 Event Type: informacje User: Computer Name: NEQ-FBF2E6E4BA3 Event Code: 1000 Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 3 Source Name: LoadPerf Time Written: 20101212092724.000000+060 Event Type: informacje User: Computer Name: NEQ-FBF2E6E4BA3 Event Code: 1000 Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 2 Source Name: LoadPerf Time Written: 20101212092705.000000+060 Event Type: informacje User: Computer Name: NEQ-FBF2E6E4BA3 Event Code: 1000 Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 1 Source Name: LoadPerf Time Written: 20101212092704.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel "PROCESSOR_REVISION"=170a "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "asl.log"=Destination=file "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF----------------- [/log] OTL.txt [log]OTL logfile created on: 2010-12-18 21:00:52 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 61,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 76,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 174,24 Gb Free Space | 71,37% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,46 Gb Free Space | 97,68% Space Free | Partition Type: NTFS Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-12-14 08:04:03 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-12-13 13:39:46 | 002,570,752 | ---- | M] (Turtle Entertainment GmbH) -- D:\EslWire\wire.exe PRC - [2010-12-13 00:33:01 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\avp.exe PRC - [2010-12-12 22:16:13 | 001,242,448 | ---- | M] (Valve Corporation) -- D:\Steam\Steam.exe PRC - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe PRC - [2010-12-08 11:53:26 | 000,136,192 | ---- | M] () -- D:\EslWire\pluginContainer\wire-plugin.exe PRC - [2010-12-08 11:53:20 | 000,388,096 | ---- | M] () -- D:\EslWire\dbus-daemon.exe PRC - [2010-12-08 11:53:20 | 000,024,480 | ---- | M] () -- D:\EslWire\inGame32.exe PRC - [2010-11-08 20:37:25 | 002,508,928 | ---- | M] (TMRG, Inc.) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe PRC - [2010-09-24 02:10:52 | 000,421,160 | ---- | M] (Apple Inc.) -- D:\iTunes\iTunesHelper.exe PRC - [2010-09-24 02:10:42 | 000,820,008 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010-07-04 20:51:26 | 000,017,408 | ---- | M] () -- D:\Unlocker\UnlockerAssistant.exe PRC - [2010-07-01 21:34:46 | 000,129,720 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\klwtblfs.exe PRC - [2009-10-16 18:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-10-16 18:45:00 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2009-10-16 18:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2009-10-16 18:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-10-16 18:45:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmplayer.exe PRC - [2009-10-16 18:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2009-10-16 18:45:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2009-10-16 18:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2009-10-16 18:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe PRC - [2009-10-16 18:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2009-10-16 18:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2009-10-16 18:45:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2008-08-02 05:20:00 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2008-07-23 17:04:20 | 005,625,344 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe PRC - [2008-07-16 12:14:00 | 016,806,400 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2008-06-26 15:49:44 | 001,940,992 | ---- | M] () -- C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe PRC - [2003-12-22 15:36:14 | 000,561,152 | ---- | M] () -- D:\Ventrilo\Ventrilo.exe PRC - [2003-02-21 11:46:58 | 000,191,488 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe MOD - [2010-12-08 11:53:20 | 000,447,904 | ---- | M] () -- D:\EslWire\inGame32.dll MOD - [2010-11-08 20:37:22 | 000,541,312 | ---- | M] (TMRG, Inc.) -- C:\Program Files\RelevantKnowledge\rlls.dll MOD - [2010-11-06 01:25:04 | 001,211,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll MOD - [2010-11-06 01:25:04 | 000,919,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll MOD - [2010-11-06 01:25:03 | 001,992,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:43:34 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-27 07:29:09 | 008,492,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2010-07-04 22:32:36 | 000,004,608 | ---- | M] () -- D:\Unlocker\UnlockerHook.dll MOD - [2010-06-30 13:25:00 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-10-16 18:45:00 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-10-16 18:45:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-10-16 18:45:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-10-16 18:45:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2009-10-16 18:45:00 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-10-16 18:45:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-10-16 18:45:00 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll MOD - [2009-10-16 18:45:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-10-16 18:45:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2009-10-16 18:45:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2009-10-16 18:45:00 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll MOD - [2009-10-16 18:45:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2009-10-16 18:45:00 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll MOD - [2009-10-16 18:45:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2009-10-16 18:45:00 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-10-16 18:45:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-10-16 18:45:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-10-16 18:45:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2009-10-16 18:45:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2009-10-16 18:45:00 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll MOD - [2009-10-16 18:45:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2009-10-16 18:45:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2009-10-16 18:45:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2009-10-16 18:45:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2009-10-16 18:45:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2009-10-16 18:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-10-16 18:45:00 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll MOD - [2009-10-16 18:45:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-10-16 18:45:00 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll MOD - [2009-10-16 18:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2009-10-16 18:45:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2009-10-16 18:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Kaspersky Anti-Virus 2011\avp.exe -- (AVP) SRV - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\SymIM.sys -- (SymIM) DRV - [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF) DRV - [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ESLWireACD.sys -- (ESLWireAC) DRV - [2010-08-12 14:10:00 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1) DRV - [2010-06-09 17:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2) DRV - [2010-06-09 17:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1) DRV - [2010-05-07 12:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5) DRV - [2009-12-22 01:53:00 | 001,511,936 | ---- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CM108.sys -- (USBPNPA) DRV - [2009-11-02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt) DRV - [2009-10-16 18:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-10-16 18:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531) DRV - [2009-10-16 18:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-10-16 18:45:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2009-10-16 18:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-10-16 18:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-10-16 18:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2008-08-02 05:20:00 | 006,121,856 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-07-16 11:52:00 | 004,747,776 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-06-25 17:47:00 | 000,036,864 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e) DRV - [2008-04-13 22:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2007-12-17 10:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-220523388-1425521274-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 3 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.2 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-14 08:24:43 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-16 09:06:33 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Kaspersky Anti-Virus 2011\THBExt [2010-12-12 21:36:06 | 000,000,000 | ---D | M] [2010-12-12 09:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Extensions [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions [2010-12-12 21:43:51 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-12-12 20:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\firefox@tvunetworks.com [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2010-10-08 14:03:06 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-09-13 16:29:30 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll [2010-07-12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010-12-14 08:04:07 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-12-14 08:04:07 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-12-14 08:04:07 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-12-14 08:04:07 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-12-14 08:04:07 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-12-14 08:04:07 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-10-16 18:45:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVP] C:\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [Cm108Sound] File not found O4 - HKLM..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [RelevantKnowledge] C:\program files\relevantknowledge\rlvknlg.exe (TMRG, Inc.) O4 - HKLM..\Run: [Six Engine] C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe () O4 - HKLM..\Run: [UnlockerAssistant] D:\Unlocker\UnlockerAssistant.exe () O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [ESL Wire] D:\EslWire\wire.exe (Turtle Entertainment GmbH) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [Steam] D:\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 217.30.129.149 217.30.137.200 O20 - AppInit_DLLs: (C:\KASPER~1\mzvkbd3.dll) - C:\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\rsit [2010-12-17 23:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:42:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Google [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Temp [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 19:06:04 | 000,000,000 | ---D | C] -- C:\Program Files\RelevantKnowledge [2010-12-16 21:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\ESL Match Media [2010-12-16 17:15:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-12-16 16:48:05 | 008,146,944 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM108.cpl [2010-12-16 16:48:05 | 000,294,912 | ---- | C] (C-Media) -- C:\WINDOWS\System32\CM108rm.exe [2010-12-16 16:47:37 | 000,307,200 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi108Uninstall.exe [2010-12-16 16:47:29 | 001,511,936 | ---- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM108.sys [2010-12-16 16:47:29 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr108.dll [2010-12-16 16:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\SteelSeries USB Soundcard v1.20 [2010-12-16 09:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-12-16 09:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Adobe [2010-12-15 02:54:24 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\PrivacIE [2010-12-14 03:01:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-12-14 03:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010-12-13 18:07:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-12-13 14:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-13 14:54:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Recent [2010-12-13 14:53:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-12-13 07:56:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 03:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-12-13 00:40:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer [2010-12-13 00:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2010-12-13 00:40:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-13 00:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010-12-13 00:39:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-12-13 00:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple [2010-12-13 00:39:28 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple [2010-12-13 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-12-13 00:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Sun [2010-12-13 00:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo [2010-12-12 23:27:13 | 000,841,912 | ---- | C] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [2010-12-12 23:26:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC [2010-12-12 23:25:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\ESL Wire Game Client [2010-12-12 23:25:03 | 000,024,504 | ---- | C] (Turtle Entertainment GmbH) -- C:\WINDOWS\System32\drivers\ESLvnic.sys [2010-12-12 23:24:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-12-12 23:24:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-12-12 23:24:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2010-12-12 23:22:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-12-12 23:22:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-12-12 23:22:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-12-12 23:22:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-12-12 23:21:52 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010-12-12 23:12:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Gry [2010-12-12 21:36:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Kaspersky Anti-Virus 2011 [2010-12-12 21:35:44 | 000,475,736 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 21:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-12-12 21:05:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010-12-12 21:05:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2010-12-12 21:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-12-12 21:03:51 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010-12-12 21:03:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010-12-12 20:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\LocalLow [2010-12-12 20:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\LocalLow [2010-12-12 20:56:33 | 000,000,000 | ---D | C] -- C:\Program Files\TVUPlayer [2010-12-12 20:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 20:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-12-12 20:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje wideo [2010-12-12 20:30:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Muzyka [2010-12-12 20:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Programy [2010-12-12 20:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-12-12 20:25:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\chmur0n [2010-12-12 20:22:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Pobieranie [2010-12-12 20:19:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-12-12 12:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\cache [2010-12-12 12:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\PES 2011 Patch 0.1 [2010-12-12 12:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\pes [2010-12-12 12:32:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR [2010-12-12 10:24:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Downloads [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe [2010-12-12 10:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS [2010-12-12 10:11:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-12-12 10:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-12-12 10:09:21 | 000,036,864 | R--- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\l1e51x86.sys [2010-12-12 10:09:20 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-12-12 10:09:18 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-12-12 10:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Atheros_L1e [2010-12-12 10:09:12 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-12-12 10:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\INF [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32\DRIVERS [2010-12-12 10:05:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32 [2010-12-12 10:04:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-12-12 10:04:34 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll [2010-12-12 10:04:34 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2010-12-12 10:03:11 | 000,000,000 | ---D | C] -- C:\Intel [2010-12-12 09:59:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ASUSInstAll [2010-12-12 09:55:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec [2010-12-12 09:53:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2010-12-12 09:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-12-12 09:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-12-12 09:48:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-12-12 09:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-12-12 09:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-12-12 09:43:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-12-12 09:43:13 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010-12-12 09:43:03 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2010-12-12 09:42:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:42:02 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-12-12 09:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-12-12 09:41:03 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010-12-12 09:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla [2010-12-12 09:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-12-12 09:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Identities [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje obrazy [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moja muzyka [2010-12-12 09:36:36 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\SendTo [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Ulubione [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Menu Start [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\IETldCache [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\Cookies [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Szablony [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\PrintHood [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\NetHood [2010-12-12 09:36:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit [2010-12-12 09:35:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-12-12 09:35:56 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-12-12 09:35:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-12-12 09:32:44 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-12-12 09:32:07 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-12-12 09:31:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-12-12 09:30:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-12-12 09:30:23 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-12-12 09:30:20 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-12-12 09:30:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-12-12 09:29:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-12-12 09:29:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-12-12 09:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-12-12 09:29:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-12-12 09:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-12-12 09:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-12-12 09:29:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-12-12 09:29:09 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-12-12 09:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-12-12 09:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-12-12 09:28:59 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-12-12 09:28:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-12-12 09:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-12-12 09:28:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-12-12 09:28:13 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-12-12 09:28:10 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-12-12 09:27:46 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-12-12 09:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-12-12 09:27:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-12-12 09:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-12-12 09:27:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-12-12 05:04:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-12-12 05:03:59 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-12-12 05:03:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-12-12 05:03:56 | 000,000,000 | R--D | C] -- C:\Program Files [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-12-12 05:03:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-12-12 05:01:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-12-12 05:01:56 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-12-12 05:01:39 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-12-12 05:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-12-12 04:57:41 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-12-12 04:57:41 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-12-12 04:57:41 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-12-12 04:57:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-12-18 20:52:52 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-18 20:47:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-18 20:39:55 | 000,198,703 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-18 20:39:53 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-18 20:39:52 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-18 20:39:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-12-18 20:20:34 | 000,008,372 | ---- | M] () -- C:\WINDOWS\System\Cm108.ini [2010-12-18 05:01:45 | 001,572,864 | -H-- | M] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-18 05:00:37 | 001,043,322 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-18 05:00:37 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-12-18 05:00:37 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-12-18 05:00:37 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-12-18 05:00:37 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-12-17 18:26:28 | 000,029,608 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-17 08:03:20 | 000,156,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-17 07:49:39 | 006,380,844 | -H-- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-17 01:18:41 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-16 16:48:05 | 000,000,062 | ---- | M] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 09:23:25 | 000,015,526 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word (2).docx [2010-12-16 09:06:34 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-12-16 08:35:26 | 059,326,105 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\Krzysztof Chyla - Zbiór prostych zadań z fizyki.pdf [2010-12-16 03:00:58 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-12-15 21:38:48 | 000,215,317 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-13 14:53:56 | 000,005,710 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:21:39 | 000,013,614 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 22:45:09 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 22:45:09 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 10:26:01 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:50 | 000,030,543 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 10:11:30 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | M] () -- C:\WINDOWS\setup.iss [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:55:03 | 000,010,563 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:55:03 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:14 | 000,030,151 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:50:45 | 000,001,803 | ---- | M] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:45:57 | 000,142,957 | ---- | M] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:40:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:36:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-12-12 09:33:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-12-12 09:31:10 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:08 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010-12-12 09:31:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:58 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:28:41 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-12-12 09:26:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-12-12 05:03:55 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-12-17 22:42:01 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-17 22:42:00 | 000,001,026 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-16 16:48:05 | 000,008,372 | ---- | C] () -- C:\WINDOWS\System\Cm108.ini [2010-12-16 16:48:05 | 000,000,062 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 16:47:37 | 000,129,656 | ---- | C] () -- C:\WINDOWS\jack.bmp [2010-12-16 16:47:37 | 000,000,939 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfg [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\tray.ico [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\control.ico [2010-12-16 16:47:35 | 000,001,318 | ---- | C] () -- C:\WINDOWS\cm108.ini [2010-12-16 09:06:34 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-12-16 08:30:57 | 059,326,105 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\Krzysztof Chyla - Zbiór prostych zadań z fizyki.pdf [2010-12-16 08:00:02 | 000,015,526 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word (2).docx [2010-12-15 21:38:18 | 000,215,317 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-14 03:00:20 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-12-13 15:27:50 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-13 14:53:53 | 000,005,710 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:02:17 | 000,013,614 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 21:36:30 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 21:36:30 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 20:56:51 | 000,029,608 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-12 10:26:01 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:40 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010-12-12 10:11:40 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010-12-12 10:11:34 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2010-12-12 10:11:34 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2010-12-12 10:11:30 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | C] () -- C:\WINDOWS\setup.iss [2010-12-12 10:10:08 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss [2010-12-12 10:10:06 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:54:09 | 000,010,563 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:54:09 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:35 | 000,030,543 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 09:52:15 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010-12-12 09:52:01 | 000,030,151 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:52:01 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-12-12 09:50:45 | 000,001,803 | ---- | C] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:47:30 | 006,380,844 | -H-- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-12 09:47:20 | 000,198,703 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-12 09:46:41 | 000,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-12-12 09:42:46 | 000,142,957 | ---- | C] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:42:46 | 000,000,512 | ---- | C] () -- C:\WINDOWS\hpomdl44.dat [2010-12-12 09:42:46 | 000,000,333 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-12-12 09:40:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:39:49 | 000,000,080 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\FASTWiz.log [2010-12-12 09:36:34 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\NEQ\ntuser.dat.LOG [2010-12-12 09:36:34 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-12 09:36:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini [2010-12-12 09:36:33 | 001,572,864 | -H-- | C] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-12 09:35:56 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-12 09:33:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-12-12 09:32:55 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-12-12 09:32:41 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-12-12 09:32:30 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-12-12 09:32:30 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-12-12 09:32:27 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-12-12 09:32:27 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-12-12 09:32:26 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-12-12 09:32:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-12-12 09:32:16 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-12-12 09:32:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-12-12 09:32:08 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-12-12 09:32:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-12-12 09:32:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-12-12 09:32:06 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-12-12 09:32:06 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-12-12 09:32:06 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-12-12 09:32:05 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-12-12 09:32:05 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-12-12 09:32:05 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-12-12 09:32:05 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-12-12 09:32:05 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-12-12 09:32:04 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-12-12 09:32:04 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-12-12 09:32:04 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-12-12 09:32:04 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-12-12 09:31:10 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:05 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:30:13 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-12-12 09:29:52 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-12-12 09:29:15 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-12-12 09:28:41 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-12-12 09:27:57 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-12-12 09:27:57 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-12-12 09:27:57 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-12-12 09:27:57 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-12-12 09:27:57 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-12-12 09:27:56 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-12-12 09:27:56 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-12-12 09:27:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-12-12 09:27:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-12-12 09:27:56 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-12-12 09:27:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-12-12 09:27:56 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-12-12 09:27:55 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-12-12 09:27:55 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-12-12 09:27:55 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-12-12 09:27:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-12-12 09:27:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-12-12 09:27:55 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-12-12 09:27:55 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-12-12 09:27:53 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-12-12 09:27:53 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-12-12 09:27:53 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-12-12 09:27:52 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-12-12 09:27:52 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-12-12 09:27:47 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-12-12 05:03:59 | 001,043,322 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-12 05:03:59 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 05:03:57 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-12-12 05:03:57 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-12-12 05:03:57 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-12-12 05:03:57 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-12-12 05:03:36 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-12-12 05:03:29 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-12-12 05:02:12 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-12-12 05:02:12 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-12-12 05:02:12 | 001,089,883 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntprint.cat [2010-12-12 05:02:12 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-12-12 05:02:12 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-12-12 05:02:12 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-12-12 05:02:12 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-12-12 05:02:12 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-12-12 05:02:12 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-12-12 05:02:12 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-12-12 05:02:12 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-12-12 05:02:12 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-12-12 05:02:12 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-12-12 05:02:12 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-12-12 05:02:12 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-12-12 05:02:12 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-12-12 05:02:12 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-12-12 05:02:12 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-12-12 05:01:38 | 000,156,360 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-12 05:00:37 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-12-12 05:00:35 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2009-10-16 18:45:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2009-10-16 18:45:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2009-10-16 18:45:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2009-10-16 18:45:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2009-10-16 18:45:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2009-10-16 18:45:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2009-10-16 18:45:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2009-10-16 18:45:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2009-10-16 18:45:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2009-10-16 18:45:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2009-10-16 18:45:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2009-10-16 18:45:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2009-10-16 18:45:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2009-10-16 18:45:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2009-10-16 18:45:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2009-10-16 18:45:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2009-10-16 18:45:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2009-10-16 18:45:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2009-10-16 18:45:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2009-10-16 18:45:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2009-10-16 18:45:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2009-10-16 18:45:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2009-10-16 18:45:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2009-10-16 18:45:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2009-10-16 18:45:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2009-10-16 18:45:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2009-10-16 18:45:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2009-10-16 18:45:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2009-10-16 18:45:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2009-10-16 18:45:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2009-10-16 18:45:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2009-10-16 18:45:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2009-10-16 18:45:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2009-10-16 18:45:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2009-10-16 18:45:00 | 000,000,507 | ---- | C] () -- C:\WINDOWS\win.ini [2009-10-16 18:45:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2009-10-16 18:45:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2008-08-02 05:20:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-08-02 05:20:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-08-02 05:20:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-08-02 05:20:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-08-02 05:20:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-06-05 08:58:26 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2001-10-26 16:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [color=#E56717]========== LOP Check ==========[/color] [2010-12-13 14:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-12 09:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-13 07:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 00:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-18 20:32:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 21:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-18 20:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] < End of report > [/log] Extras.txt [log]OTL Extras logfile created on: 2010-12-18 21:00:52 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 61,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 76,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 174,24 Gb Free Space | 71,37% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,46 Gb Free Space | 97,68% Space Free | Partition Type: NTFS Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe" = C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień -- File not found "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\TVUPlayer\TVUPlayer.exe" = C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component -- (TVU networks) "C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com) "C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com) "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe" = D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player -- () "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "D:\iTunes\iTunes.exe" = D:\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.) "D:\EslWire\wire.exe" = D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "D:\mIRC\mirc.exe" = D:\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\RelevantKnowledge\rlvknlg.exe" = C:\Program Files\RelevantKnowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe -- (TMRG, Inc.) "C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google) "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe" = D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM) "{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox "{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4}" = iTunes "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{5546F4E9-B0F4-4F54-B949-2AB006C9284F}" = DJ_AIO_06_F2400_SW_Min "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}" = 32 Bit HP CIO Components Installer "{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "{699BAC7F-DC10-4709-97D8-45379301BBE7}" = NVIDIA PhysX v8.08.01 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{819CA3BC-2FF8-4811-B42F-421F7BFD3559}" = HP Deskjet F2400 All-in-One Driver 14.0 Rel. 6 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{84FB24B0-9973-4370-B107-7C38DDF20ABC}" = Gamer HUD "{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}" = EPU-4 Engine "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.0 - Polish "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{C768790F-04FB-11E0-9B2C-001AA037B01E}" = Google Earth "{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}" = Apple Mobile Device Support "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AIMP2" = AIMP2 "CCleaner" = CCleaner "CWK" = CWK (Czasowy Wyłącznik Komputera) "ESL Wire_is1" = ESL Wire 1.9.1 "Gadu-Gadu 10" = Gadu-Gadu 10 "Generic USB 108 Sound" = SteelSeries USB Soundcard v1.20 "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "mIRC" = mIRC "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "Mp3 Knife_is1" = Mp3 Knife 3.2 "NVIDIA Drivers" = NVIDIA Drivers "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation) "SopCast" = SopCast 3.2.9 "Steam App 10" = Counter-Strike "Steam App 2130" = Dark Messiah Might and Magic Multi-Player "TVUPlayer" = TVUPlayer 2.5.3.1 "Unlocker" = Unlocker 1.9.0 "uTorrent" = µTorrent "WinRAR archiver" = Archiwizator WinRAR "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-12-16 02:36:23 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-16 09:08:53 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-16 11:55:19 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 02:45:50 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 03:03:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 04:09:08 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:10:48 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:24:01 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 04:58:32 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 15:40:02 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. [ System Events ] Error - 2010-12-17 04:09:03 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-17 04:09:08 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-17 18:10:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-17 18:10:47 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-17 18:23:49 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-17 18:23:51 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 04:58:27 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 04:58:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 15:40:00 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 15:40:06 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 < End of report > [/log]
Tomek01 komentarz 19 grudnia 2010 komentarz 19 grudnia 2010 W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL PRC - [2010-11-08 20:37:25 | 002,508,928 | ---- | M] (TMRG, Inc.) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe MOD - [2010-11-08 20:37:22 | 000,541,312 | ---- | M] (TMRG, Inc.) -- C:\Program Files\RelevantKnowledge\rlls.dll O4 - HKLM..\Run: [Cm108Sound] File not found O4 - HKLM..\Run: [RelevantKnowledge] C:\program files\relevantknowledge\rlvknlg.exe (TMRG, Inc.) :Files C:\program files\relevantknowledge :Reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RelevantKnowledge"=- [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\SopCast\SopCast.exe"=- "C:\Program Files\SopCast\adv\SopAdver.exe"=- "C:\Program Files\RelevantKnowledge\rlvknlg.exe"=- :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i wyniki pokaż na forum.
chmur0n komentarz 19 grudnia 2010 Autor komentarz 19 grudnia 2010 (edytowane) Skan z usuwania OTL [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== Process rlvknlg.exe killed successfully! Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Cm108Sound deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RelevantKnowledge deleted successfully. C:\Program Files\RelevantKnowledge\rlvknlg.exe moved successfully. ========== FILES ========== C:\program files\RelevantKnowledge folder moved successfully. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RelevantKnowledge not found. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\SopCast\SopCast.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\SopCast\adv\SopAdver.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\RelevantKnowledge\rlvknlg.exe deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: chmur0n User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33230 bytes User: NEQ ->Temp folder emptied: 2786152768 bytes ->Temporary Internet Files folder emptied: 37881642 bytes ->Java cache emptied: 476359 bytes ->FireFox cache emptied: 56847453 bytes ->Flash cache emptied: 140241 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 2596 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 32069904 bytes RecycleBin emptied: 785185848 bytes Total Files Cleaned = 3 528,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 12192010_020243 Files\Folders moved on Reboot... File\Folder C:\WINDOWS\temp\kls165D.tmp not found! C:\WINDOWS\temp\Perflib_Perfdata_8c0.dat moved successfully. Registry entries deleted on Reboot... [/log] OTL.txt [log]OTL logfile created on: 2010-12-19 02:06:16 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 77,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 155,90 Gb Free Space | 63,85% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,45 Gb Free Space | 97,67% Space Free | Partition Type: NTFS Drive E: | 179,77 Mb Total Space | 69,55 Mb Free Space | 38,69% Space Free | Partition Type: FAT Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 1,86 Gb Total Space | 0,19 Gb Free Space | 10,46% Space Free | Partition Type: FAT Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-12-14 08:04:03 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-12-13 13:39:46 | 002,570,752 | ---- | M] (Turtle Entertainment GmbH) -- D:\EslWire\wire.exe PRC - [2010-12-13 00:33:01 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\avp.exe PRC - [2010-12-12 22:16:13 | 001,242,448 | ---- | M] (Valve Corporation) -- D:\Steam\Steam.exe PRC - [2010-12-12 09:41:03 | 000,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe PRC - [2010-12-08 11:53:26 | 000,136,192 | ---- | M] () -- D:\EslWire\pluginContainer\wire-plugin.exe PRC - [2010-12-08 11:53:20 | 000,388,096 | ---- | M] () -- D:\EslWire\dbus-daemon.exe PRC - [2010-12-08 11:53:20 | 000,024,480 | ---- | M] () -- D:\EslWire\inGame32.exe PRC - [2010-09-24 02:10:52 | 000,421,160 | ---- | M] (Apple Inc.) -- D:\iTunes\iTunesHelper.exe PRC - [2010-09-24 02:10:42 | 000,820,008 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe PRC - [2010-09-23 04:47:04 | 000,035,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe PRC - [2010-09-20 23:07:44 | 000,932,288 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010-07-04 20:51:26 | 000,017,408 | ---- | M] () -- D:\Unlocker\UnlockerAssistant.exe PRC - [2010-07-01 21:34:46 | 000,129,720 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\klwtblfs.exe PRC - [2009-10-16 18:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-10-16 18:45:00 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2009-10-16 18:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2009-10-16 18:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-10-16 18:45:00 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE PRC - [2009-10-16 18:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2009-10-16 18:45:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2009-10-16 18:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2009-10-16 18:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2009-10-16 18:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2009-10-16 18:45:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2008-08-02 05:20:00 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2008-07-23 17:04:20 | 005,625,344 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe PRC - [2008-07-16 12:14:00 | 016,806,400 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2008-06-26 15:49:44 | 001,940,992 | ---- | M] () -- C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe PRC - [2003-02-21 11:46:58 | 000,191,488 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe MOD - [2010-12-08 11:53:20 | 000,447,904 | ---- | M] () -- D:\EslWire\inGame32.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:43:34 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-27 07:29:09 | 008,492,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2010-07-04 22:32:36 | 000,004,608 | ---- | M] () -- D:\Unlocker\UnlockerHook.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-10-16 18:45:00 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-10-16 18:45:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-10-16 18:45:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-10-16 18:45:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2009-10-16 18:45:00 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-10-16 18:45:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-10-16 18:45:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-10-16 18:45:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2009-10-16 18:45:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2009-10-16 18:45:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2009-10-16 18:45:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2009-10-16 18:45:00 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-10-16 18:45:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-10-16 18:45:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-10-16 18:45:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2009-10-16 18:45:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2009-10-16 18:45:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2009-10-16 18:45:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2009-10-16 18:45:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2009-10-16 18:45:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2009-10-16 18:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-10-16 18:45:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-10-16 18:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2009-10-16 18:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Kaspersky Anti-Virus 2011\avp.exe -- (AVP) SRV - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\SymIM.sys -- (SymIM) DRV - [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF) DRV - [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ESLWireACD.sys -- (ESLWireAC) DRV - [2010-08-12 14:10:00 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1) DRV - [2010-06-09 17:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2) DRV - [2010-06-09 17:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1) DRV - [2010-05-07 12:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5) DRV - [2009-12-22 01:53:00 | 001,511,936 | ---- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CM108.sys -- (USBPNPA) DRV - [2009-11-02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt) DRV - [2009-10-16 18:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-10-16 18:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531) DRV - [2009-10-16 18:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-10-16 18:45:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2009-10-16 18:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-10-16 18:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-10-16 18:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2008-08-02 05:20:00 | 006,121,856 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-07-16 11:52:00 | 004,747,776 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-06-25 17:47:00 | 000,036,864 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e) DRV - [2008-04-13 22:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2007-12-17 10:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-220523388-1425521274-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 3 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.2 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-14 08:24:43 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-16 09:06:33 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Kaspersky Anti-Virus 2011\THBExt [2010-12-12 21:36:06 | 000,000,000 | ---D | M] [2010-12-12 09:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Extensions [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions [2010-12-12 21:43:51 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-12-12 20:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\firefox@tvunetworks.com [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2010-10-08 14:03:06 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-09-13 16:29:30 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll [2010-07-12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010-12-14 08:04:07 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-12-14 08:04:07 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-12-14 08:04:07 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-12-14 08:04:07 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-12-14 08:04:07 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-12-14 08:04:07 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-10-16 18:45:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVP] C:\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [Six Engine] C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe () O4 - HKLM..\Run: [UnlockerAssistant] D:\Unlocker\UnlockerAssistant.exe () O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [ESL Wire] D:\EslWire\wire.exe (Turtle Entertainment GmbH) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [Steam] D:\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 217.30.129.149 217.30.137.200 O20 - AppInit_DLLs: (C:\KASPER~1\mzvkbd3.dll) - C:\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: LanmanWorkstation - File not found NetSvcs: Messenger - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: Netlogon - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: Browser - Service SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: LanmanWorkstation - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOS - Service SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Netlogon - Service SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NtLmSsp - Service SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-12-19 02:07:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-12-19 02:02:43 | 000,000,000 | ---D | C] -- C:\_OTL [2010-12-19 00:46:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\BLUS30418 [2010-12-18 21:32:18 | 000,000,000 | --SD | C] -- C:\HLSW [2010-12-18 21:32:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\rsit [2010-12-17 23:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:42:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Google [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Temp [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Google [2010-12-16 21:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\ESL Match Media [2010-12-16 17:15:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-12-16 16:48:05 | 008,146,944 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM108.cpl [2010-12-16 16:48:05 | 000,294,912 | ---- | C] (C-Media) -- C:\WINDOWS\System32\CM108rm.exe [2010-12-16 16:47:37 | 000,307,200 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi108Uninstall.exe [2010-12-16 16:47:29 | 001,511,936 | ---- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM108.sys [2010-12-16 16:47:29 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr108.dll [2010-12-16 16:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\SteelSeries USB Soundcard v1.20 [2010-12-16 09:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-12-16 09:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Adobe [2010-12-15 02:54:24 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\PrivacIE [2010-12-14 03:01:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-12-14 03:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010-12-13 18:07:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-12-13 14:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-13 14:54:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Recent [2010-12-13 14:53:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-12-13 07:56:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 03:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-12-13 00:40:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer [2010-12-13 00:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2010-12-13 00:40:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-13 00:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010-12-13 00:39:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-12-13 00:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple [2010-12-13 00:39:28 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple [2010-12-13 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-12-13 00:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Sun [2010-12-13 00:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo [2010-12-12 23:27:13 | 000,841,912 | ---- | C] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [2010-12-12 23:26:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC [2010-12-12 23:25:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\ESL Wire Game Client [2010-12-12 23:25:03 | 000,024,504 | ---- | C] (Turtle Entertainment GmbH) -- C:\WINDOWS\System32\drivers\ESLvnic.sys [2010-12-12 23:24:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-12-12 23:24:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-12-12 23:24:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2010-12-12 23:22:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-12-12 23:22:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-12-12 23:22:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-12-12 23:22:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-12-12 23:21:52 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010-12-12 23:12:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Gry [2010-12-12 21:36:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Kaspersky Anti-Virus 2011 [2010-12-12 21:35:44 | 000,475,736 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 21:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-12-12 21:05:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010-12-12 21:05:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2010-12-12 21:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-12-12 21:03:51 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010-12-12 21:03:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010-12-12 20:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\LocalLow [2010-12-12 20:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\LocalLow [2010-12-12 20:56:33 | 000,000,000 | ---D | C] -- C:\Program Files\TVUPlayer [2010-12-12 20:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 20:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-12-12 20:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje wideo [2010-12-12 20:30:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Muzyka [2010-12-12 20:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Programy [2010-12-12 20:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-12-12 20:25:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\chmur0n [2010-12-12 20:22:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Pobieranie [2010-12-12 20:19:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-12-12 12:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\cache [2010-12-12 12:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\PES 2011 Patch 0.1 [2010-12-12 12:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\pes [2010-12-12 12:32:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR [2010-12-12 10:24:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Downloads [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe [2010-12-12 10:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS [2010-12-12 10:11:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-12-12 10:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-12-12 10:09:21 | 000,036,864 | R--- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\l1e51x86.sys [2010-12-12 10:09:20 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-12-12 10:09:18 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-12-12 10:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Atheros_L1e [2010-12-12 10:09:12 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-12-12 10:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\INF [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32\DRIVERS [2010-12-12 10:05:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32 [2010-12-12 10:04:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-12-12 10:04:34 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll [2010-12-12 10:04:34 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2010-12-12 10:03:11 | 000,000,000 | ---D | C] -- C:\Intel [2010-12-12 09:59:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ASUSInstAll [2010-12-12 09:55:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec [2010-12-12 09:53:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2010-12-12 09:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-12-12 09:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-12-12 09:48:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-12-12 09:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-12-12 09:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-12-12 09:43:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-12-12 09:43:13 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010-12-12 09:43:03 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2010-12-12 09:42:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:42:02 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-12-12 09:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-12-12 09:41:03 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010-12-12 09:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla [2010-12-12 09:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-12-12 09:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Identities [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje obrazy [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moja muzyka [2010-12-12 09:36:36 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\SendTo [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Ulubione [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Menu Start [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\IETldCache [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\Cookies [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Szablony [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\PrintHood [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\NetHood [2010-12-12 09:36:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit [2010-12-12 09:35:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-12-12 09:35:56 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-12-12 09:35:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-12-12 09:32:44 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-12-12 09:32:07 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-12-12 09:31:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-12-12 09:30:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-12-12 09:30:23 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-12-12 09:30:20 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-12-12 09:30:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-12-12 09:29:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-12-12 09:29:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-12-12 09:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-12-12 09:29:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-12-12 09:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-12-12 09:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-12-12 09:29:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-12-12 09:29:09 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-12-12 09:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-12-12 09:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-12-12 09:28:59 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-12-12 09:28:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-12-12 09:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-12-12 09:28:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-12-12 09:28:13 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-12-12 09:28:10 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-12-12 09:27:46 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-12-12 09:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-12-12 09:27:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-12-12 09:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-12-12 09:27:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-12-12 05:04:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-12-12 05:03:59 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-12-12 05:03:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-12-12 05:03:56 | 000,000,000 | R--D | C] -- C:\Program Files [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-12-12 05:03:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-12-12 05:01:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-12-12 05:01:56 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-12-12 05:01:39 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-12-12 05:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-12-12 04:57:41 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-12-12 04:57:41 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-12-12 04:57:41 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-12-12 04:57:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-12-19 02:04:50 | 000,198,703 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-19 02:04:48 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-19 02:04:48 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-19 02:04:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-12-19 02:03:32 | 001,572,864 | -H-- | M] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-19 02:03:30 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-19 02:02:48 | 001,087,636 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-19 02:02:48 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-12-19 02:02:48 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-12-19 02:02:48 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-12-19 02:02:48 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-12-19 01:47:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-19 00:30:56 | 000,008,372 | ---- | M] () -- C:\WINDOWS\System\Cm108.ini [2010-12-18 21:32:20 | 000,000,466 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\HLSW.lnk [2010-12-18 20:52:52 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-17 18:26:28 | 000,029,608 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-17 08:03:20 | 000,156,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-17 07:49:39 | 006,380,844 | -H-- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-16 16:48:05 | 000,000,062 | ---- | M] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 03:00:58 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-12-15 21:38:48 | 000,215,317 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-13 14:53:56 | 000,005,710 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:21:39 | 000,013,614 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 22:45:09 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 22:45:09 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 10:26:01 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:50 | 000,030,543 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 10:11:30 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | M] () -- C:\WINDOWS\setup.iss [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:55:03 | 000,010,563 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:55:03 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:14 | 000,030,151 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:50:45 | 000,001,803 | ---- | M] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:45:57 | 000,142,957 | ---- | M] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:40:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:36:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-12-12 09:33:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-12-12 09:31:10 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:08 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010-12-12 09:31:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:58 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:28:41 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-12-12 09:26:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-12-12 05:03:55 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [2010-11-29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-11-29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-12-18 21:32:20 | 000,000,466 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\HLSW.lnk [2010-12-17 22:42:01 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-17 22:42:00 | 000,001,026 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-16 16:48:05 | 000,008,372 | ---- | C] () -- C:\WINDOWS\System\Cm108.ini [2010-12-16 16:48:05 | 000,000,062 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 16:47:37 | 000,129,656 | ---- | C] () -- C:\WINDOWS\jack.bmp [2010-12-16 16:47:37 | 000,000,939 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfg [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\tray.ico [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\control.ico [2010-12-16 16:47:35 | 000,001,318 | ---- | C] () -- C:\WINDOWS\cm108.ini [2010-12-15 21:38:18 | 000,215,317 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-14 03:00:20 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-12-13 15:27:50 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-13 14:53:53 | 000,005,710 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:02:17 | 000,013,614 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 21:36:30 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 21:36:30 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 20:56:51 | 000,029,608 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-12 10:26:01 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:40 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010-12-12 10:11:40 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010-12-12 10:11:34 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2010-12-12 10:11:34 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2010-12-12 10:11:30 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | C] () -- C:\WINDOWS\setup.iss [2010-12-12 10:10:08 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss [2010-12-12 10:10:06 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:54:09 | 000,010,563 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:54:09 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:35 | 000,030,543 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 09:52:15 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010-12-12 09:52:01 | 000,030,151 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:52:01 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-12-12 09:50:45 | 000,001,803 | ---- | C] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:47:30 | 006,380,844 | -H-- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-12 09:47:20 | 000,198,703 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-12 09:46:41 | 000,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-12-12 09:42:46 | 000,142,957 | ---- | C] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:42:46 | 000,000,512 | ---- | C] () -- C:\WINDOWS\hpomdl44.dat [2010-12-12 09:42:46 | 000,000,333 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-12-12 09:40:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:39:49 | 000,000,080 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\FASTWiz.log [2010-12-12 09:36:34 | 000,053,248 | -H-- | C] () -- C:\Documents and Settings\NEQ\ntuser.dat.LOG [2010-12-12 09:36:34 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-12 09:36:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini [2010-12-12 09:36:33 | 001,572,864 | -H-- | C] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-12 09:35:56 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-12 09:33:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-12-12 09:32:55 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-12-12 09:32:41 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-12-12 09:32:30 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-12-12 09:32:30 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-12-12 09:32:27 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-12-12 09:32:27 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-12-12 09:32:26 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-12-12 09:32:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-12-12 09:32:16 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-12-12 09:32:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-12-12 09:32:08 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-12-12 09:32:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-12-12 09:32:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-12-12 09:32:06 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-12-12 09:32:06 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-12-12 09:32:06 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-12-12 09:32:05 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-12-12 09:32:05 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-12-12 09:32:05 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-12-12 09:32:05 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-12-12 09:32:05 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-12-12 09:32:04 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-12-12 09:32:04 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-12-12 09:32:04 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-12-12 09:32:04 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-12-12 09:31:10 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:05 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:30:13 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-12-12 09:29:52 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-12-12 09:29:15 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-12-12 09:28:41 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-12-12 09:27:57 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-12-12 09:27:57 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-12-12 09:27:57 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-12-12 09:27:57 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-12-12 09:27:57 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-12-12 09:27:56 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-12-12 09:27:56 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-12-12 09:27:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-12-12 09:27:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-12-12 09:27:56 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-12-12 09:27:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-12-12 09:27:56 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-12-12 09:27:55 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-12-12 09:27:55 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-12-12 09:27:55 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-12-12 09:27:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-12-12 09:27:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-12-12 09:27:55 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-12-12 09:27:55 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-12-12 09:27:53 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-12-12 09:27:53 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-12-12 09:27:53 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-12-12 09:27:52 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-12-12 09:27:52 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-12-12 09:27:47 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-12-12 05:03:59 | 001,087,636 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-12 05:03:59 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 05:03:57 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-12-12 05:03:57 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-12-12 05:03:57 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-12-12 05:03:57 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-12-12 05:03:36 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-12-12 05:03:29 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-12-12 05:02:12 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-12-12 05:02:12 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-12-12 05:02:12 | 001,089,883 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntprint.cat [2010-12-12 05:02:12 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-12-12 05:02:12 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-12-12 05:02:12 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-12-12 05:02:12 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-12-12 05:02:12 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-12-12 05:02:12 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-12-12 05:02:12 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-12-12 05:02:12 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-12-12 05:02:12 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-12-12 05:02:12 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-12-12 05:02:12 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-12-12 05:02:12 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-12-12 05:02:12 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-12-12 05:02:12 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-12-12 05:02:12 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-12-12 05:01:38 | 000,156,360 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-12 05:00:37 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-12-12 05:00:35 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2009-10-16 18:45:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2009-10-16 18:45:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2009-10-16 18:45:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2009-10-16 18:45:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2009-10-16 18:45:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2009-10-16 18:45:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2009-10-16 18:45:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2009-10-16 18:45:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2009-10-16 18:45:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2009-10-16 18:45:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2009-10-16 18:45:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2009-10-16 18:45:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2009-10-16 18:45:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2009-10-16 18:45:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2009-10-16 18:45:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2009-10-16 18:45:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2009-10-16 18:45:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2009-10-16 18:45:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2009-10-16 18:45:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2009-10-16 18:45:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2009-10-16 18:45:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2009-10-16 18:45:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2009-10-16 18:45:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2009-10-16 18:45:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2009-10-16 18:45:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2009-10-16 18:45:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2009-10-16 18:45:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2009-10-16 18:45:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2009-10-16 18:45:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2009-10-16 18:45:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2009-10-16 18:45:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2009-10-16 18:45:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2009-10-16 18:45:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2009-10-16 18:45:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2009-10-16 18:45:00 | 000,000,507 | ---- | C] () -- C:\WINDOWS\win.ini [2009-10-16 18:45:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2009-10-16 18:45:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2008-08-02 05:20:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-08-02 05:20:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-08-02 05:20:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-08-02 05:20:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-08-02 05:20:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-06-05 08:58:26 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2001-10-26 16:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [color=#E56717]========== LOP Check ==========[/color] [2010-12-13 14:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-12 09:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-13 07:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 00:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-18 23:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 21:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-18 21:36:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW [2010-12-19 02:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-12-12 09:26:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2009-10-16 18:45:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2009-10-16 18:45:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009-10-16 18:45:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-12-19 02:04:43 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2010-12-12 10:10:08 | 000,000,522 | ---- | M] () -- C:\RHDSetup.log [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2009-10-16 18:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2009-10-16 18:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2009-10-16 18:45:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2009-10-16 18:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2009-10-16 18:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009-10-16 18:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2009-10-16 18:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] Extras.txt [log]OTL Extras logfile created on: 2010-12-19 02:06:16 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 77,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 155,90 Gb Free Space | 63,85% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,45 Gb Free Space | 97,67% Space Free | Partition Type: NTFS Drive E: | 179,77 Mb Total Space | 69,55 Mb Free Space | 38,69% Space Free | Partition Type: FAT Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 1,86 Gb Total Space | 0,19 Gb Free Space | 10,46% Space Free | Partition Type: FAT Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe" = C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień -- File not found "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\TVUPlayer\TVUPlayer.exe" = C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component -- (TVU networks) "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe" = D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player -- () "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "D:\iTunes\iTunes.exe" = D:\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.) "D:\EslWire\wire.exe" = D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "D:\mIRC\mirc.exe" = D:\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google) "C:\HLSW\hlsw.exe" = C:\HLSW\hlsw.exe:*:Enabled:HLSW Application -- (Stripf Software) "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe" = D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM) "{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox "{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4}" = iTunes "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{5546F4E9-B0F4-4F54-B949-2AB006C9284F}" = DJ_AIO_06_F2400_SW_Min "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}" = 32 Bit HP CIO Components Installer "{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "{699BAC7F-DC10-4709-97D8-45379301BBE7}" = NVIDIA PhysX v8.08.01 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{819CA3BC-2FF8-4811-B42F-421F7BFD3559}" = HP Deskjet F2400 All-in-One Driver 14.0 Rel. 6 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{84FB24B0-9973-4370-B107-7C38DDF20ABC}" = Gamer HUD "{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}" = EPU-4 Engine "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.0 - Polish "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{C768790F-04FB-11E0-9B2C-001AA037B01E}" = Google Earth "{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}" = Apple Mobile Device Support "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AIMP2" = AIMP2 "CCleaner" = CCleaner "CWK" = CWK (Czasowy Wyłącznik Komputera) "ESL Wire_is1" = ESL Wire 1.9.1 "Gadu-Gadu 10" = Gadu-Gadu 10 "Generic USB 108 Sound" = SteelSeries USB Soundcard v1.20 "HLSW_is1" = HLSW v1.3.3.7b "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "mIRC" = mIRC "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "Mp3 Knife_is1" = Mp3 Knife 3.2 "NVIDIA Drivers" = NVIDIA Drivers "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation) "SopCast" = SopCast 3.2.9 "Steam App 10" = Counter-Strike "Steam App 2130" = Dark Messiah Might and Magic Multi-Player "TVUPlayer" = TVUPlayer 2.5.3.1 "Unlocker" = Unlocker 1.9.0 "uTorrent" = µTorrent "WinRAR archiver" = Archiwizator WinRAR "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-12-16 11:55:19 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 02:45:50 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 03:03:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 04:09:08 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:10:48 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:24:01 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 04:58:32 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 15:40:02 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 15:46:09 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL en.exe, wersja 3.2.17.3, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2010-12-18 21:04:59 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. [ System Events ] Error - 2010-12-18 04:58:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 15:40:00 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 15:40:06 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7031 Description = Usługa Apple Mobile Device niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa Java Quick Starter niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:02:45 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa Usługa iPod niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:04:58 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 21:05:01 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 21:07:29 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PlugPlayManager | ID = 12 Description = Urządzenie 'HL-DT-ST DVD-RAM GH22LS30' (IDE\CdRomHL-DT-ST_DVD-RAM_GH22LS30_______________1.01____\5&5c6cfd6&0&0.0.0) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. < End of report > [/log] RSIT [log]Logfile of random's system information tool 1.08 (written by random/random) Run by NEQ at 2010-12-19 02:09:57 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 160 GB (64%) free of 250 GB Total RAM: 3327 MB (76% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 02:10:00, on 2010-12-19 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe C:\Kaspersky Anti-Virus 2011\avp.exe D:\Unlocker\UnlockerAssistant.exe D:\iTunes\iTunesHelper.exe C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\WINDOWS\system32\ctfmon.exe C:\Kaspersky Anti-Virus 2011\avp.exe D:\Steam\steam.exe C:\Program Files\Java\jre6\bin\jqs.exe D:\EslWire\wire.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe D:\EslWire\inGame32.exe C:\Program Files\Mozilla Firefox\firefox.exe D:\EslWire\dbus-daemon.exe D:\EslWire\pluginContainer\wire-plugin.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe C:\Kaspersky Anti-Virus 2011\klwtblfs.exe C:\WINDOWS\system32\wuauclt.exe D:\Ventrilo\Ventrilo.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\RSIT.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\trend micro\NEQ.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe" -r O4 - HKLM\..\Run: [AVP] "C:\Kaspersky Anti-Virus 2011\avp.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "D:\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent O4 - HKCU\..\Run: [ESL Wire] "D:\EslWire\wire.exe" --tray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O20 - AppInit_DLLs: C:\KASPER~1\mzvkbd3.dll O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Usługa Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Kaspersky Anti-Virus 2011\avp.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 7646 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Kaspersky Anti-Virus 2011\ievkbd.dll [2010-07-01 68280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-13 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll [2010-07-01 191160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-12-13 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-08-02 13570048] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-08-02 86016] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-16 16806400] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344] "Six Engine"=C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe [2008-07-23 5625344] "AVP"=C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] "UnlockerAssistant"=D:\Unlocker\UnlockerAssistant.exe [2010-07-04 17408] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888] "iTunesHelper"=D:\iTunes\iTunesHelper.exe [2010-09-24 421160] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "GammaAdjuster"=C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [2003-02-21 191488] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes' Anti-Malware"=C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbamgui.exe [2010-11-29 443728] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2009-10-16 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-12 328056] "Steam"=D:\Steam\steam.exe [2010-12-12 1242448] "ESL Wire"=D:\EslWire\wire.exe [2010-12-13 2570752] C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart GIGABYTE Gamer HUD.lnk - C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\KASPER~1\mzvkbd3.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2010-07-01 228024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2009-10-16 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe"="C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe"="D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player" "C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "D:\iTunes\iTunes.exe"="D:\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011" "D:\EslWire\wire.exe"="D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "D:\mIRC\mirc.exe"="D:\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary" "C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth" "C:\HLSW\hlsw.exe"="C:\HLSW\hlsw.exe:*:Enabled:HLSW Application" "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe"="D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" ======List of files/folders created in the last 1 months====== 2010-12-19 02:08:04 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Malwarebytes 2010-12-19 02:08:00 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2010-12-19 02:07:59 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2010-12-19 02:07:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2010-12-19 02:02:43 ----D---- C:\_OTL 2010-12-18 21:32:18 ----SD---- C:\HLSW 2010-12-18 21:32:18 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW 2010-12-18 20:44:37 ----D---- C:\rsit 2010-12-18 20:44:37 ----D---- C:\Program Files\trend micro 2010-12-18 05:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2010-12-17 22:42:59 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Google 2010-12-17 22:41:57 ----D---- C:\Program Files\Google 2010-12-16 17:15:32 ----D---- C:\WINDOWS\pss 2010-12-16 16:48:05 ----A---- C:\WINDOWS\system32\CM108rm.exe 2010-12-16 16:48:05 ----A---- C:\WINDOWS\Cm108.ini.cfl 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cmi108Uninstall.exe 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cm108.ini.cfg 2010-12-16 16:47:35 ----A---- C:\WINDOWS\cm108.ini 2010-12-16 16:47:29 ----D---- C:\Program Files\SteelSeries USB Soundcard v1.20 2010-12-16 16:47:29 ----A---- C:\WINDOWS\system32\drivers\CM108.sys 2010-12-16 16:25:12 ----A---- C:\WINDOWS\system32\hidserv.dll 2010-12-16 16:25:03 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2010-12-16 09:06:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Common Files\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Adobe 2010-12-16 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$ 2010-12-16 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$ 2010-12-16 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$ 2010-12-16 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$ 2010-12-16 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$ 2010-12-16 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$ 2010-12-16 03:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$ 2010-12-15 08:26:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-12-15 08:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-12-14 03:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$ 2010-12-14 03:05:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$ 2010-12-14 03:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$ 2010-12-14 03:05:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$ 2010-12-14 03:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-12-14 03:05:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-12-14 03:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$ 2010-12-14 03:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-12-14 03:04:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$ 2010-12-14 03:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-12-14 03:04:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-12-14 03:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$ 2010-12-14 03:04:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-12-14 03:04:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2010-12-14 03:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-12-14 03:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$ 2010-12-14 03:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-12-14 03:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-12-14 03:04:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$ 2010-12-14 03:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-12-14 03:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-12-14 03:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$ 2010-12-14 03:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$ 2010-12-14 03:03:30 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-12-14 03:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-12-14 03:03:23 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-12-14 03:03:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$ 2010-12-14 03:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-12-14 03:03:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-12-14 03:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-12-14 03:01:10 ----D---- C:\WINDOWS\ie8updates 2010-12-14 03:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-12-14 03:01:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2010-12-14 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-12-14 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$ 2010-12-14 03:00:49 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-12-14 03:00:46 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-12-14 03:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-12-14 03:00:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-12-14 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$ 2010-12-14 03:00:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$ 2010-12-14 03:00:32 ----D---- C:\Program Files\MSXML 4.0 2010-12-14 03:00:26 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-12-14 03:00:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-12-14 03:00:20 ----A---- C:\WINDOWS\imsins.BAK 2010-12-14 03:00:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$ 2010-12-13 18:07:42 ----D---- C:\WINDOWS\Sun 2010-12-13 14:55:05 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire 2010-12-13 14:53:17 ----D---- C:\WINDOWS\system32\appmgmt 2010-12-13 07:51:28 ----D---- C:\Program Files\KONAMI 2010-12-13 07:51:28 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI 2010-12-13 03:03:08 ----N---- C:\WINDOWS\system32\browserchoice.exe 2010-12-13 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-12-13 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-12-13 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-12-13 03:00:28 ----D---- C:\WINDOWS\system32\PreInstall 2010-12-13 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-12-13 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-12-13 03:00:18 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-12-13 00:40:44 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys 2010-12-13 00:40:13 ----D---- C:\Program Files\iPod 2010-12-13 00:40:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2010-12-13 00:39:39 ----D---- C:\Program Files\QuickTime 2010-12-13 00:39:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer 2010-12-13 00:39:28 ----D---- C:\Program Files\Apple Software Update 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\usbaaplrc.dll 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\drivers\usbaapl.sys 2010-12-13 00:38:58 ----D---- C:\Program Files\Common Files\Apple 2010-12-13 00:38:58 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaws.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaw.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\java.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-12-13 00:32:59 ----D---- C:\Program Files\Java 2010-12-13 00:32:16 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Sun 2010-12-13 00:03:26 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo 2010-12-12 23:27:13 ----A---- C:\WINDOWS\system32\drivers\ESLWireACD.sys 2010-12-12 23:26:15 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC 2010-12-12 23:25:03 ----A---- C:\WINDOWS\system32\drivers\ESLvnic.sys 2010-12-12 23:24:57 ----A---- C:\WINDOWS\system32\msonpmon.dll 2010-12-12 23:24:39 ----D---- C:\Program Files\Microsoft Works 2010-12-12 23:24:31 ----D---- C:\Program Files\Common Files\DESIGNER 2010-12-12 23:24:19 ----D---- C:\Program Files\Microsoft.NET 2010-12-12 23:22:49 ----D---- C:\WINDOWS\SHELLNEW 2010-12-12 23:22:36 ----D---- C:\Program Files\Microsoft Office 2010-12-12 23:22:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2010-12-12 23:21:52 ----RHD---- C:\MSOCache 2010-12-12 21:36:09 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-12-12 21:35:53 ----D---- C:\Kaspersky Anti-Virus 2011 2010-12-12 21:35:53 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab 2010-12-12 21:35:44 ----A---- C:\WINDOWS\system32\drivers\klif.sys 2010-12-12 21:09:01 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$ 2010-12-12 21:07:41 ----D---- C:\Program Files\MSBuild 2010-12-12 21:05:55 ----D---- C:\WINDOWS\system32\XPSViewer 2010-12-12 21:05:54 ----D---- C:\WINDOWS\system32\en-us 2010-12-12 21:05:26 ----D---- C:\Program Files\Reference Assemblies 2010-12-12 21:05:02 ----N---- C:\WINDOWS\system32\spmsg2.dll 2010-12-12 21:05:00 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-12-12 21:03:51 ----RSD---- C:\WINDOWS\assembly 2010-12-12 21:03:38 ----D---- C:\WINDOWS\Microsoft.NET 2010-12-12 20:57:25 ----D---- C:\Program Files\SopCast 2010-12-12 20:56:51 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks 2010-12-12 20:56:33 ----D---- C:\Program Files\TVUPlayer 2010-12-12 20:38:19 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP 2010-12-12 20:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$ 2010-12-12 20:28:30 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files 2010-12-12 20:19:33 ----SHD---- C:\RECYCLER 2010-12-12 12:54:42 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2010-12-12 12:54:34 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2010-12-12 12:32:20 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR 2010-12-12 10:26:50 ----A---- C:\WINDOWS\system32\h323log.txt 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\drivers\AsIO.sys 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\AsIO.dll 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp64.sys 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp32.sys 2010-12-12 10:11:33 ----D---- C:\Program Files\ASUS 2010-12-12 10:11:26 ----D---- C:\WINDOWS\system32\Lang 2010-12-12 10:10:06 ----R---- C:\WINDOWS\system32\ChCfg.exe 2010-12-12 10:10:05 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2010-12-12 10:10:03 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2010-12-12 10:10:02 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2010-12-12 10:10:01 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2010-12-12 10:10:00 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2010-12-12 10:09:59 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2010-12-12 10:09:58 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010-12-12 10:09:57 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2010-12-12 10:09:56 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010-12-12 10:09:53 ----D---- C:\WINDOWS\system32\RTCOM 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2010-12-12 10:09:51 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2010-12-12 10:09:49 ----R---- C:\WINDOWS\SoundMan.exe 2010-12-12 10:09:48 ----R---- C:\WINDOWS\SkyTel.exe 2010-12-12 10:09:46 ----R---- C:\WINDOWS\RtlUpd.exe 2010-12-12 10:09:43 ----R---- C:\WINDOWS\RTLCPL.exe 2010-12-12 10:09:40 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.sys 2010-12-12 10:09:33 ----R---- C:\WINDOWS\RTHDCPL.exe 2010-12-12 10:09:30 ----R---- C:\WINDOWS\MicCal.exe 2010-12-12 10:09:21 ----RA---- C:\WINDOWS\system32\drivers\l1e51x86.sys 2010-12-12 10:09:21 ----R---- C:\WINDOWS\Alcmtr.exe 2010-12-12 10:09:20 ----R---- C:\WINDOWS\alcwzrd.exe 2010-12-12 10:09:18 ----D---- C:\Program Files\Realtek 2010-12-12 10:09:16 ----D---- C:\WINDOWS\system32\Atheros_L1e 2010-12-12 10:09:12 ----HD---- C:\Program Files\InstallShield Installation Information 2010-12-12 10:09:07 ----A---- C:\WINDOWS\HideWin.exe 2010-12-12 10:09:06 ----R---- C:\WINDOWS\RtlExUpd.dll 2010-12-12 10:09:01 ----D---- C:\Program Files\Common Files\InstallShield 2010-12-12 10:05:05 ----D---- C:\WINDOWS\system32\drivers\INF 2010-12-12 10:05:04 ----D---- C:\WINDOWS\system32\drivers\system32 2010-12-12 10:04:42 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-12-12 10:04:34 ----RA---- C:\WINDOWS\system32\CSVer.dll 2010-12-12 10:04:34 ----D---- C:\Program Files\Intel 2010-12-12 10:03:11 ----D---- C:\Intel 2010-12-12 09:59:49 ----D---- C:\WINDOWS\ASUSInstAll 2010-12-12 09:55:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec 2010-12-12 09:53:51 ----D---- C:\Program Files\Common Files\Symantec Shared 2010-12-12 09:52:35 ----A---- C:\WINDOWS\Ascd_log.ini 2010-12-12 09:52:15 ----RA---- C:\WINDOWS\system32\drivers\ASACPI.sys 2010-12-12 09:52:01 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2010-12-12 09:52:01 ----A---- C:\WINDOWS\Ascd_tmp.ini 2010-12-12 09:50:45 ----D---- C:\Program Files\GIGABYTE 2010-12-12 09:50:13 ----D---- C:\WINDOWS\system32\AGEIA 2010-12-12 09:50:13 ----D---- C:\Program Files\AGEIA Technologies 2010-12-12 09:49:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-12-12 09:48:30 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:46:41 ----D---- C:\WINDOWS\nview 2010-12-12 09:46:41 ----A---- C:\WINDOWS\system32\nvudisp.exe 2010-12-12 09:46:10 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2010-12-12 09:45:33 ----A---- C:\WINDOWS\system32\hpf3l70v.dll 2010-12-12 09:43:26 ----D---- C:\Program Files\Common Files\HP 2010-12-12 09:43:22 ----D---- C:\Program Files\Common Files\Hewlett-Packard 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hppldcoi.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposwia_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hpost_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposc_d02a.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\difxapi.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\hpzids01.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZius12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZipr12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZid412.sys 2010-12-12 09:43:17 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-12-12 09:43:13 ----D---- C:\Program Files\HP 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2010-12-12 09:43:11 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2010-12-12 09:43:03 ----HD---- C:\Config.Msi 2010-12-12 09:42:13 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:42:02 ----D---- C:\Program Files\Gadu-Gadu 10 2010-12-12 09:41:22 ----D---- C:\Program Files\WinRAR 2010-12-12 09:41:03 ----D---- C:\Program Files\uTorrent 2010-12-12 09:40:50 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent 2010-12-12 09:40:31 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla 2010-12-12 09:40:27 ----D---- C:\Program Files\Mozilla Firefox 2010-12-12 09:36:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Identities 2010-12-12 09:36:36 ----HD---- C:\Program Files\Uninstall Information 2010-12-12 09:36:34 ----ASH---- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini 2010-12-12 09:36:33 ----SD---- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft 2010-12-12 09:35:57 ----D---- C:\WINDOWS\SoftwareDistribution 2010-12-12 09:35:56 ----SD---- C:\WINDOWS\system32\Microsoft 2010-12-12 09:35:56 ----D---- C:\WINDOWS\Prefetch 2010-12-12 09:35:55 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-12-12 09:31:54 ----D---- C:\WINDOWS\system32\xircom 2010-12-12 09:31:54 ----D---- C:\Program Files\xerox 2010-12-12 09:31:54 ----D---- C:\Program Files\microsoft frontpage 2010-12-12 09:31:21 ----HD---- C:\WINDOWS\$hf_mig$ 2010-12-12 09:31:18 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-12-12 09:31:10 ----RASH---- C:\MSDOS.SYS 2010-12-12 09:31:10 ----RASH---- C:\IO.SYS 2010-12-12 09:31:10 ----A---- C:\WINDOWS\control.ini 2010-12-12 09:31:10 ----A---- C:\CONFIG.SYS 2010-12-12 09:31:10 ----A---- C:\AUTOEXEC.BAT 2010-12-12 09:30:58 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-12-12 09:30:28 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-12-12 09:30:26 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-12-12 09:30:23 ----HD---- C:\Program Files\WindowsUpdate 2010-12-12 09:30:20 ----D---- C:\Program Files\Usługi online 2010-12-12 09:30:07 ----D---- C:\WINDOWS\system32\DirectX 2010-12-12 09:30:00 ----A---- C:\WINDOWS\system32\atrace.dll 2010-12-12 09:29:58 ----A---- C:\WINDOWS\system32\desktop.ini 2010-12-12 09:29:58 ----A---- C:\WINDOWS\desktop.ini 2010-12-12 09:29:52 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-12-12 09:29:50 ----D---- C:\Program Files\Common Files\Services 2010-12-12 09:29:50 ----A---- C:\WINDOWS\system32\acctres.dll 2010-12-12 09:29:47 ----SD---- C:\WINDOWS\Tasks 2010-12-12 09:29:47 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-12-12 09:29:46 ----D---- C:\Program Files\Common Files\MSSoap 2010-12-12 09:29:40 ----D---- C:\WINDOWS\srchasst 2010-12-12 09:29:39 ----D---- C:\WINDOWS\system32\Macromed 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wups.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-12-12 09:29:36 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-12-12 09:29:33 ----D---- C:\Program Files\Movie Maker 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-12-12 09:29:13 ----D---- C:\WINDOWS\system32\Restore 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srclient.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\ils.dll 2010-12-12 09:29:11 ----A---- C:\WINDOWS\system32\msconf.dll 2010-12-12 09:29:09 ----D---- C:\Program Files\NetMeeting 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-12-12 09:29:08 ----A---- C:\WINDOWS\system32\inetres.dll 2010-12-12 09:29:07 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-12-12 09:29:06 ----D---- C:\Program Files\Outlook Express 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstask.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\isign32.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-12-12 09:29:00 ----D---- C:\Program Files\Common Files\System 2010-12-12 09:28:59 ----D---- C:\Program Files\Internet Explorer 2010-12-12 09:28:34 ----D---- C:\Program Files\ComPlus Applications 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vbaddin.ini 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vb.ini 2010-12-12 09:28:29 ----D---- C:\WINDOWS\Registration 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Player 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Connect 2 2010-12-12 09:28:13 ----D---- C:\Program Files\Messenger 2010-12-12 09:28:10 ----D---- C:\Program Files\MSN Gaming Zone 2010-12-12 09:28:10 ----A---- C:\WINDOWS\system32\write.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\hticons.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avwav.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-12-12 09:28:01 ----A---- C:\WINDOWS\system32\winchat.exe 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\getuname.dll 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\charmap.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\winmine.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\sol.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\calc.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tskill.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\shadow.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\reset.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\freecell.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\regini.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msg.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\logoff.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-12-12 09:27:47 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-12-12 09:27:45 ----D---- C:\Program Files\Windows NT 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\spider.exe 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tsgqec.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\aaclient.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-12-12 09:27:41 ----D---- C:\WINDOWS\system32\MsDtc 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-12-12 09:27:38 ----D---- C:\WINDOWS\system32\Com 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\stclient.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\colbact.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comuid.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-12-12 09:27:32 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys 2010-12-12 05:06:14 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2010-12-12 05:05:33 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2010-12-12 05:04:47 ----A---- C:\WINDOWS\system32\usbui.dll 2010-12-12 05:03:59 ----SHD---- C:\WINDOWS\Installer 2010-12-12 05:03:59 ----D---- C:\Program Files\Common Files\ODBC 2010-12-12 05:03:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-12-12 05:03:59 ----A---- C:\WINDOWS\ODBCINST.INI 2010-12-12 05:03:56 ----RD---- C:\Program Files 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\SpeechEngines 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\irclass.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-12-12 05:03:36 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\storprop.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\batt.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-12-12 05:03:29 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot2 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot 2010-12-12 05:01:56 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-12-12 05:01:39 ----SHD---- C:\System Volume Information 2010-12-12 05:01:39 ----D---- C:\Documents and Settings 2010-12-12 05:00:37 ----SH---- C:\boot.ini 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Offline Web Pages 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-12-12 04:57:41 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-12-12 04:57:41 ----RSD---- C:\WINDOWS\Fonts 2010-12-12 04:57:41 ----RD---- C:\WINDOWS\Web 2010-12-12 04:57:41 ----HD---- C:\WINDOWS\inf 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WinSxS 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WBEM 2010-12-12 04:57:41 ----D---- C:\WINDOWS\twain_32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Temp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wins 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wbem 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\usmt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\spool 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ShellExt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\Setup 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ras 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl-pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\oobe 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\npp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\inetsrv 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\IME 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\icsxml 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ias 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\export 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\etc 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\disdn 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\dhcp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3com_dmi 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3076 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\2052 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1054 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1045 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1042 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1041 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1037 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1033 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1031 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1028 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1025 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system 2010-12-12 04:57:41 ----D---- C:\WINDOWS\security 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Resources 2010-12-12 04:57:41 ----D---- C:\WINDOWS\repair 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Provisioning 2010-12-12 04:57:41 ----D---- C:\WINDOWS\PeerNet 2010-12-12 04:57:41 ----D---- C:\WINDOWS\pchealth 2010-12-12 04:57:41 ----D---- C:\WINDOWS\NLDRV 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Network Diagnostic 2010-12-12 04:57:41 ----D---- C:\WINDOWS\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msapps 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msagent 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Media 2010-12-12 04:57:41 ----D---- C:\WINDOWS\L2Schemas 2010-12-12 04:57:41 ----D---- C:\WINDOWS\java 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ime 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Help 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ehome 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Driver Cache 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Debug 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Cursors 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Connection Wizard 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\AppPatch 2010-12-12 04:57:41 ----D---- C:\WINDOWS\addins 2010-12-12 04:57:41 ----D---- C:\WINDOWS 2010-12-12 04:57:41 ----ASH---- C:\pagefile.sys ======List of files/folders modified in the last 1 months====== 2010-12-12 09:31:08 ----A---- C:\WINDOWS\win.ini 2010-12-12 09:30:51 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2010-12-12 05:03:55 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 KL1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2010-06-09 132184] R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2009-10-16 40448] R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2010-06-09 11352] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-12-12 475736] R2 ESLWireAC;ESLWireAC; \??\C:\WINDOWS\system32\drivers\ESLWireACD.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2009-10-16 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2009-10-16 10368] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-16 4747776] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472] R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-06-25 36864] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-10-16 12160] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-08-02 6121856] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 USBPNPA;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2009-12-22 1511936] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2009-10-16 26368] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-10-16 62336] S0 Si3114r5;Si3114r5; C:\WINDOWS\system32\drivers\Si3114r5.sys [2009-10-16 195072] S0 Si3124;Si3124; C:\WINDOWS\system32\drivers\Si3124.sys [2009-10-16 69248] S0 Si3132;Si3132; C:\WINDOWS\system32\drivers\Si3132.sys [2009-10-16 74672] S0 Si3132r5;Si3132r5; C:\WINDOWS\system32\drivers\Si3132r5.sys [2009-10-16 215856] S0 Si3531;Si3531; C:\WINDOWS\system32\drivers\Si3531.sys [2009-10-16 212520] S3 ESLvnic1;ESLvnic Virtual Network 32 Bit; C:\WINDOWS\system32\DRIVERS\ESLvnic.sys [2010-08-12 24504] S3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2010-05-07 32856] S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-10-16 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-10-16 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672] R2 AVP;Usługa Kaspersky Anti-Virus; C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-12-13 153376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-08-02 163908] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-09-24 820008] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-17 136176] S3 aspnet_state;„Usługa stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2009-10-16 14336] S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------[/log] [quote name='chmur0n' timestamp='1292721587' post='1145405'] Skan z usuwania OTL [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== Process rlvknlg.exe killed successfully! Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Cm108Sound deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RelevantKnowledge deleted successfully. C:\Program Files\RelevantKnowledge\rlvknlg.exe moved successfully. ========== FILES ========== C:\program files\RelevantKnowledge folder moved successfully. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RelevantKnowledge not found. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\SopCast\SopCast.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\SopCast\adv\SopAdver.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\RelevantKnowledge\rlvknlg.exe deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: chmur0n User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33230 bytes User: NEQ ->Temp folder emptied: 2786152768 bytes ->Temporary Internet Files folder emptied: 37881642 bytes ->Java cache emptied: 476359 bytes ->FireFox cache emptied: 56847453 bytes ->Flash cache emptied: 140241 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 2596 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 32069904 bytes RecycleBin emptied: 785185848 bytes Total Files Cleaned = 3 528,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 12192010_020243 Files\Folders moved on Reboot... File\Folder C:\WINDOWS\temp\kls165D.tmp not found! C:\WINDOWS\temp\Perflib_Perfdata_8c0.dat moved successfully. Registry entries deleted on Reboot... [/log] OTL.txt [log]OTL logfile created on: 2010-12-19 02:06:16 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 77,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 155,90 Gb Free Space | 63,85% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,45 Gb Free Space | 97,67% Space Free | Partition Type: NTFS Drive E: | 179,77 Mb Total Space | 69,55 Mb Free Space | 38,69% Space Free | Partition Type: FAT Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 1,86 Gb Total Space | 0,19 Gb Free Space | 10,46% Space Free | Partition Type: FAT Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-12-14 08:04:03 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-12-13 13:39:46 | 002,570,752 | ---- | M] (Turtle Entertainment GmbH) -- D:\EslWire\wire.exe PRC - [2010-12-13 00:33:01 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\avp.exe PRC - [2010-12-12 22:16:13 | 001,242,448 | ---- | M] (Valve Corporation) -- D:\Steam\Steam.exe PRC - [2010-12-12 09:41:03 | 000,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe PRC - [2010-12-08 11:53:26 | 000,136,192 | ---- | M] () -- D:\EslWire\pluginContainer\wire-plugin.exe PRC - [2010-12-08 11:53:20 | 000,388,096 | ---- | M] () -- D:\EslWire\dbus-daemon.exe PRC - [2010-12-08 11:53:20 | 000,024,480 | ---- | M] () -- D:\EslWire\inGame32.exe PRC - [2010-09-24 02:10:52 | 000,421,160 | ---- | M] (Apple Inc.) -- D:\iTunes\iTunesHelper.exe PRC - [2010-09-24 02:10:42 | 000,820,008 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe PRC - [2010-09-23 04:47:04 | 000,035,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe PRC - [2010-09-20 23:07:44 | 000,932,288 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010-07-04 20:51:26 | 000,017,408 | ---- | M] () -- D:\Unlocker\UnlockerAssistant.exe PRC - [2010-07-01 21:34:46 | 000,129,720 | ---- | M] (Kaspersky Lab ZAO) -- C:\Kaspersky Anti-Virus 2011\klwtblfs.exe PRC - [2009-10-16 18:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-10-16 18:45:00 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2009-10-16 18:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2009-10-16 18:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-10-16 18:45:00 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE PRC - [2009-10-16 18:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2009-10-16 18:45:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2009-10-16 18:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2009-10-16 18:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2009-10-16 18:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2009-10-16 18:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2009-10-16 18:45:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2008-08-02 05:20:00 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2008-07-23 17:04:20 | 005,625,344 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe PRC - [2008-07-16 12:14:00 | 016,806,400 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe PRC - [2008-06-26 15:49:44 | 001,940,992 | ---- | M] () -- C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe PRC - [2003-02-21 11:46:58 | 000,191,488 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-12-09 22:06:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe MOD - [2010-12-08 11:53:20 | 000,447,904 | ---- | M] () -- D:\EslWire\inGame32.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:43:34 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-27 07:29:09 | 008,492,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2010-07-04 22:32:36 | 000,004,608 | ---- | M] () -- D:\Unlocker\UnlockerHook.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-10-16 18:45:00 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-10-16 18:45:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-10-16 18:45:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-10-16 18:45:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2009-10-16 18:45:00 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-10-16 18:45:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-10-16 18:45:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-10-16 18:45:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2009-10-16 18:45:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2009-10-16 18:45:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2009-10-16 18:45:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2009-10-16 18:45:00 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-10-16 18:45:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-10-16 18:45:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-10-16 18:45:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2009-10-16 18:45:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2009-10-16 18:45:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2009-10-16 18:45:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2009-10-16 18:45:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2009-10-16 18:45:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2009-10-16 18:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-10-16 18:45:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-10-16 18:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2009-10-16 18:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-12-12 22:45:10 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Kaspersky Anti-Virus 2011\avp.exe -- (AVP) SRV - [2010-08-13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\SymIM.sys -- (SymIM) DRV - [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF) DRV - [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ESLWireACD.sys -- (ESLWireAC) DRV - [2010-08-12 14:10:00 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1) DRV - [2010-06-09 17:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2) DRV - [2010-06-09 17:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1) DRV - [2010-05-07 12:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5) DRV - [2009-12-22 01:53:00 | 001,511,936 | ---- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CM108.sys -- (USBPNPA) DRV - [2009-11-02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt) DRV - [2009-10-16 18:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-10-16 18:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531) DRV - [2009-10-16 18:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-10-16 18:45:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2009-10-16 18:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-10-16 18:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-10-16 18:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2008-08-02 05:20:00 | 006,121,856 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-07-16 11:52:00 | 004,747,776 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-06-25 17:47:00 | 000,036,864 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e) DRV - [2008-04-13 22:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2007-12-17 10:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-220523388-1425521274-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.1.400 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 3 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.2 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-14 08:24:43 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-16 09:06:33 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Kaspersky Anti-Virus 2011\THBExt [2010-12-12 21:36:06 | 000,000,000 | ---D | M] [2010-12-12 09:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Extensions [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions [2010-12-12 21:43:51 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-12-12 20:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla\Firefox\Profiles\5iji4ha2.default\extensions\firefox@tvunetworks.com [2010-12-18 15:33:02 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-12-12 20:27:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru [2010-12-12 20:27:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2010-10-08 14:03:06 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-09-13 16:29:30 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll [2010-07-12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010-12-14 08:04:07 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-12-14 08:04:07 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-12-14 08:04:07 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-12-14 08:04:07 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-12-14 08:04:07 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-12-14 08:04:07 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-10-16 18:45:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVP] C:\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [Six Engine] C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe () O4 - HKLM..\Run: [UnlockerAssistant] D:\Unlocker\UnlockerAssistant.exe () O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [ESL Wire] D:\EslWire\wire.exe (Turtle Entertainment GmbH) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [Steam] D:\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-220523388-1425521274-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 217.30.129.149 217.30.137.200 O20 - AppInit_DLLs: (C:\KASPER~1\mzvkbd3.dll) - C:\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: LanmanWorkstation - File not found NetSvcs: Messenger - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: Netlogon - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: Browser - Service SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: LanmanWorkstation - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOS - Service SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Netlogon - Service SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NtLmSsp - Service SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-12-19 02:07:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-12-19 02:02:43 | 000,000,000 | ---D | C] -- C:\_OTL [2010-12-19 00:46:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\BLUS30418 [2010-12-18 21:32:18 | 000,000,000 | --SD | C] -- C:\HLSW [2010-12-18 21:32:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-12-18 20:44:37 | 000,000,000 | ---D | C] -- C:\rsit [2010-12-17 23:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:42:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Google [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Temp [2010-12-17 22:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-12-17 22:41:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Google [2010-12-16 21:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\ESL Match Media [2010-12-16 17:15:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-12-16 16:48:05 | 008,146,944 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM108.cpl [2010-12-16 16:48:05 | 000,294,912 | ---- | C] (C-Media) -- C:\WINDOWS\System32\CM108rm.exe [2010-12-16 16:47:37 | 000,307,200 | ---- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi108Uninstall.exe [2010-12-16 16:47:29 | 001,511,936 | ---- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM108.sys [2010-12-16 16:47:29 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr108.dll [2010-12-16 16:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\SteelSeries USB Soundcard v1.20 [2010-12-16 09:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-12-16 09:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-12-16 09:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Adobe [2010-12-15 02:54:24 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\PrivacIE [2010-12-14 03:01:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010-12-14 03:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010-12-13 18:07:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-12-13 14:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-13 14:54:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Recent [2010-12-13 14:53:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-12-13 07:56:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\KONAMI [2010-12-13 07:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 03:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-12-13 00:40:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer [2010-12-13 00:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2010-12-13 00:40:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-13 00:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010-12-13 00:39:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-12-13 00:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple [2010-12-13 00:39:28 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2010-12-13 00:38:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple [2010-12-13 00:32:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-12-13 00:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Sun [2010-12-13 00:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo [2010-12-12 23:27:13 | 000,841,912 | ---- | C] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [2010-12-12 23:26:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC [2010-12-12 23:25:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\ESL Wire Game Client [2010-12-12 23:25:03 | 000,024,504 | ---- | C] (Turtle Entertainment GmbH) -- C:\WINDOWS\System32\drivers\ESLvnic.sys [2010-12-12 23:24:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works [2010-12-12 23:24:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2010-12-12 23:24:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2010-12-12 23:22:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010-12-12 23:22:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft Help [2010-12-12 23:22:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-12-12 23:22:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help [2010-12-12 23:21:52 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010-12-12 23:12:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Gry [2010-12-12 21:36:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab [2010-12-12 21:35:53 | 000,000,000 | ---D | C] -- C:\Kaspersky Anti-Virus 2011 [2010-12-12 21:35:44 | 000,475,736 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 21:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-12-12 21:05:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010-12-12 21:05:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2010-12-12 21:05:26 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-12-12 21:03:51 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010-12-12 21:03:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010-12-12 20:57:25 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks [2010-12-12 20:56:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\LocalLow [2010-12-12 20:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\LocalLow [2010-12-12 20:56:33 | 000,000,000 | ---D | C] -- C:\Program Files\TVUPlayer [2010-12-12 20:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 20:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-12-12 20:30:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje wideo [2010-12-12 20:30:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Muzyka [2010-12-12 20:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\Programy [2010-12-12 20:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2010-12-12 20:25:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\chmur0n [2010-12-12 20:22:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Pobieranie [2010-12-12 20:19:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-12-12 12:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\cache [2010-12-12 12:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\PES 2011 Patch 0.1 [2010-12-12 12:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit\pes [2010-12-12 12:32:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR [2010-12-12 10:24:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Downloads [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia [2010-12-12 10:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe [2010-12-12 10:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS [2010-12-12 10:11:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-12-12 10:09:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010-12-12 10:09:21 | 000,036,864 | R--- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\l1e51x86.sys [2010-12-12 10:09:20 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010-12-12 10:09:18 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010-12-12 10:09:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Atheros_L1e [2010-12-12 10:09:12 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-12-12 10:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\INF [2010-12-12 10:05:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32\DRIVERS [2010-12-12 10:05:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\system32 [2010-12-12 10:04:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-12-12 10:04:34 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll [2010-12-12 10:04:34 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2010-12-12 10:03:11 | 000,000,000 | ---D | C] -- C:\Intel [2010-12-12 09:59:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ASUSInstAll [2010-12-12 09:55:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec [2010-12-12 09:53:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2010-12-12 09:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2010-12-12 09:50:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA [2010-12-12 09:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-12-12 09:48:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:46:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2010-12-12 09:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-12-12 09:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-12-12 09:43:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010-12-12 09:43:13 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010-12-12 09:43:03 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2010-12-12 09:42:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-12 09:42:02 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-12-12 09:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-12-12 09:41:03 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010-12-12 09:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-12-12 09:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla [2010-12-12 09:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-12-12 09:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Identities [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moje obrazy [2010-12-12 09:36:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty\Moja muzyka [2010-12-12 09:36:36 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\SendTo [2010-12-12 09:36:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\NEQ\Dane aplikacji [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Ulubione [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Moje dokumenty [2010-12-12 09:36:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\NEQ\Menu Start [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\IETldCache [2010-12-12 09:36:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\NEQ\Cookies [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Ustawienia lokalne [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\Szablony [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\PrintHood [2010-12-12 09:36:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\NEQ\NetHood [2010-12-12 09:36:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NEQ\Pulpit [2010-12-12 09:35:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-12-12 09:35:56 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-12-12 09:35:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:35:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-12-12 09:33:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-12-12 09:32:44 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-12-12 09:32:44 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-12-12 09:32:07 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-12-12 09:31:54 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-12-12 09:31:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-12-12 09:30:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-12-12 09:30:23 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-12-12 09:30:20 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-12-12 09:30:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-12-12 09:29:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-12-12 09:29:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-12-12 09:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-12-12 09:29:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-12-12 09:29:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-12-12 09:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-12-12 09:29:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-12-12 09:29:09 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-12-12 09:29:06 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-12-12 09:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-12-12 09:28:59 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-12-12 09:28:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-12-12 09:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-12-12 09:28:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-12-12 09:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-12-12 09:28:13 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-12-12 09:28:10 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-12-12 09:27:46 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-12-12 09:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-12-12 09:27:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-12-12 09:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-12-12 09:27:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-12-12 05:04:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-12-12 05:03:59 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-12-12 05:03:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-12-12 05:03:56 | 000,000,000 | R--D | C] -- C:\Program Files [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-12-12 05:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-12-12 05:03:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-12-12 05:03:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-12-12 05:03:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-12-12 05:02:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-12-12 05:01:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-12-12 05:01:56 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-12-12 05:01:39 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-12-12 05:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages [2010-12-12 04:57:41 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-12-12 04:57:41 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-12-12 04:57:41 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-12-12 04:57:41 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-12-12 04:57:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-12-12 04:57:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-12-19 02:04:50 | 000,198,703 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-19 02:04:48 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-19 02:04:48 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-19 02:04:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-12-19 02:03:32 | 001,572,864 | -H-- | M] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-19 02:03:30 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-19 02:02:48 | 001,087,636 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-19 02:02:48 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-12-19 02:02:48 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-12-19 02:02:48 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-12-19 02:02:48 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-12-19 01:47:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-19 00:30:56 | 000,008,372 | ---- | M] () -- C:\WINDOWS\System\Cm108.ini [2010-12-18 21:32:20 | 000,000,466 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\HLSW.lnk [2010-12-18 20:52:52 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-17 18:26:28 | 000,029,608 | ---- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-17 08:03:20 | 000,156,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-17 07:49:39 | 006,380,844 | -H-- | M] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-16 16:48:05 | 000,000,062 | ---- | M] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 03:00:58 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-12-15 21:38:48 | 000,215,317 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-13 14:53:56 | 000,005,710 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:21:39 | 000,013,614 | ---- | M] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 22:45:10 | 000,475,736 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2010-12-12 22:45:09 | 000,114,243 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 22:45:09 | 000,097,859 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 10:26:01 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:50 | 000,030,543 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 10:11:30 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | M] () -- C:\WINDOWS\setup.iss [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:00 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:04:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:04:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:04:45 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:04:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:55:03 | 000,010,563 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:55:03 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:14 | 000,030,151 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:50:45 | 000,001,803 | ---- | M] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:45:57 | 000,142,957 | ---- | M] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:40:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:36:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-12-12 09:33:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-12-12 09:31:10 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:08 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010-12-12 09:31:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:58 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:28:41 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-12-12 09:26:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-12-12 05:03:55 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010-12-08 11:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) -- C:\WINDOWS\System32\drivers\ESLWireACD.sys [2010-11-29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-11-29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-12-18 21:32:20 | 000,000,466 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\HLSW.lnk [2010-12-17 22:42:01 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-12-17 22:42:00 | 000,001,026 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-12-16 16:48:05 | 000,008,372 | ---- | C] () -- C:\WINDOWS\System\Cm108.ini [2010-12-16 16:48:05 | 000,000,062 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfl [2010-12-16 16:47:37 | 000,129,656 | ---- | C] () -- C:\WINDOWS\jack.bmp [2010-12-16 16:47:37 | 000,000,939 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfg [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\tray.ico [2010-12-16 16:47:36 | 000,073,070 | -H-- | C] () -- C:\WINDOWS\control.ico [2010-12-16 16:47:35 | 000,001,318 | ---- | C] () -- C:\WINDOWS\cm108.ini [2010-12-15 21:38:18 | 000,215,317 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\IMG069.jpg [2010-12-14 03:00:20 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-12-13 15:27:50 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-13 14:53:53 | 000,005,710 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LuUninstall.LiveUpdate [2010-12-13 00:02:17 | 000,013,614 | ---- | C] () -- C:\Documents and Settings\NEQ\Pulpit\Nowy Dokument programu Microsoft Office Word.docx [2010-12-12 21:36:30 | 000,114,243 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2010-12-12 21:36:30 | 000,097,859 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2010-12-12 20:56:51 | 000,029,608 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-12-12 10:26:01 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-12-12 10:11:40 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010-12-12 10:11:40 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010-12-12 10:11:34 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2010-12-12 10:11:34 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2010-12-12 10:11:30 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-12-12 10:11:30 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-12-12 10:11:23 | 000,000,674 | ---- | C] () -- C:\WINDOWS\setup.iss [2010-12-12 10:10:08 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss [2010-12-12 10:10:06 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem17.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem16.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem15.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem14.inf [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.PNF [2010-12-12 10:05:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\INF\oem13.inf [2010-12-12 09:54:09 | 000,010,563 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2010-12-12 09:54:09 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2010-12-12 09:52:35 | 000,030,543 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2010-12-12 09:52:15 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010-12-12 09:52:01 | 000,030,151 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-12-12 09:52:01 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010-12-12 09:50:45 | 000,001,803 | ---- | C] () -- C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart\GIGABYTE Gamer HUD.lnk [2010-12-12 09:47:30 | 006,380,844 | -H-- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-12-12 09:47:20 | 000,198,703 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2010-12-12 09:46:41 | 000,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu [2010-12-12 09:42:46 | 000,142,957 | ---- | C] () -- C:\WINDOWS\hpoins44.dat [2010-12-12 09:42:46 | 000,000,512 | ---- | C] () -- C:\WINDOWS\hpomdl44.dat [2010-12-12 09:42:46 | 000,000,333 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-12-12 09:40:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-12-12 09:39:49 | 000,000,080 | ---- | C] () -- C:\Documents and Settings\NEQ\Ustawienia lokalne\Dane aplikacji\FASTWiz.log [2010-12-12 09:36:34 | 000,053,248 | -H-- | C] () -- C:\Documents and Settings\NEQ\ntuser.dat.LOG [2010-12-12 09:36:34 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\NEQ\ntuser.ini [2010-12-12 09:36:34 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini [2010-12-12 09:36:33 | 001,572,864 | -H-- | C] () -- C:\Documents and Settings\NEQ\NTUSER.DAT [2010-12-12 09:35:56 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010-12-12 09:33:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-12-12 09:32:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-12-12 09:32:55 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-12-12 09:32:41 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-12-12 09:32:41 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-12-12 09:32:30 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-12-12 09:32:30 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-12-12 09:32:27 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-12-12 09:32:27 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-12-12 09:32:26 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-12-12 09:32:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-12-12 09:32:16 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-12-12 09:32:14 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-12-12 09:32:08 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-12-12 09:32:07 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-12-12 09:32:07 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-12-12 09:32:06 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-12-12 09:32:06 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-12-12 09:32:06 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-12-12 09:32:06 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-12-12 09:32:06 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-12-12 09:32:05 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-12-12 09:32:05 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-12-12 09:32:05 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-12-12 09:32:05 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-12-12 09:32:05 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-12-12 09:32:05 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-12-12 09:32:05 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-12-12 09:32:05 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-12-12 09:32:04 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-12-12 09:32:04 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-12-12 09:32:04 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-12-12 09:32:04 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-12-12 09:31:10 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-12-12 09:31:05 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-12-12 09:31:05 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-12-12 09:31:04 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-12-12 09:30:28 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-12-12 09:30:26 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-12-12 09:30:13 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-12-12 09:29:58 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-12-12 09:29:52 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-12-12 09:29:15 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-12-12 09:28:41 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-12-12 09:28:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-12-12 09:28:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-12-12 09:27:57 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-12-12 09:27:57 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-12-12 09:27:57 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-12-12 09:27:57 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-12-12 09:27:57 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-12-12 09:27:56 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-12-12 09:27:56 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-12-12 09:27:56 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-12-12 09:27:56 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-12-12 09:27:56 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-12-12 09:27:56 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-12-12 09:27:56 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-12-12 09:27:55 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-12-12 09:27:55 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-12-12 09:27:55 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-12-12 09:27:55 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-12-12 09:27:55 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-12-12 09:27:55 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-12-12 09:27:55 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-12-12 09:27:53 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-12-12 09:27:53 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-12-12 09:27:53 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-12-12 09:27:52 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-12-12 09:27:52 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-12-12 09:27:47 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-12-12 05:03:59 | 001,087,636 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-12 05:03:59 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-12-12 05:03:57 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-12-12 05:03:57 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-12-12 05:03:57 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-12-12 05:03:57 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-12-12 05:03:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-12-12 05:03:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-12-12 05:03:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-12-12 05:03:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-12-12 05:03:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-12-12 05:03:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-12-12 05:03:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-12-12 05:03:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-12-12 05:03:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-12-12 05:03:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-12-12 05:03:36 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-12-12 05:03:29 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-12-12 05:02:12 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-12-12 05:02:12 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-12-12 05:02:12 | 001,089,883 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntprint.cat [2010-12-12 05:02:12 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-12-12 05:02:12 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-12-12 05:02:12 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-12-12 05:02:12 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-12-12 05:02:12 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-12-12 05:02:12 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-12-12 05:02:12 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-12-12 05:02:12 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-12-12 05:02:12 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-12-12 05:02:12 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-12-12 05:02:12 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-12-12 05:02:12 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-12-12 05:02:12 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-12-12 05:02:12 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-12-12 05:02:12 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-12-12 05:01:38 | 000,156,360 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-12 05:00:37 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-12-12 05:00:35 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2009-10-16 18:45:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2009-10-16 18:45:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2009-10-16 18:45:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2009-10-16 18:45:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2009-10-16 18:45:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2009-10-16 18:45:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2009-10-16 18:45:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2009-10-16 18:45:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2009-10-16 18:45:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2009-10-16 18:45:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2009-10-16 18:45:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2009-10-16 18:45:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2009-10-16 18:45:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2009-10-16 18:45:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2009-10-16 18:45:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2009-10-16 18:45:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2009-10-16 18:45:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2009-10-16 18:45:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2009-10-16 18:45:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2009-10-16 18:45:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2009-10-16 18:45:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2009-10-16 18:45:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2009-10-16 18:45:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2009-10-16 18:45:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2009-10-16 18:45:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2009-10-16 18:45:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2009-10-16 18:45:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2009-10-16 18:45:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2009-10-16 18:45:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2009-10-16 18:45:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2009-10-16 18:45:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2009-10-16 18:45:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2009-10-16 18:45:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2009-10-16 18:45:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2009-10-16 18:45:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2009-10-16 18:45:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2009-10-16 18:45:00 | 000,000,507 | ---- | C] () -- C:\WINDOWS\win.ini [2009-10-16 18:45:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2009-10-16 18:45:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2008-08-02 05:20:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-08-02 05:20:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-08-02 05:20:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-08-02 05:20:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-08-02 05:20:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-06-11 09:02:34 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-06-11 09:02:32 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-06-05 08:58:26 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2001-10-26 16:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [color=#E56717]========== LOP Check ==========[/color] [2010-12-13 14:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2010-12-12 09:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-13 07:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2010-12-13 00:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-18 23:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP [2010-12-12 21:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 [2010-12-18 21:36:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW [2010-12-19 02:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-12-12 09:26:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2009-10-16 18:45:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-12-12 09:31:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-12-12 09:31:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2009-10-16 18:45:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009-10-16 18:45:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-12-19 02:04:43 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2010-12-12 10:10:08 | 000,000,522 | ---- | M] () -- C:\RHDSetup.log [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys [2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2009-10-16 18:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2009-10-16 18:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-10-16 18:45:00 | 017,820,258 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2009-10-16 18:45:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2009-10-16 18:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2009-10-16 18:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009-10-16 18:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2009-10-16 18:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2009-10-16 18:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] Extras.txt [log]OTL Extras logfile created on: 2010-12-19 02:06:16 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 77,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 244,14 Gb Total Space | 155,90 Gb Free Space | 63,85% Space Free | Partition Type: NTFS Drive D: | 221,61 Gb Total Space | 216,45 Gb Free Space | 97,67% Space Free | Partition Type: NTFS Drive E: | 179,77 Mb Total Space | 69,55 Mb Free Space | 38,69% Space Free | Partition Type: FAT Drive G: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 1,86 Gb Total Space | 0,19 Gb Free Space | 10,46% Space Free | Partition Type: FAT Computer Name: NEQ-FBF2E6E4BA3 | User Name: NEQ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-220523388-1425521274-682003330-1003\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe" = C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień -- File not found "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\TVUPlayer\TVUPlayer.exe" = C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component -- (TVU networks) "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe" = D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player -- () "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "D:\iTunes\iTunes.exe" = D:\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.) "D:\EslWire\wire.exe" = D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "D:\mIRC\mirc.exe" = D:\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google) "C:\HLSW\hlsw.exe" = C:\HLSW\hlsw.exe:*:Enabled:HLSW Application -- (Stripf Software) "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe" = D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM) "{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox "{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4}" = iTunes "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{5546F4E9-B0F4-4F54-B949-2AB006C9284F}" = DJ_AIO_06_F2400_SW_Min "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}" = 32 Bit HP CIO Components Installer "{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "{699BAC7F-DC10-4709-97D8-45379301BBE7}" = NVIDIA PhysX v8.08.01 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{819CA3BC-2FF8-4811-B42F-421F7BFD3559}" = HP Deskjet F2400 All-in-One Driver 14.0 Rel. 6 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{84FB24B0-9973-4370-B107-7C38DDF20ABC}" = Gamer HUD "{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}" = EPU-4 Engine "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.0 - Polish "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{C768790F-04FB-11E0-9B2C-001AA037B01E}" = Google Earth "{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}" = Apple Mobile Device Support "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AIMP2" = AIMP2 "CCleaner" = CCleaner "CWK" = CWK (Czasowy Wyłącznik Komputera) "ESL Wire_is1" = ESL Wire 1.9.1 "Gadu-Gadu 10" = Gadu-Gadu 10 "Generic USB 108 Sound" = SteelSeries USB Soundcard v1.20 "HLSW_is1" = HLSW v1.3.3.7b "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Anti-Virus 2011 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "mIRC" = mIRC "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "Mp3 Knife_is1" = Mp3 Knife 3.2 "NVIDIA Drivers" = NVIDIA Drivers "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation) "SopCast" = SopCast 3.2.9 "Steam App 10" = Counter-Strike "Steam App 2130" = Dark Messiah Might and Magic Multi-Player "TVUPlayer" = TVUPlayer 2.5.3.1 "Unlocker" = Unlocker 1.9.0 "uTorrent" = µTorrent "WinRAR archiver" = Archiwizator WinRAR "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-12-16 11:55:19 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 02:45:50 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 03:03:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 04:09:08 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:10:48 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-17 18:24:01 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 04:58:32 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 15:40:02 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-12-18 15:46:09 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL en.exe, wersja 3.2.17.3, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2010-12-18 21:04:59 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PerfNet | ID = 2002 Description = Nie można otworzyć usługi przekierowania. Dane wydajności przekierowania nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. [ System Events ] Error - 2010-12-18 04:58:31 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 15:40:00 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 15:40:06 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7031 Description = Usługa Apple Mobile Device niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa Java Quick Starter niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:02:44 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:02:45 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7034 Description = Usługa Usługa iPod niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-12-18 21:04:58 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7023 Description = Usługa Usługi IPSEC zakończyła działanie; wystąpił następujący błąd: %%1747 Error - 2010-12-18 21:05:01 | Computer Name = NEQ-FBF2E6E4BA3 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Si3124 Si3132 Si3132r5 Si3531 Error - 2010-12-18 21:07:29 | Computer Name = NEQ-FBF2E6E4BA3 | Source = PlugPlayManager | ID = 12 Description = Urządzenie 'HL-DT-ST DVD-RAM GH22LS30' (IDE\CdRomHL-DT-ST_DVD-RAM_GH22LS30_______________1.01____\5&5c6cfd6&0&0.0.0) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. < End of report > [/log] RSIT [log]Logfile of random's system information tool 1.08 (written by random/random) Run by NEQ at 2010-12-19 02:09:57 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 160 GB (64%) free of 250 GB Total RAM: 3327 MB (76% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 02:10:00, on 2010-12-19 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe C:\Kaspersky Anti-Virus 2011\avp.exe D:\Unlocker\UnlockerAssistant.exe D:\iTunes\iTunesHelper.exe C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\WINDOWS\system32\ctfmon.exe C:\Kaspersky Anti-Virus 2011\avp.exe D:\Steam\steam.exe C:\Program Files\Java\jre6\bin\jqs.exe D:\EslWire\wire.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe D:\EslWire\inGame32.exe C:\Program Files\Mozilla Firefox\firefox.exe D:\EslWire\dbus-daemon.exe D:\EslWire\pluginContainer\wire-plugin.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\OTL en.exe C:\Kaspersky Anti-Virus 2011\klwtblfs.exe C:\WINDOWS\system32\wuauclt.exe D:\Ventrilo\Ventrilo.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\RSIT.exe C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\trend micro\NEQ.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Kaspersky Anti-Virus 2011\ievkbd.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe" -r O4 - HKLM\..\Run: [AVP] "C:\Kaspersky Anti-Virus 2011\avp.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "D:\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [GammaAdjuster] C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent O4 - HKCU\..\Run: [ESL Wire] "D:\EslWire\wire.exe" --tray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: GIGABYTE Gamer HUD.lnk = C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O20 - AppInit_DLLs: C:\KASPER~1\mzvkbd3.dll O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Usługa Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Kaspersky Anti-Virus 2011\avp.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 7646 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Kaspersky Anti-Virus 2011\ievkbd.dll [2010-07-01 68280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-13 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Kaspersky Anti-Virus 2011\klwtbbho.dll [2010-07-01 191160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-12-13 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-08-02 13570048] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-08-02 86016] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-16 16806400] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344] "Six Engine"=C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe [2008-07-23 5625344] "AVP"=C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] "UnlockerAssistant"=D:\Unlocker\UnlockerAssistant.exe [2010-07-04 17408] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888] "iTunesHelper"=D:\iTunes\iTunesHelper.exe [2010-09-24 421160] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "GammaAdjuster"=C:\Documents and Settings\NEQ\Pulpit\chmur0n\GammaAdjuster\GammaAdjuster.exe [2003-02-21 191488] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes' Anti-Malware"=C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Malwarebytes' Anti-Malware\mbamgui.exe [2010-11-29 443728] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2009-10-16 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-12 328056] "Steam"=D:\Steam\steam.exe [2010-12-12 1242448] "ESL Wire"=D:\EslWire\wire.exe [2010-12-13 2570752] C:\Documents and Settings\NEQ\Menu Start\Programy\Autostart GIGABYTE Gamer HUD.lnk - C:\Program Files\GIGABYTE\Gamer HUD\HUD.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\KASPER~1\mzvkbd3.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2010-07-01 228024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2009-10-16 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe"="C:\Documents and Settings\NEQ\Ustawienia lokalne\Temp\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" "D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe"="D:\Steam\SteamApps\chmur0n\dark messiah might and magic multi-player\runme.exe:*:Enabled:Dark Messiah Might and Magic Multi-Player" "C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "D:\iTunes\iTunes.exe"="D:\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011" "D:\EslWire\wire.exe"="D:\EslWire\wire.exe:*:Enabled:ESL Wire Gaming Client" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "D:\mIRC\mirc.exe"="D:\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary" "C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth" "C:\HLSW\hlsw.exe"="C:\HLSW\hlsw.exe:*:Enabled:HLSW Application" "D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe"="D:\Steam\SteamApps\chmur0n\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" ======List of files/folders created in the last 1 months====== 2010-12-19 02:08:04 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Malwarebytes 2010-12-19 02:08:00 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2010-12-19 02:07:59 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2010-12-19 02:07:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2010-12-19 02:02:43 ----D---- C:\_OTL 2010-12-18 21:32:18 ----SD---- C:\HLSW 2010-12-18 21:32:18 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\HLSW 2010-12-18 20:44:37 ----D---- C:\rsit 2010-12-18 20:44:37 ----D---- C:\Program Files\trend micro 2010-12-18 05:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2010-12-17 22:42:59 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Google 2010-12-17 22:41:57 ----D---- C:\Program Files\Google 2010-12-16 17:15:32 ----D---- C:\WINDOWS\pss 2010-12-16 16:48:05 ----A---- C:\WINDOWS\system32\CM108rm.exe 2010-12-16 16:48:05 ----A---- C:\WINDOWS\Cm108.ini.cfl 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cmi108Uninstall.exe 2010-12-16 16:47:37 ----A---- C:\WINDOWS\Cm108.ini.cfg 2010-12-16 16:47:35 ----A---- C:\WINDOWS\cm108.ini 2010-12-16 16:47:29 ----D---- C:\Program Files\SteelSeries USB Soundcard v1.20 2010-12-16 16:47:29 ----A---- C:\WINDOWS\system32\drivers\CM108.sys 2010-12-16 16:25:12 ----A---- C:\WINDOWS\system32\hidserv.dll 2010-12-16 16:25:03 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2010-12-16 09:06:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Common Files\Adobe 2010-12-16 09:06:23 ----D---- C:\Program Files\Adobe 2010-12-16 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$ 2010-12-16 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$ 2010-12-16 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$ 2010-12-16 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$ 2010-12-16 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$ 2010-12-16 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$ 2010-12-16 03:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$ 2010-12-15 08:26:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-12-15 08:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-12-14 03:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$ 2010-12-14 03:05:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$ 2010-12-14 03:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$ 2010-12-14 03:05:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$ 2010-12-14 03:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-12-14 03:05:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-12-14 03:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$ 2010-12-14 03:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-12-14 03:04:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$ 2010-12-14 03:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-12-14 03:04:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-12-14 03:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$ 2010-12-14 03:04:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-12-14 03:04:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2010-12-14 03:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-12-14 03:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$ 2010-12-14 03:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-12-14 03:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-12-14 03:04:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$ 2010-12-14 03:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-12-14 03:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-12-14 03:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$ 2010-12-14 03:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$ 2010-12-14 03:03:30 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-12-14 03:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-12-14 03:03:23 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-12-14 03:03:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$ 2010-12-14 03:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-12-14 03:03:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-12-14 03:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-12-14 03:01:10 ----D---- C:\WINDOWS\ie8updates 2010-12-14 03:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-12-14 03:01:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2010-12-14 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-12-14 03:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$ 2010-12-14 03:00:49 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-12-14 03:00:46 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-12-14 03:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-12-14 03:00:40 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-12-14 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$ 2010-12-14 03:00:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$ 2010-12-14 03:00:32 ----D---- C:\Program Files\MSXML 4.0 2010-12-14 03:00:26 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-12-14 03:00:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-12-14 03:00:20 ----A---- C:\WINDOWS\imsins.BAK 2010-12-14 03:00:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$ 2010-12-13 18:07:42 ----D---- C:\WINDOWS\Sun 2010-12-13 14:55:05 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire 2010-12-13 14:53:17 ----D---- C:\WINDOWS\system32\appmgmt 2010-12-13 07:51:28 ----D---- C:\Program Files\KONAMI 2010-12-13 07:51:28 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI 2010-12-13 03:03:08 ----N---- C:\WINDOWS\system32\browserchoice.exe 2010-12-13 03:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-12-13 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-12-13 03:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-12-13 03:00:28 ----D---- C:\WINDOWS\system32\PreInstall 2010-12-13 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-12-13 03:00:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-12-13 03:00:18 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-12-13 00:40:44 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Apple Computer 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2010-12-13 00:40:36 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys 2010-12-13 00:40:13 ----D---- C:\Program Files\iPod 2010-12-13 00:40:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2010-12-13 00:39:39 ----D---- C:\Program Files\QuickTime 2010-12-13 00:39:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer 2010-12-13 00:39:28 ----D---- C:\Program Files\Apple Software Update 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\usbaaplrc.dll 2010-12-13 00:39:18 ----A---- C:\WINDOWS\system32\drivers\usbaapl.sys 2010-12-13 00:38:58 ----D---- C:\Program Files\Common Files\Apple 2010-12-13 00:38:58 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaws.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\javaw.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\java.exe 2010-12-13 00:33:10 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-12-13 00:32:59 ----D---- C:\Program Files\Java 2010-12-13 00:32:16 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Sun 2010-12-13 00:03:26 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Ventrilo 2010-12-12 23:27:13 ----A---- C:\WINDOWS\system32\drivers\ESLWireACD.sys 2010-12-12 23:26:15 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\mIRC 2010-12-12 23:25:03 ----A---- C:\WINDOWS\system32\drivers\ESLvnic.sys 2010-12-12 23:24:57 ----A---- C:\WINDOWS\system32\msonpmon.dll 2010-12-12 23:24:39 ----D---- C:\Program Files\Microsoft Works 2010-12-12 23:24:31 ----D---- C:\Program Files\Common Files\DESIGNER 2010-12-12 23:24:19 ----D---- C:\Program Files\Microsoft.NET 2010-12-12 23:22:49 ----D---- C:\WINDOWS\SHELLNEW 2010-12-12 23:22:36 ----D---- C:\Program Files\Microsoft Office 2010-12-12 23:22:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2010-12-12 23:21:52 ----RHD---- C:\MSOCache 2010-12-12 21:36:09 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-12-12 21:35:53 ----D---- C:\Kaspersky Anti-Virus 2011 2010-12-12 21:35:53 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab 2010-12-12 21:35:44 ----A---- C:\WINDOWS\system32\drivers\klif.sys 2010-12-12 21:09:01 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$ 2010-12-12 21:07:41 ----D---- C:\Program Files\MSBuild 2010-12-12 21:05:55 ----D---- C:\WINDOWS\system32\XPSViewer 2010-12-12 21:05:54 ----D---- C:\WINDOWS\system32\en-us 2010-12-12 21:05:26 ----D---- C:\Program Files\Reference Assemblies 2010-12-12 21:05:02 ----N---- C:\WINDOWS\system32\spmsg2.dll 2010-12-12 21:05:00 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-12-12 21:03:51 ----RSD---- C:\WINDOWS\assembly 2010-12-12 21:03:38 ----D---- C:\WINDOWS\Microsoft.NET 2010-12-12 20:57:25 ----D---- C:\Program Files\SopCast 2010-12-12 20:56:51 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks 2010-12-12 20:56:33 ----D---- C:\Program Files\TVUPlayer 2010-12-12 20:38:19 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\AIMP 2010-12-12 20:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$ 2010-12-12 20:28:30 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files 2010-12-12 20:19:33 ----SHD---- C:\RECYCLER 2010-12-12 12:54:42 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2010-12-12 12:54:41 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2010-12-12 12:54:40 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2010-12-12 12:54:39 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2010-12-12 12:54:38 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2010-12-12 12:54:37 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2010-12-12 12:54:36 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2010-12-12 12:54:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2010-12-12 12:54:34 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2010-12-12 12:32:20 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\WinRAR 2010-12-12 10:26:50 ----A---- C:\WINDOWS\system32\h323log.txt 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Macromedia 2010-12-12 10:23:14 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Adobe 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\drivers\AsIO.sys 2010-12-12 10:11:40 ----RA---- C:\WINDOWS\system32\AsIO.dll 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp64.sys 2010-12-12 10:11:34 ----A---- C:\WINDOWS\system32\drivers\AsInsHelp32.sys 2010-12-12 10:11:33 ----D---- C:\Program Files\ASUS 2010-12-12 10:11:26 ----D---- C:\WINDOWS\system32\Lang 2010-12-12 10:10:06 ----R---- C:\WINDOWS\system32\ChCfg.exe 2010-12-12 10:10:05 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2010-12-12 10:10:04 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2010-12-12 10:10:03 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2010-12-12 10:10:02 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2010-12-12 10:10:01 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2010-12-12 10:10:00 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2010-12-12 10:09:59 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2010-12-12 10:09:58 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010-12-12 10:09:57 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2010-12-12 10:09:56 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010-12-12 10:09:53 ----D---- C:\WINDOWS\system32\RTCOM 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-12-12 10:09:52 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2010-12-12 10:09:51 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2010-12-12 10:09:49 ----R---- C:\WINDOWS\SoundMan.exe 2010-12-12 10:09:48 ----R---- C:\WINDOWS\SkyTel.exe 2010-12-12 10:09:46 ----R---- C:\WINDOWS\RtlUpd.exe 2010-12-12 10:09:43 ----R---- C:\WINDOWS\RTLCPL.exe 2010-12-12 10:09:40 ----R---- C:\WINDOWS\system32\drivers\RtkHDAud.sys 2010-12-12 10:09:33 ----R---- C:\WINDOWS\RTHDCPL.exe 2010-12-12 10:09:30 ----R---- C:\WINDOWS\MicCal.exe 2010-12-12 10:09:21 ----RA---- C:\WINDOWS\system32\drivers\l1e51x86.sys 2010-12-12 10:09:21 ----R---- C:\WINDOWS\Alcmtr.exe 2010-12-12 10:09:20 ----R---- C:\WINDOWS\alcwzrd.exe 2010-12-12 10:09:18 ----D---- C:\Program Files\Realtek 2010-12-12 10:09:16 ----D---- C:\WINDOWS\system32\Atheros_L1e 2010-12-12 10:09:12 ----HD---- C:\Program Files\InstallShield Installation Information 2010-12-12 10:09:07 ----A---- C:\WINDOWS\HideWin.exe 2010-12-12 10:09:06 ----R---- C:\WINDOWS\RtlExUpd.dll 2010-12-12 10:09:01 ----D---- C:\Program Files\Common Files\InstallShield 2010-12-12 10:05:05 ----D---- C:\WINDOWS\system32\drivers\INF 2010-12-12 10:05:04 ----D---- C:\WINDOWS\system32\drivers\system32 2010-12-12 10:04:42 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-12-12 10:04:34 ----RA---- C:\WINDOWS\system32\CSVer.dll 2010-12-12 10:04:34 ----D---- C:\Program Files\Intel 2010-12-12 10:03:11 ----D---- C:\Intel 2010-12-12 09:59:49 ----D---- C:\WINDOWS\ASUSInstAll 2010-12-12 09:55:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Symantec 2010-12-12 09:53:51 ----D---- C:\Program Files\Common Files\Symantec Shared 2010-12-12 09:52:35 ----A---- C:\WINDOWS\Ascd_log.ini 2010-12-12 09:52:15 ----RA---- C:\WINDOWS\system32\drivers\ASACPI.sys 2010-12-12 09:52:01 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2010-12-12 09:52:01 ----A---- C:\WINDOWS\Ascd_tmp.ini 2010-12-12 09:50:45 ----D---- C:\Program Files\GIGABYTE 2010-12-12 09:50:13 ----D---- C:\WINDOWS\system32\AGEIA 2010-12-12 09:50:13 ----D---- C:\Program Files\AGEIA Technologies 2010-12-12 09:49:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-12-12 09:48:30 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:46:41 ----D---- C:\WINDOWS\nview 2010-12-12 09:46:41 ----A---- C:\WINDOWS\system32\nvudisp.exe 2010-12-12 09:46:10 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2010-12-12 09:45:33 ----A---- C:\WINDOWS\system32\hpf3l70v.dll 2010-12-12 09:43:26 ----D---- C:\Program Files\Common Files\HP 2010-12-12 09:43:22 ----D---- C:\Program Files\Common Files\Hewlett-Packard 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hppldcoi.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposwia_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hpost_d02c.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\hposc_d02a.dll 2010-12-12 09:43:19 ----A---- C:\WINDOWS\system32\difxapi.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\hpzids01.dll 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZius12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZipr12.sys 2010-12-12 09:43:18 ----A---- C:\WINDOWS\system32\drivers\HPZid412.sys 2010-12-12 09:43:17 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-12-12 09:43:13 ----D---- C:\Program Files\HP 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-12-12 09:43:12 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2010-12-12 09:43:11 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2010-12-12 09:43:03 ----HD---- C:\Config.Msi 2010-12-12 09:42:13 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 2010-12-12 09:42:02 ----D---- C:\Program Files\Gadu-Gadu 10 2010-12-12 09:41:22 ----D---- C:\Program Files\WinRAR 2010-12-12 09:41:03 ----D---- C:\Program Files\uTorrent 2010-12-12 09:40:50 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\uTorrent 2010-12-12 09:40:31 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Mozilla 2010-12-12 09:40:27 ----D---- C:\Program Files\Mozilla Firefox 2010-12-12 09:36:37 ----D---- C:\Documents and Settings\NEQ\Dane aplikacji\Identities 2010-12-12 09:36:36 ----HD---- C:\Program Files\Uninstall Information 2010-12-12 09:36:34 ----ASH---- C:\Documents and Settings\NEQ\Dane aplikacji\desktop.ini 2010-12-12 09:36:33 ----SD---- C:\Documents and Settings\NEQ\Dane aplikacji\Microsoft 2010-12-12 09:35:57 ----D---- C:\WINDOWS\SoftwareDistribution 2010-12-12 09:35:56 ----SD---- C:\WINDOWS\system32\Microsoft 2010-12-12 09:35:56 ----D---- C:\WINDOWS\Prefetch 2010-12-12 09:35:55 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-12-12 09:31:54 ----D---- C:\WINDOWS\system32\xircom 2010-12-12 09:31:54 ----D---- C:\Program Files\xerox 2010-12-12 09:31:54 ----D---- C:\Program Files\microsoft frontpage 2010-12-12 09:31:21 ----HD---- C:\WINDOWS\$hf_mig$ 2010-12-12 09:31:18 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-12-12 09:31:10 ----RASH---- C:\MSDOS.SYS 2010-12-12 09:31:10 ----RASH---- C:\IO.SYS 2010-12-12 09:31:10 ----A---- C:\WINDOWS\control.ini 2010-12-12 09:31:10 ----A---- C:\CONFIG.SYS 2010-12-12 09:31:10 ----A---- C:\AUTOEXEC.BAT 2010-12-12 09:30:58 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-12-12 09:30:28 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-12-12 09:30:26 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-12-12 09:30:23 ----HD---- C:\Program Files\WindowsUpdate 2010-12-12 09:30:20 ----D---- C:\Program Files\Usługi online 2010-12-12 09:30:07 ----D---- C:\WINDOWS\system32\DirectX 2010-12-12 09:30:00 ----A---- C:\WINDOWS\system32\atrace.dll 2010-12-12 09:29:58 ----A---- C:\WINDOWS\system32\desktop.ini 2010-12-12 09:29:58 ----A---- C:\WINDOWS\desktop.ini 2010-12-12 09:29:52 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-12-12 09:29:50 ----D---- C:\Program Files\Common Files\Services 2010-12-12 09:29:50 ----A---- C:\WINDOWS\system32\acctres.dll 2010-12-12 09:29:47 ----SD---- C:\WINDOWS\Tasks 2010-12-12 09:29:47 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-12-12 09:29:46 ----D---- C:\Program Files\Common Files\MSSoap 2010-12-12 09:29:40 ----D---- C:\WINDOWS\srchasst 2010-12-12 09:29:39 ----D---- C:\WINDOWS\system32\Macromed 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-12-12 09:29:38 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wups.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-12-12 09:29:37 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-12-12 09:29:36 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-12-12 09:29:33 ----D---- C:\Program Files\Movie Maker 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-12-12 09:29:17 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-12-12 09:29:14 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-12-12 09:29:13 ----D---- C:\WINDOWS\system32\Restore 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\srclient.dll 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2010-12-12 09:29:13 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-12-12 09:29:12 ----A---- C:\WINDOWS\system32\ils.dll 2010-12-12 09:29:11 ----A---- C:\WINDOWS\system32\msconf.dll 2010-12-12 09:29:09 ----D---- C:\Program Files\NetMeeting 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-12-12 09:29:09 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-12-12 09:29:08 ----A---- C:\WINDOWS\system32\inetres.dll 2010-12-12 09:29:07 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-12-12 09:29:06 ----D---- C:\Program Files\Outlook Express 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-12-12 09:29:06 ----A---- C:\WINDOWS\system32\mstask.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\isign32.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-12-12 09:29:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-12-12 09:29:00 ----D---- C:\Program Files\Common Files\System 2010-12-12 09:28:59 ----D---- C:\Program Files\Internet Explorer 2010-12-12 09:28:34 ----D---- C:\Program Files\ComPlus Applications 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vbaddin.ini 2010-12-12 09:28:32 ----A---- C:\WINDOWS\vb.ini 2010-12-12 09:28:29 ----D---- C:\WINDOWS\Registration 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Player 2010-12-12 09:28:15 ----D---- C:\Program Files\Windows Media Connect 2 2010-12-12 09:28:13 ----D---- C:\Program Files\Messenger 2010-12-12 09:28:10 ----D---- C:\Program Files\MSN Gaming Zone 2010-12-12 09:28:10 ----A---- C:\WINDOWS\system32\write.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\hticons.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avwav.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-12-12 09:28:02 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-12-12 09:28:01 ----A---- C:\WINDOWS\system32\winchat.exe 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\getuname.dll 2010-12-12 09:27:55 ----A---- C:\WINDOWS\system32\charmap.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\winmine.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\sol.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-12-12 09:27:54 ----A---- C:\WINDOWS\system32\calc.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tskill.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\tscon.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\shadow.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\reset.exe 2010-12-12 09:27:53 ----A---- C:\WINDOWS\system32\freecell.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\regini.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msg.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\logoff.exe 2010-12-12 09:27:52 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-12-12 09:27:47 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-12-12 09:27:46 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-12-12 09:27:45 ----D---- C:\Program Files\Windows NT 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-12-12 09:27:45 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\spider.exe 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2010-12-12 09:27:44 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tsgqec.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2010-12-12 09:27:43 ----A---- C:\WINDOWS\system32\aaclient.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-12-12 09:27:42 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-12-12 09:27:41 ----D---- C:\WINDOWS\system32\MsDtc 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-12-12 09:27:41 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-12-12 09:27:40 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-12-12 09:27:39 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-12-12 09:27:38 ----D---- C:\WINDOWS\system32\Com 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\stclient.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\colbact.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-12-12 09:27:38 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comuid.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-12-12 09:27:37 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-12-12 09:27:32 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-12-12 09:27:31 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2010-12-12 09:27:27 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys 2010-12-12 05:06:14 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2010-12-12 05:05:33 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2010-12-12 05:04:47 ----A---- C:\WINDOWS\system32\usbui.dll 2010-12-12 05:03:59 ----SHD---- C:\WINDOWS\Installer 2010-12-12 05:03:59 ----D---- C:\Program Files\Common Files\ODBC 2010-12-12 05:03:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-12-12 05:03:59 ----A---- C:\WINDOWS\ODBCINST.INI 2010-12-12 05:03:56 ----RD---- C:\Program Files 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\SpeechEngines 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-12-12 05:03:56 ----D---- C:\Program Files\Common Files 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-12-12 05:03:50 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-12-12 05:03:48 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-12-12 05:03:46 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-12-12 05:03:45 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-12-12 05:03:40 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\irclass.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-12-12 05:03:38 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-12-12 05:03:36 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\storprop.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2010-12-12 05:03:35 ----A---- C:\WINDOWS\system32\batt.dll 2010-12-12 05:03:35 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-12-12 05:03:29 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot2 2010-12-12 05:02:02 ----D---- C:\WINDOWS\system32\CatRoot 2010-12-12 05:01:56 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-12-12 05:01:39 ----SHD---- C:\System Volume Information 2010-12-12 05:01:39 ----D---- C:\Documents and Settings 2010-12-12 05:00:37 ----SH---- C:\boot.ini 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Offline Web Pages 2010-12-12 04:57:41 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-12-12 04:57:41 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-12-12 04:57:41 ----RSD---- C:\WINDOWS\Fonts 2010-12-12 04:57:41 ----RD---- C:\WINDOWS\Web 2010-12-12 04:57:41 ----HD---- C:\WINDOWS\inf 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WinSxS 2010-12-12 04:57:41 ----D---- C:\WINDOWS\WBEM 2010-12-12 04:57:41 ----D---- C:\WINDOWS\twain_32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Temp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wins 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\wbem 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\usmt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\spool 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ShellExt 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\Setup 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ras 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl-pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\pl 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\oobe 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\npp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\inetsrv 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\IME 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\icsxml 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\ias 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\export 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\etc 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers\disdn 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\drivers 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\dhcp 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3com_dmi 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\3076 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\2052 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1054 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1045 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1042 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1041 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1037 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1033 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1031 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1028 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32\1025 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system32 2010-12-12 04:57:41 ----D---- C:\WINDOWS\system 2010-12-12 04:57:41 ----D---- C:\WINDOWS\security 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Resources 2010-12-12 04:57:41 ----D---- C:\WINDOWS\repair 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Provisioning 2010-12-12 04:57:41 ----D---- C:\WINDOWS\PeerNet 2010-12-12 04:57:41 ----D---- C:\WINDOWS\pchealth 2010-12-12 04:57:41 ----D---- C:\WINDOWS\NLDRV 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Network Diagnostic 2010-12-12 04:57:41 ----D---- C:\WINDOWS\mui 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msapps 2010-12-12 04:57:41 ----D---- C:\WINDOWS\msagent 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Media 2010-12-12 04:57:41 ----D---- C:\WINDOWS\L2Schemas 2010-12-12 04:57:41 ----D---- C:\WINDOWS\java 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ime 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Help 2010-12-12 04:57:41 ----D---- C:\WINDOWS\ehome 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Driver Cache 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Debug 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Cursors 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Connection Wizard 2010-12-12 04:57:41 ----D---- C:\WINDOWS\Config 2010-12-12 04:57:41 ----D---- C:\WINDOWS\AppPatch 2010-12-12 04:57:41 ----D---- C:\WINDOWS\addins 2010-12-12 04:57:41 ----D---- C:\WINDOWS 2010-12-12 04:57:41 ----ASH---- C:\pagefile.sys ======List of files/folders modified in the last 1 months====== 2010-12-12 09:31:08 ----A---- C:\WINDOWS\win.ini 2010-12-12 09:30:51 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2010-12-12 05:03:55 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 KL1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2010-06-09 132184] R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2009-10-16 40448] R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2010-06-09 11352] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-12-12 475736] R2 ESLWireAC;ESLWireAC; \??\C:\WINDOWS\system32\drivers\ESLWireACD.sys [] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2009-10-16 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2009-10-16 10368] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-16 4747776] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472] R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-06-25 36864] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-10-16 12160] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-08-02 6121856] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 USBPNPA;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2009-12-22 1511936] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2009-10-16 26368] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-10-16 62336] S0 Si3114r5;Si3114r5; C:\WINDOWS\system32\drivers\Si3114r5.sys [2009-10-16 195072] S0 Si3124;Si3124; C:\WINDOWS\system32\drivers\Si3124.sys [2009-10-16 69248] S0 Si3132;Si3132; C:\WINDOWS\system32\drivers\Si3132.sys [2009-10-16 74672] S0 Si3132r5;Si3132r5; C:\WINDOWS\system32\drivers\Si3132r5.sys [2009-10-16 215856] S0 Si3531;Si3531; C:\WINDOWS\system32\drivers\Si3531.sys [2009-10-16 212520] S3 ESLvnic1;ESLvnic Virtual Network 32 Bit; C:\WINDOWS\system32\DRIVERS\ESLvnic.sys [2010-08-12 24504] S3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2010-05-07 32856] S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-10-16 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-10-16 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672] R2 AVP;Usługa Kaspersky Anti-Virus; C:\Kaspersky Anti-Virus 2011\avp.exe [2010-12-12 352976] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-12-13 153376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-08-02 163908] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2009-10-16 14336] R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-09-24 820008] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-17 136176] S3 aspnet_state;„Usługa stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2009-10-16 14336] S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------[/log] [/quote] Malware [log]Malwarebytes' Anti-Malware 1.50 www.malwarebytes.org Wersja bazy: 5351 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 8.0.6001.18702 2010-12-19 02:31:22 mbam-log-2010-12-19 (02-31-17).txt Typ skanowania: Pełne skanowanie (C:\|D:\|) Przeskanowano obiektów: 183724 Upłynęło: 20 minut(y), 34 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 1 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 1 Zainfekowanych plików: 11 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831} (Adware.RelevantKnowledge) -> No action taken. Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: c:\documents and settings\all users\menu start\Programy\relevantknowledge (Spyware.MarketScore) -> No action taken. Zainfekowanych plików: c:\system volume information\_restore{6e81d7f1-fafc-4b5c-beaf-c37e6b837797}\RP18\A0003831.exe (Trojan.Dropper) -> No action taken. c:\system volume information\_restore{6e81d7f1-fafc-4b5c-beaf-c37e6b837797}\RP19\A0003835.exe (Trojan.Dropper) -> No action taken. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlls.dll (Adware.RelevantKnowledge) -> No action taken. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlls64.dll (Adware.RelevantKnowledge) -> No action taken. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlservice.exe (Adware.RelevantKnowledge) -> No action taken. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlvknlg.exe (Adware.RelevantKnowledge) -> No action taken. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlvknlg64.exe (Adware.RelevantKnowledge) -> No action taken. c:\documents and settings\all users\menu start\Programy\relevantknowledge\about relevantknowledge.lnk (Spyware.MarketScore) -> No action taken. c:\documents and settings\all users\menu start\Programy\relevantknowledge\privacy policy and user license agreement.lnk (Spyware.MarketScore) -> No action taken. c:\documents and settings\all users\menu start\Programy\relevantknowledge\Support.lnk (Spyware.MarketScore) -> No action taken. c:\documents and settings\all users\menu start\Programy\relevantknowledge\uninstall instructions.lnk (Spyware.MarketScore) -> No action taken. [/log] Log z usuwania: [log]Malwarebytes' Anti-Malware 1.50 www.malwarebytes.org Wersja bazy: 5351 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 8.0.6001.18702 2010-12-19 02:32:18 mbam-log-2010-12-19 (02-32-18).txt Typ skanowania: Pełne skanowanie (C:\|D:\|) Przeskanowano obiektów: 183724 Upłynęło: 20 minut(y), 34 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 1 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 1 Zainfekowanych plików: 11 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831} (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: c:\documents and settings\all users\menu start\Programy\relevantknowledge (Spyware.MarketScore) -> Quarantined and deleted successfully. Zainfekowanych plików: c:\system volume information\_restore{6e81d7f1-fafc-4b5c-beaf-c37e6b837797}\RP18\A0003831.exe (Trojan.Dropper) -> Quarantined and deleted successfully. c:\system volume information\_restore{6e81d7f1-fafc-4b5c-beaf-c37e6b837797}\RP19\A0003835.exe (Trojan.Dropper) -> Quarantined and deleted successfully. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\_OTL\movedfiles\12192010_020243\c_program files\relevantknowledge\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\documents and settings\all users\menu start\Programy\relevantknowledge\about relevantknowledge.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully. c:\documents and settings\all users\menu start\Programy\relevantknowledge\privacy policy and user license agreement.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully. c:\documents and settings\all users\menu start\Programy\relevantknowledge\Support.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully. c:\documents and settings\all users\menu start\Programy\relevantknowledge\uninstall instructions.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully. [/log] Dr.Web [log]Silent Runners.vbs C:\Documents and Settings\NEQ\Pulpit\chmur0n\skanery\Silent Runners Prawdopodobnie BATCH.Virus Niewyleczalny.Usunięty. A0003818.exe C:\System Volume Information\_restore{6E81D7F1-FAFC-4B5C-BEAF-C37E6B837797}\RP18 Program.mIRC.630 Niewyleczalny.Usunięty. A0009099.exe C:\System Volume Information\_restore{6E81D7F1-FAFC-4B5C-BEAF-C37E6B837797}\RP32 Adware.Siggen.9629 Usunięty. A0009100.exe C:\System Volume Information\_restore{6E81D7F1-FAFC-4B5C-BEAF-C37E6B837797}\RP32 Adware.Siggen.9629 Niewyleczalny.Usunięty. A0009246.exe C:\System Volume Information\_restore{6E81D7F1-FAFC-4B5C-BEAF-C37E6B837797}\RP33 BackDoor.BlackHole.3389 Usunięty. mirc.exe D:\mIRC Program.mIRC.630 Niewyleczalny.Usunięty. [/log] Co do dr.Web to zdziwiło mnie że w mircu znalazł wirusa.. Zawsze używałem tego programu ;p chyba, że akurat teraz pobrałem go ze złego źródła;) A Kaspersky 2k10 nie wykrył nic.. ; o
Tomek01 komentarz 19 grudnia 2010 komentarz 19 grudnia 2010 Co do DrWeb'a,wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach.I będzie po "wirusach". Wygląda na to, że jest czysto. W OTL użyj funkcji CleanUp.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.