arek_69 utworzono 15 marca 2011 utworzono 15 marca 2011 [attachment=15308:01.jpg]Witam nie wiem czy dobrze wstawiam ale problem zacząl się od wykrycia przez Microsoft Essentials trojana który sobie "drzemał" w jednym z obrazow iso umieszczonym na dysku.Pisze drzemał gdyż ten obraz iso miałem na dysku od co najmniej roku i nic się nie działo do czasu kiedy komputer nie zaczął "wariowac"-cpu 80% wyk ram też prawie 50-tyle pobierał właśnie waucalt.exe. wtedy też trojana wykrył antywirus.Po pozbyciu się "intruza" i całego obrazu iso waucalt.exe dalej jednak się włącza i choć tylko przez ok 5 min po uruchomieniu/nie zużywa też tyle ram a cpu prawie wcale.Z tego co wyczytałem jest to proces odpowiedzialny za automatyczną akt. Dobra po tak długim wstępie pytanie czy jest to normalny proces uruchamiany wraz z startem xp i czy można go wyłączyć.Dodam że po oczyszczeniu komputera skanaowłem [pełne] Microsoft Security Essentials cały komputer i w/g "niego" jest czysty.Za każdą odpowiedż/ sugestię z góry dziękuję.
Tomek01 komentarz 16 marca 2011 komentarz 16 marca 2011 Wrzuć zestaw logów, wklejając je w tagi, info poniżej: 1
arek_69 komentarz 17 marca 2011 Autor komentarz 17 marca 2011 Sorry ale jestem pierwszy raz w tym dziale i nie przeczytałem notki.Proszę o sprawdzenie: OTL [log]OTL logfile created on: 2011-03-17 05:14:48 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\#_arek\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 100,69 Gb Total Space | 42,35 Gb Free Space | 42,06% Space Free | Partition Type: NTFS Drive D: | 120,21 Gb Total Space | 52,73 Gb Free Space | 43,87% Space Free | Partition Type: NTFS Drive E: | 120,17 Gb Total Space | 52,39 Gb Free Space | 43,59% Space Free | Partition Type: NTFS Drive F: | 120,18 Gb Total Space | 55,66 Gb Free Space | 46,31% Space Free | Partition Type: NTFS Computer Name: DOM-9A8BACBFC93 | User Name: #_arek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-03-17 05:11:17 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\#_arek\Moje dokumenty\Downloads\OTL.exe PRC - [2011-03-01 22:14:29 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-02-04 13:05:37 | 000,779,776 | ---- | M] (Murray Hurps Corp Pty Ltd) -- C:\Program Files\Ad Muncher\AdMunch.exe PRC - [2011-01-13 18:23:02 | 000,129,440 | ---- | M] (Futuremark Corporation) -- C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe PRC - [2010-11-30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe PRC - [2010-11-11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe PRC - [2010-11-03 09:15:30 | 004,360,896 | ---- | M] (Almico Software (www.almico.com)) -- C:\Program Files\SpeedFan\speedfan.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-03-04 22:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2010-02-25 18:42:02 | 000,716,616 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe PRC - [2010-02-25 18:40:18 | 001,047,880 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe PRC - [2009-05-16 04:15:52 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2009-04-22 17:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe PRC - [2009-04-22 17:37:16 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 13:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-04-15 13:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-15 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-03-07 22:21:12 | 001,616,384 | ---- | M] (Codeton Software) -- C:\Program Files\Paseczek\Paseczek.exe PRC - [2005-08-09 14:26:47 | 000,100,352 | ---- | M] (Vetch Utilities) -- C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe PRC - [2005-01-26 10:04:50 | 000,270,336 | ---- | M] (BonSoft) -- C:\Program Files\ClocX\ClocX.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-03-17 05:11:17 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\#_arek\Moje dokumenty\Downloads\OTL.exe MOD - [2011-02-04 13:05:37 | 000,029,696 | ---- | M] (Murray Hurps Corp Pty Ltd) -- C:\Program Files\Ad Muncher\AM30400.dll MOD - [2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-12-09 16:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-15 13:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 13:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-15 13:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-15 13:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-15 13:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 13:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-15 13:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 13:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-15 13:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-15 13:00:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-15 13:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 13:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-15 13:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-15 13:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-15 13:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 13:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2008-04-15 13:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 13:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 13:00:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2008-04-15 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2006-09-18 22:07:22 | 000,057,344 | ---- | M] (Codeton Software) -- C:\Program Files\Paseczek\AppBarGuard.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2011-02-04 19:18:16 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag) SRV - [2011-01-13 18:23:02 | 000,129,440 | ---- | M] (Futuremark Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service) SRV - [2010-11-11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc) SRV - [2010-03-04 22:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) SRV - [2010-02-25 18:40:18 | 001,047,880 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2010-02-25 18:37:08 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp) SRV - [2009-10-20 19:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2009-08-24 22:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo HDD Control\Dfsdks.exe -- (DfSdkS) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Running] -- -- (cpuz135) DRV - [2011-03-17 04:43:27 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{E7FCB753-E736-423D-87F2-88A45DAF37A5}\MpKslcdc71b9e.sys -- (MpKslcdc71b9e) DRV - [2010-07-09 13:18:54 | 000,020,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134) DRV - [2010-04-12 09:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2010-02-25 10:18:08 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2010-02-11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6) DRV - [2009-11-12 13:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009-10-20 19:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2009-05-16 04:58:45 | 004,069,888 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009-03-25 14:29:52 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2008-04-14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-07-03 18:43:56 | 000,132,904 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\imagesrv.sys -- (imagesrv) DRV - [2007-07-03 18:43:56 | 000,011,304 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\imagedrv.sys -- (imagedrv) DRV - [2007-05-23 17:18:26 | 000,034,793 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hid7906.sys -- (hid7906) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1004336348-1958367476-527237240-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1004336348-1958367476-527237240-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4 FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.0 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 FF - prefs.js..extensions.enabledItems: {de5809e0-2b07-11dd-bd0b-0800200c9a66}:1.2.0 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-03 11:59:36 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-05 10:59:38 | 000,000,000 | ---D | M] [2011-02-06 19:01:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Extensions [2011-03-16 18:54:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions [2011-02-10 07:27:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-02-20 19:07:55 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE} [2011-02-06 19:36:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{b3f91530-1905-11de-8c30-0800200c9a66} [2011-03-16 18:54:51 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2011-02-06 19:38:30 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2011-02-06 19:33:04 | 000,000,000 | ---D | M] (Gradient iCool) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\{de5809e0-2b07-11dd-bd0b-0800200c9a66} [2011-02-06 19:36:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\chromifox@altmusictv.com [2011-02-06 19:36:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\iTunesFox@sjcmankimo.tw [2011-02-06 19:36:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\kempelton-fx@arvidaxelsson.se [2011-02-06 19:36:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla\Firefox\Profiles\5w41h7nd.default\extensions\rein@notiz.jp [2011-02-06 18:55:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-02-04 12:39:02 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011-03-03 11:59:39 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAM FILES\REAL\REALPLAYER\BROWSERRECORD\FIREFOX\EXT [2010-12-03 18:54:54 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-12-03 18:54:54 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-12-03 18:54:54 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-12-03 18:54:54 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-12-03 18:54:54 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-12-03 18:54:54 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (DownloadStudio IE Add-on) - {8170D7DC-BDD6-461e-88EB-F047257898C9} - C:\Program Files\DownloadStudio\DLMonitr.dll (Conceiva Pty Ltd) O3 - HKLM\..\Toolbar: (DownloadStudio IE Toolbar) - {CB789373-04D5-4ef4-9C16-871463FD0830} - C:\Program Files\DownloadStudio\WebDLBar.dll (Conceiva Pty Ltd) O3 - HKU\S-1-5-21-1004336348-1958367476-527237240-1003\..\Toolbar\WebBrowser: (DownloadStudio IE Toolbar) - {CB789373-04D5-4EF4-9C16-871463FD0830} - C:\Program Files\DownloadStudio\WebDLBar.dll (Conceiva Pty Ltd) O4 - HKLM..\Run: [Ad Muncher] C:\Program Files\Ad Muncher\AdMunch.exe (Murray Hurps Corp Pty Ltd) O4 - HKLM..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe (BonSoft) O4 - HKLM..\Run: [Cmaudio] File not found O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKU\S-1-5-21-1004336348-1958367476-527237240-1003..\Run: [Paseczek] C:\Program Files\Paseczek\Paseczek.exe (Codeton Software) O4 - HKU\S-1-5-21-1004336348-1958367476-527237240-1003..\Run: [speedfan] C:\Program Files\SpeedFan\speedfan.exe (Almico Software (www.almico.com)) O4 - Startup: C:\Documents and Settings\#_arek\Menu Start\Programy\Autostart\SysInfoMyWork.lnk = C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe (Vetch Utilities) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1004336348-1958367476-527237240-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Dodaj stronę do albumu DownloadStudio... - C:\Program Files\DownloadStudio\ds_snap.htm () O8 - Extra context menu item: Korzystając z DownloadStudio pobierz stronę... - C:\Program Files\DownloadStudio\ds_all.htm () O8 - Extra context menu item: Korzystając z DownloadStudio pobierz... - C:\Program Files\DownloadStudio\ds_file.htm () O8 - Extra context menu item: Korzystając z DownloadStudio pokaż linki stron... - C:\Program Files\DownloadStudio\ds_link.htm () O8 - Extra context menu item: Pobierz obrazek przy użyciu DownloadStudio... - C:\Program Files\DownloadStudio\ds_img.htm () O8 - Extra context menu item: Pobierz plik wideo za pomocą DownloadStudio... - C:\Program Files\DownloadStudio\ds_video.htm () O8 - Extra context menu item: Pobierz wybrane zadania przez DownloadStudio ... - C:\Program Files\DownloadStudio\ds_sel.htm () O8 - Extra context menu item: Zaprenumeruj kanał informacyjny RSS... - C:\Program Files\DownloadStudio\ds_rss.htm () O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} http://clients.futuremark.com/openapi/receivers/FMSI.cab (FuturemarkSystemInfoX Class) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.18.0.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-02-04 09:26:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{309d55c4-3065-11e0-a568-000b6a96c095}\Shell - "" = AutoRun O33 - MountPoints2\{309d55c4-3065-11e0-a568-000b6a96c095}\Shell\AutoRun\command - "" = G:\setup.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software) NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: MsMpSvc - C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation) SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: MsMpSvc - C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation) SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2011-08-05 15:40:38 | 000,000,000 | ---D | C] -- C:\Program Files\Ivona [2011-08-05 15:39:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ivona [2011-03-16 18:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-03-14 22:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWF Studio [2011-03-14 22:24:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\e-pity [2011-03-14 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\e-file [2011-03-14 22:24:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\e-file [2011-03-14 15:32:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\#_arek\Recent [2011-03-14 10:33:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Infonetax [2011-03-14 01:06:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2011-03-13 22:54:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2011-03-13 20:25:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\SpeedFan [2011-03-13 20:25:30 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2011-03-13 19:14:00 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy [2011-03-12 15:46:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EVEREST Ultimate Edition [2011-03-12 15:46:10 | 000,000,000 | ---D | C] -- C:\Program Files\EVEREST Ultimate Edition [2011-03-12 07:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2011-03-10 10:44:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ipla [2011-03-10 00:48:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Just Flight [2011-03-05 11:25:02 | 000,000,000 | ---D | C] -- C:\Program Files\Wings of POWER II WWII FIGHTERS [2011-03-05 11:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wings of Power [2011-03-05 11:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\Wings of POWER Heavy Bombers and Jets [2011-03-04 21:13:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office [2011-03-04 21:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2011-03-04 21:12:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2011-03-04 21:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2011-03-04 21:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2011-03-03 12:10:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Real Player [2011-03-03 11:59:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2011-03-03 11:59:20 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2011-03-03 11:59:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real [2011-03-03 11:59:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2011-03-03 11:58:50 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-03-02 07:48:38 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011-03-02 07:29:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2011-03-02 07:29:09 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll [2011-03-02 07:29:09 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2011-03-02 07:29:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2011-03-02 07:28:48 | 000,000,000 | ---D | C] -- C:\Intel [2011-03-01 19:36:23 | 001,686,016 | ---- | C] (Clever Components) -- C:\WINDOWS\System32\clinetsuitex6.ocx [2011-03-01 19:36:23 | 000,427,864 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XceedZip.dll [2011-03-01 19:36:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Driver Genius Professional Edition [2011-03-01 19:36:21 | 000,000,000 | ---D | C] -- C:\Program Files\DriverGenius [2011-03-01 19:24:14 | 000,020,328 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\cpuz134_x32.sys [2011-03-01 19:24:14 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID [2011-03-01 15:24:27 | 000,000,000 | ---D | C] -- C:\Program Files\AICarriers [2011-02-28 21:39:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\aerosoft [2011-02-28 20:47:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Airport Design Editor 9x [2011-02-28 20:47:25 | 000,000,000 | ---D | C] -- C:\Program Files\FS Design Tools [2011-02-28 15:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\discreet [2011-02-28 15:40:55 | 000,000,000 | ---D | C] -- C:\Program Files\gmax [2011-02-28 11:26:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\Flight One Software [2011-02-27 18:47:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Flight Simulator X Files [2011-02-27 18:23:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Games [2011-02-27 18:08:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2011-02-27 12:19:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\SH4 [2011-02-27 12:14:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\SecuROM [2011-02-27 12:14:00 | 000,108,144 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll [2011-02-27 12:02:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\InstallShield [2011-02-25 19:52:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp [2011-02-25 19:52:11 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2011-02-25 19:52:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Winamp [2011-02-24 16:34:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Paper Port [2011-02-22 12:00:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Translatica 4 [2011-02-22 11:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\Translatica 4 [2011-02-17 16:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Help [2011-02-17 16:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Help [2011-02-17 16:13:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\POLENG4 [2011-02-11 16:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Applications [2011-02-11 13:54:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2011-02-11 08:38:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Roboczy [02] [2011-02-11 08:35:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Roboczy [01] [2011-02-10 16:28:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\IsolatedStorage [2011-02-10 11:42:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\Narzędzia administracyjne [2011-02-09 08:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap [2011-02-09 08:43:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Conceiva [2011-02-09 08:43:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\DownloadStudio [2011-02-09 08:42:47 | 000,000,000 | ---D | C] -- C:\Program Files\DownloadStudio [2011-02-08 12:11:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Microsoft Game Studios [2011-02-08 11:53:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data [2011-02-08 11:30:38 | 000,034,793 | ---- | C] (Compuware Corporation) -- C:\WINDOWS\System32\drivers\hid7906.sys [2011-02-08 11:30:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration [2011-02-08 11:30:17 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration [2011-02-07 09:48:54 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2011-02-07 09:48:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ubisoft [2011-02-07 09:46:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2011-02-07 09:46:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\WinRAR [2011-02-07 08:16:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\OpenOffice.ux.pl [2011-02-07 08:15:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\OpenOffice.ux.pl 3.3 [2011-02-07 08:14:37 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.ux.pl 3 [2011-02-06 19:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Mozilla [2011-02-06 19:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Mozilla [2011-02-06 18:55:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox [2011-02-06 18:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-02-06 14:22:13 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2011-02-06 14:20:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\uTorrent [2011-02-06 11:38:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Conceiva [2011-02-06 10:17:26 | 000,000,000 | ---D | C] -- C:\Program Files\Game Cam [2011-02-06 10:17:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Game Cam [2011-02-06 10:03:26 | 000,000,000 | ---D | C] -- C:\Program Files\PlayReady [2011-02-06 10:00:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2011-02-05 18:59:47 | 000,444,952 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll [2011-02-05 18:59:47 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL [2011-02-05 18:59:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Futuremark Shared [2011-02-05 18:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Futuremark [2011-02-05 18:58:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Futuremark [2011-02-05 16:53:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Identities [2011-02-05 16:43:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\IVONA [2011-02-05 16:43:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\IVONA Player [2011-02-05 14:30:25 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011-02-05 14:29:08 | 000,000,000 | ---D | C] -- C:\4721f3ca5aa2c4bc4df0ca3aead12fcb [2011-02-05 14:27:17 | 000,000,000 | ---D | C] -- C:\29bc2795600b425ebae5 [2011-02-05 14:21:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Google [2011-02-05 14:02:42 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2011-02-05 13:41:14 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2011-02-05 13:28:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Thinstall [2011-02-05 13:27:15 | 000,000,000 | ---D | C] -- C:\Program Files\ArtIcons Pro v5.16 PL [2011-02-05 13:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity [2011-02-05 12:44:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\GHISLER [2011-02-05 11:01:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2011-02-05 10:56:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Temp [2011-02-05 10:56:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2011-02-05 10:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2011-02-05 10:56:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Google [2011-02-05 10:34:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2011-02-05 10:34:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Canneverbe Limited [2011-02-05 10:33:56 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2011-02-05 10:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\FormatFactory [2011-02-05 10:23:25 | 000,000,000 | ---D | C] -- C:\Program Files\FormatFactory [2011-02-05 10:13:41 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDubMod [2011-02-05 10:13:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\VirtualDubMod [2011-02-05 10:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\AVI ReComp [2011-02-05 10:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\VobSub [2011-02-05 10:09:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VobSub [2011-02-05 10:08:36 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid [2011-02-05 10:08:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Xvid [2011-02-05 10:08:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\AviSynth 2.5 [2011-02-05 10:08:08 | 000,000,000 | ---D | C] -- C:\Program Files\AviSynth 2.5 [2011-02-05 10:08:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AviSynth 2.5 [2011-02-05 10:07:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\AVI ReComp [2011-02-05 10:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\AVI ReComp [2011-02-05 09:17:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\ScanSoft [2011-02-05 09:10:55 | 000,000,000 | ---D | C] -- C:\Program Files\Nuance [2011-02-05 09:10:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallShield [2011-02-05 09:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ScanSoft PaperPort 11 [2011-02-05 09:10:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ScanSoft Shared [2011-02-05 09:10:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ScanSoft [2011-02-05 09:10:07 | 000,000,000 | ---D | C] -- C:\Program Files\ScanSoft [2011-02-05 09:09:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Brother [2011-02-05 08:37:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\RDRM [2011-02-05 08:37:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-02-05 08:37:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\ipla [2011-02-05 08:37:16 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2011-02-04 22:37:08 | 000,000,000 | ---D | C] -- C:\Program Files\ClocX [2011-02-04 22:33:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\NeroVision [2011-02-04 22:24:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Codeton [2011-02-04 21:44:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2011-02-04 21:25:16 | 000,000,000 | ---D | C] -- C:\Program Files\Paseczek [2011-02-04 21:08:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ashampoo [2011-02-04 21:08:41 | 000,034,304 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt64.exe [2011-02-04 21:08:41 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe [2011-02-04 21:08:40 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo HDD Control [2011-02-04 20:57:21 | 000,000,000 | ---D | C] -- C:\Program Files\Aida 32 3.94.2 [2011-02-04 20:30:53 | 000,000,000 | ---D | C] -- C:\Program Files\totalcmd [2011-02-04 20:30:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Total Commander [2011-02-04 20:30:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\GHISLER [2011-02-04 19:41:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\#_arek\IECompatCache [2011-02-04 19:18:17 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe [2011-02-04 19:18:16 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll [2011-02-04 19:18:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities [2011-02-04 19:18:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\TuneUp Software [2011-02-04 19:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010 [2011-02-04 19:17:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2011-02-04 19:17:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} [2011-02-04 18:42:20 | 000,000,000 | ---D | C] -- C:\Program Files\CWK [2011-02-04 18:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-02-04 18:00:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-02-04 18:00:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2011-02-04 17:43:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2011-02-04 17:29:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2011-02-04 17:28:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2011-02-04 17:28:54 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2011-02-04 17:28:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2011-02-04 16:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2011-02-04 16:46:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Real [2011-02-04 15:49:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\The KMPlayer [2011-02-04 15:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\The KMPlayer [2011-02-04 15:49:15 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer [2011-02-04 15:42:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\FastStone [2011-02-04 15:42:04 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Image Viewer [2011-02-04 15:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\FastStone Image Viewer [2011-02-04 15:34:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Media Player Classic [2011-02-04 15:28:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Media Player Classic - Home Cinema [2011-02-04 15:28:53 | 000,000,000 | ---D | C] -- C:\Program Files\Media Player Classic - Home Cinema [2011-02-04 15:09:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\PowerISO [2011-02-04 15:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2011-02-04 15:05:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\UltraISO [2011-02-04 15:05:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EZB Systems [2011-02-04 15:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\UltraISO [2011-02-04 14:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\SysInfoMyWork [2011-02-04 14:53:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\SysInfoMyWork [2011-02-04 14:29:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Ahead [2011-02-04 14:29:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero 7 Ultra Edition [2011-02-04 14:28:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Ahead [2011-02-04 14:27:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ahead [2011-02-04 14:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2011-02-04 14:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2011-02-04 14:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2011-02-04 14:08:29 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2011-02-04 14:08:28 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2011-02-04 14:08:28 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2011-02-04 14:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2011-02-04 14:04:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\DivX [2011-02-04 14:04:38 | 000,000,000 | ---D | C] -- C:\Program Files\Haali [2011-02-04 13:58:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared [2011-02-04 13:55:44 | 000,000,000 | ---D | C] -- C:\Program Files\DivX [2011-02-04 13:54:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DivX [2011-02-04 13:47:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Moje wideo [2011-02-04 13:39:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Nero.7.pl [2011-02-04 13:33:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Corel [2011-02-04 13:30:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CorelDRAW 9 [2011-02-04 13:29:44 | 000,607,744 | ---- | C] (Digital Equipment Corp.) -- C:\WINDOWS\System32\Decslib.dll [2011-02-04 13:27:52 | 000,168,448 | ---- | C] (WexTech Systems, Inc.) -- C:\WINDOWS\System32\Awrtl30.dll [2011-02-04 13:27:52 | 000,100,864 | ---- | C] (Corel Corporation Limited) -- C:\WINDOWS\System32\awpe.dll [2011-02-04 13:27:45 | 000,245,760 | ---- | C] (Corel Corporation) -- C:\WINDOWS\System32\Sccomp91.dll [2011-02-04 13:27:45 | 000,110,592 | ---- | C] (Corel Corporation) -- C:\WINDOWS\System32\Sccres91.dll [2011-02-04 13:27:44 | 000,225,280 | ---- | C] (Corel Corporation) -- C:\WINDOWS\System32\Scint91.dll [2011-02-04 13:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Profiles [2011-02-04 13:27:37 | 000,000,000 | ---D | C] -- C:\Program Files\Corel [2011-02-04 13:26:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\Corel [2011-02-04 13:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Adobe [2011-02-04 13:13:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2011-02-04 13:13:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2011-02-04 13:13:49 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2011-02-04 13:10:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windows media [2011-02-04 13:10:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Media [2011-02-04 13:10:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2011-02-04 13:10:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components [2011-02-04 13:05:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ad Muncher [2011-02-04 13:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\Ad Muncher [2011-02-04 13:05:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ad Muncher [2011-02-04 12:51:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2011-02-04 12:39:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2011-02-04 12:39:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2011-02-04 12:38:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011-02-04 12:37:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Sun [2011-02-04 12:27:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Macromedia [2011-02-04 12:27:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Adobe [2011-02-04 12:21:59 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\#_arek\PrivacIE [2011-02-04 12:15:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2011-02-04 12:14:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\#_arek\IETldCache [2011-02-04 12:13:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2011-02-04 12:12:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2011-02-04 12:11:44 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2011-02-04 10:12:44 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2011-02-04 10:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2011-02-04 10:12:40 | 000,000,000 | R--D | C] -- C:\Program Files [2011-02-04 10:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2011-02-04 10:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2011-02-04 10:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2011-02-04 10:12:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2011-02-04 10:12:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2011-02-04 10:12:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [2011-02-04 10:12:09 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2011-02-04 10:12:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2011-02-04 10:12:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2011-02-04 10:11:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2011-02-04 10:11:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2011-02-04 10:11:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2011-02-04 10:11:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2011-02-04 10:11:29 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2011-02-04 10:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2011-02-04 10:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI [2011-02-04 10:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\ATI [2011-02-04 10:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\ATI [2011-02-04 10:04:07 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2011-02-04 10:04:07 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2011-02-04 10:04:07 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2011-02-04 10:04:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2011-02-04 10:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2011-02-04 10:03:32 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2011-02-04 10:03:32 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2011-02-04 10:02:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2011-02-04 10:02:37 | 000,000,000 | ---D | C] -- C:\ATI [2011-02-04 10:00:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2011-02-04 09:58:27 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2011-02-04 09:57:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2011-02-04 09:57:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2011-02-04 09:57:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2011-02-04 09:56:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\WinRAR [2011-02-04 09:55:13 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011-02-04 09:48:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Downloads [2011-02-04 09:46:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\#_arek\UserData [2011-02-04 09:44:45 | 000,000,000 | ---D | C] -- C:\Program Files\Revo Uninstaller [2011-02-04 09:44:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\Revo Uninstaller [2011-02-04 09:37:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2011-02-04 09:37:43 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2011-02-04 09:35:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Identities [2011-02-04 09:35:12 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2011-02-04 09:35:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Moje obrazy [2011-02-04 09:35:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty\Moja muzyka [2011-02-04 09:35:06 | 000,000,000 | --SD | C] -- C:\Documents and Settings\#_arek\Dane aplikacji\Microsoft [2011-02-04 09:35:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\#_arek\SendTo [2011-02-04 09:35:06 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\#_arek\Dane aplikacji [2011-02-04 09:35:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Ulubione [2011-02-04 09:35:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Moje dokumenty [2011-02-04 09:35:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Menu Start [2011-02-04 09:35:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\Autostart [2011-02-04 09:35:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\#_arek\Menu Start\Programy\Akcesoria [2011-02-04 09:35:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\#_arek\Cookies [2011-02-04 09:35:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne [2011-02-04 09:35:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\#_arek\Szablony [2011-02-04 09:35:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\#_arek\PrintHood [2011-02-04 09:35:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\#_arek\NetHood [2011-02-04 09:35:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Pulpit [2011-02-04 09:35:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-02-04 09:33:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2011-02-04 09:32:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2011-02-04 09:32:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2011-02-04 09:32:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011-02-04 09:32:16 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2011-02-04 09:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-02-04 09:32:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2011-02-04 09:32:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-02-04 09:28:24 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2011-02-04 09:28:24 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2011-02-04 09:28:24 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2011-02-04 09:27:35 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2011-02-04 09:27:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2011-02-04 09:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2011-02-04 09:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2011-02-04 09:25:52 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2011-02-04 09:25:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2011-02-04 09:25:45 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2011-02-04 09:25:37 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2011-02-04 09:25:34 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2011-02-04 09:25:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2011-02-04 09:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2011-02-04 09:25:06 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2011-02-04 09:25:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2011-02-04 09:25:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2011-02-04 09:25:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2011-02-04 09:24:56 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2011-02-04 09:24:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2011-02-04 09:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2011-02-04 09:24:34 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2011-02-04 09:24:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2011-02-04 09:24:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2011-02-04 09:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2011-02-04 09:24:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry [2011-02-04 09:23:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne [2011-02-04 09:23:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2011-02-04 09:23:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2011-02-04 09:23:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2011-02-04 09:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2011-02-04 09:23:11 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2011-02-04 09:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2011-02-04 09:23:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2011-02-04 09:23:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2011-02-04 09:22:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2011-02-04 09:21:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2011-08-05 15:41:04 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{E7EED94C-B589-43A1-BD7E-647216ABE5B0}.job [2011-03-17 05:01:07 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-03-17 04:43:33 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-03-17 04:43:20 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-03-17 04:43:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-03-16 23:49:16 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-03-15 17:14:07 | 000,141,312 | ---- | M] () -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-15 00:07:19 | 000,002,539 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Office 2003.lnk [2011-03-14 22:24:20 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\e-pity2010.lnk [2011-03-14 20:21:47 | 000,000,754 | ---- | M] () -- C:\WINDOWS\WORDPAD.INI [2011-03-14 01:06:48 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif [2011-03-13 20:52:22 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\EVEREST Ultimate Edition.lnk [2011-03-13 20:25:30 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2011-03-13 15:02:21 | 000,234,368 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-12 19:51:13 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [news].url [2011-03-12 18:11:38 | 000,000,145 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysków CD [H].lnk [2011-03-12 18:11:38 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysków CD [I].lnk [2011-03-10 00:57:36 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-03-08 16:24:03 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\#_arek\default.pls [2011-03-07 06:55:36 | 000,503,694 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-03-07 06:55:36 | 000,444,548 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-03-07 06:55:36 | 000,090,394 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-03-07 06:55:36 | 000,072,424 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-03-05 17:09:57 | 000,001,618 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CDBurnerXP.lnk [2011-03-04 21:14:13 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2011-03-03 11:59:40 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Real Plus.lnk [2011-03-03 11:59:20 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2011-02-28 21:06:53 | 000,001,054 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\ServInfo.lnk [2011-02-27 18:23:21 | 000,001,879 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Microsoft.F Simulator X.lnk [2011-02-27 12:14:00 | 000,108,144 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll [2011-02-25 19:52:22 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp 5.6.lnk [2011-02-24 11:58:25 | 000,008,980 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Fsx-Sdk].rtf [2011-02-23 19:29:06 | 000,000,325 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Nero.7.pl].rtf [2011-02-22 15:10:56 | 000,921,654 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\Kryry [poł.geogr].bmp [2011-02-21 09:56:52 | 000,000,061 | -HS- | M] () -- C:\WINDOWS\cnerolf.dat [2011-02-19 22:09:56 | 000,000,345 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Lukla].rtf [2011-02-18 10:47:51 | 000,000,312 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Translatica 4].rtf [2011-02-15 13:28:51 | 000,001,170 | ---- | M] () -- C:\WINDOWS\capture.INI [2011-02-10 23:01:37 | 000,000,254 | ---- | M] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Gmax 1.2].rtf [2011-02-10 20:58:12 | 000,000,033 | ---- | M] () -- C:\WINDOWS\DownloadStudioScheduleMonitor.INI [2011-02-10 20:44:54 | 000,003,603 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [blog].url [2011-02-10 20:43:30 | 000,000,268 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [tv.rp].url [2011-02-09 14:53:59 | 000,270,848 | ---- | M] () -- C:\WINDOWS\System32\dllcache\sbe.dll [2011-02-09 14:53:59 | 000,186,880 | ---- | M] () -- C:\WINDOWS\System32\dllcache\encdec.dll [2011-02-09 08:43:30 | 000,000,065 | ---- | M] () -- C:\WINDOWS\System32\-1 [2011-02-08 12:35:44 | 000,000,061 | -HS- | M] () -- C:\WINDOWS\cnerolf.bin [2011-02-07 09:48:54 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Chessmaster 10th Edition.lnk [2011-02-06 19:01:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2011-02-06 18:55:48 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox [3.6.13.pl].lnk [2011-02-06 15:29:18 | 000,001,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent [02.2.0].lnk [2011-02-05 18:59:47 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll [2011-02-05 10:27:38 | 000,001,628 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Format Factory.lnk [2011-02-05 10:13:41 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\VirtualDubMod.lnk [2011-02-05 09:16:06 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\PaperPort.lnk [2011-02-05 08:53:10 | 000,001,474 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ipla.pl.lnk [2011-02-04 20:30:54 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Total Commander.lnk [2011-02-04 19:18:15 | 000,001,751 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tune.Up 9.04.pl.lnk [2011-02-04 18:08:51 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Outlook Express.lnk [2011-02-04 18:03:20 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Windows Media Player.lnk [2011-02-04 18:02:15 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-02-04 18:02:15 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-02-04 18:00:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-02-04 15:49:28 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\KMPlayer.lnk [2011-02-04 15:42:09 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Fast.Stone.lnk [2011-02-04 15:28:59 | 000,001,860 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\M.Player Classic HC.lnk [2011-02-04 15:21:00 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\WordPad.lnk [2011-02-04 15:09:40 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PowerISO.lnk [2011-02-04 14:53:52 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Autostart\SysInfoMyWork.lnk [2011-02-04 14:50:14 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Moje wideo.lnk [2011-02-04 14:50:05 | 000,000,476 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Moje obrazy.lnk [2011-02-04 14:49:59 | 000,000,476 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Moja muzyka.lnk [2011-02-04 14:47:14 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Virtual CD Nero.ID (G).lnk [2011-02-04 14:44:16 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Downloads.lnk [2011-02-04 14:29:31 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2011-02-04 13:32:51 | 000,001,820 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Corel Draw.LNK [2011-02-04 12:21:53 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Internet Explorer.lnk [2011-02-04 11:58:40 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [2011-02-04 11:57:51 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2011-02-04 11:44:47 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (D).lnk [2011-02-04 10:17:11 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysk .3,5 (A).lnk [2011-02-04 10:15:47 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (F).lnk [2011-02-04 10:15:42 | 000,000,275 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (E).lnk [2011-02-04 10:15:37 | 000,000,293 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (C).lnk [2011-02-04 10:08:29 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin [2011-02-04 09:44:45 | 000,000,773 | ---- | M] () -- C:\Documents and Settings\#_arek\Pulpit\Revo Uninstaller.lnk [2011-02-04 09:28:48 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011-02-04 09:26:53 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011-02-04 09:26:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2011-02-04 09:26:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-02-04 09:26:53 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-02-04 09:26:53 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-02-04 09:26:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011-02-04 09:26:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2011-02-04 09:23:59 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-14 22:24:20 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\e-pity2010.lnk [2011-03-14 01:06:16 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk [2011-03-13 20:52:22 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\EVEREST Ultimate Edition.lnk [2011-03-13 15:15:00 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Autostart\SysInfoMyWork.lnk [2011-03-13 08:31:30 | 000,002,539 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Office 2003.lnk [2011-03-12 18:11:38 | 000,000,145 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysków CD [H].lnk [2011-03-12 18:11:38 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysków CD [I].lnk [2011-03-04 21:14:13 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2011-03-03 11:59:40 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Real Plus.lnk [2011-03-02 07:48:39 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2011-02-28 21:06:53 | 000,001,054 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\ServInfo.lnk [2011-02-27 18:23:21 | 000,001,879 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Microsoft.F Simulator X.lnk [2011-02-25 19:52:22 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp 5.6.lnk [2011-02-24 11:57:02 | 000,008,980 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Fsx-Sdk].rtf [2011-02-24 09:51:31 | 000,921,654 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\Outlook [serwery].bmp [2011-02-23 19:53:20 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2011-02-23 19:29:22 | 000,000,325 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Nero.7.pl].rtf [2011-02-22 15:10:56 | 000,921,654 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\Kryry [poł.geogr].bmp [2011-02-21 09:56:52 | 000,000,061 | -HS- | C] () -- C:\WINDOWS\cnerolf.dat [2011-02-19 22:07:22 | 000,000,345 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Lukla].rtf [2011-02-18 10:54:02 | 000,000,312 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Translatica 4].rtf [2011-02-15 13:28:51 | 000,001,170 | ---- | C] () -- C:\WINDOWS\capture.INI [2011-02-10 23:01:53 | 000,000,254 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Gmax 1.2].rtf [2011-02-09 09:44:24 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-02-09 08:43:30 | 000,000,065 | ---- | C] () -- C:\WINDOWS\System32\-1 [2011-02-08 12:35:44 | 000,000,061 | -HS- | C] () -- C:\WINDOWS\cnerolf.bin [2011-02-07 09:48:54 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Chessmaster 10th Edition.lnk [2011-02-07 09:03:12 | 000,000,572 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Vatsim].rtf [2011-02-07 09:03:12 | 000,000,193 | ---- | C] () -- C:\Documents and Settings\#_arek\Moje dokumenty\[Ipla kod 90].rtf [2011-02-06 19:01:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-02-06 18:55:48 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox [3.6.13.pl].lnk [2011-02-06 14:22:13 | 000,001,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent [02.2.0].lnk [2011-02-06 13:29:43 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\#_arek\default.pls [2011-02-06 11:38:30 | 000,000,033 | ---- | C] () -- C:\WINDOWS\DownloadStudioScheduleMonitor.INI [2011-02-05 10:56:45 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-02-05 10:56:44 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-02-05 10:33:57 | 000,001,618 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CDBurnerXP.lnk [2011-02-05 10:33:57 | 000,001,556 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\CDBurnerXP.lnk [2011-02-05 10:33:56 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2011-02-05 10:23:39 | 000,001,628 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Format Factory.lnk [2011-02-05 10:13:41 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\VirtualDubMod.lnk [2011-02-05 09:16:06 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\PaperPort.lnk [2011-02-05 09:10:38 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini [2011-02-05 08:37:48 | 000,001,474 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ipla.pl.lnk [2011-02-04 21:21:33 | 000,000,268 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [tv.rp].url [2011-02-04 21:20:58 | 000,003,603 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [blog].url [2011-02-04 21:19:30 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\RZ [news].url [2011-02-04 20:30:54 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Total Commander.lnk [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF [2011-02-04 20:30:53 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF [2011-02-04 19:18:15 | 000,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities [2011-02-04 19:18:15 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tune.Up 9.04.pl.lnk [2011-02-04 18:08:51 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Outlook Express.lnk [2011-02-04 18:03:20 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Windows Media Player.lnk [2011-02-04 18:00:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-02-04 15:49:28 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\KMPlayer.lnk [2011-02-04 15:42:09 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Fast.Stone.lnk [2011-02-04 15:28:59 | 000,001,860 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\M.Player Classic HC.lnk [2011-02-04 15:22:59 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-02-04 15:21:00 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\WordPad.lnk [2011-02-04 15:09:40 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PowerISO.lnk [2011-02-04 14:56:24 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2011-02-04 14:50:14 | 000,000,467 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Moje wideo.lnk [2011-02-04 14:50:05 | 000,000,476 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Moje obrazy.lnk [2011-02-04 14:49:59 | 000,000,476 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Moja muzyka.lnk [2011-02-04 14:47:14 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Virtual CD Nero.ID (G).lnk [2011-02-04 14:29:31 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2011-02-04 14:08:32 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-02-04 14:08:29 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2011-02-04 14:08:27 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-02-04 14:04:54 | 000,141,312 | ---- | C] () -- C:\Documents and Settings\#_arek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-02-04 13:32:51 | 000,001,820 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Corel Draw.LNK [2011-02-04 13:28:24 | 000,028,252 | ---- | C] () -- C:\WINDOWS\corelpf.lrs [2011-02-04 13:28:04 | 000,112,688 | ---- | C] () -- C:\WINDOWS\System32\shw32.dll [2011-02-04 13:28:04 | 000,039,095 | ---- | C] () -- C:\WINDOWS\iccsigs.dat [2011-02-04 13:14:01 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 9.lnk [2011-02-04 12:41:44 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif [2011-02-04 12:23:25 | 000,000,464 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{E7EED94C-B589-43A1-BD7E-647216ABE5B0}.job [2011-02-04 12:21:53 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Internet Explorer.lnk [2011-02-04 11:58:49 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak [2011-02-04 11:44:47 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (D).lnk [2011-02-04 10:17:30 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2011-02-04 10:17:11 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Stacja dysk .3,5 (A).lnk [2011-02-04 10:15:47 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (F).lnk [2011-02-04 10:15:42 | 000,000,275 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (E).lnk [2011-02-04 10:15:37 | 000,000,293 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Dysk lokalny (C).lnk [2011-02-04 10:12:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-02-04 10:12:41 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2011-02-04 10:12:41 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2011-02-04 10:12:41 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2011-02-04 10:12:40 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2011-02-04 10:12:22 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2011-02-04 10:12:07 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2011-02-04 10:12:07 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2011-02-04 10:12:07 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2011-02-04 10:12:07 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2011-02-04 10:12:07 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2011-02-04 10:12:07 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2011-02-04 10:12:07 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2011-02-04 10:12:07 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2011-02-04 10:12:07 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2011-02-04 10:12:07 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2011-02-04 10:12:07 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2011-02-04 10:12:07 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2011-02-04 10:12:07 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2011-02-04 10:12:06 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2011-02-04 10:12:06 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2011-02-04 10:12:05 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2011-02-04 10:12:05 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2011-02-04 10:11:28 | 000,234,368 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-02-04 10:10:37 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2011-02-04 10:08:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2011-02-04 10:03:43 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2011-02-04 09:49:16 | 000,000,510 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Downloads.lnk [2011-02-04 09:44:45 | 000,000,773 | ---- | C] () -- C:\Documents and Settings\#_arek\Pulpit\Revo Uninstaller.lnk [2011-02-04 09:35:14 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Outlook Express.lnk [2011-02-04 09:35:12 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Internet Explorer.lnk [2011-02-04 09:35:06 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Pomoc zdalna.lnk [2011-02-04 09:35:06 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\#_arek\Menu Start\Programy\Windows Media Player.lnk [2011-02-04 09:28:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-02-04 09:28:19 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2011-02-04 09:28:07 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2011-02-04 09:28:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2011-02-04 09:28:00 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2011-02-04 09:27:59 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2011-02-04 09:27:52 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2011-02-04 09:27:48 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2011-02-04 09:27:45 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2011-02-04 09:27:37 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2011-02-04 09:26:53 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2011-02-04 09:26:53 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2011-02-04 09:26:53 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2011-02-04 09:26:53 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2011-02-04 09:26:53 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2011-02-04 09:26:50 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2011-02-04 09:26:50 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2011-02-04 09:26:49 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2011-02-04 09:25:36 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk [2011-02-04 09:25:27 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2011-02-04 09:25:15 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2011-02-04 09:25:15 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2011-02-04 09:25:10 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2011-02-04 09:24:41 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2011-02-04 09:23:59 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-02-04 09:23:20 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2011-02-04 09:23:20 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2011-02-04 09:23:20 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2011-02-04 09:23:19 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2011-02-04 09:23:19 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2011-02-04 09:23:19 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2011-02-04 09:23:19 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2011-02-04 09:23:19 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2011-02-04 09:23:19 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2011-02-04 09:23:19 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2011-02-04 09:23:19 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2011-02-04 09:23:17 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2011-02-04 09:23:17 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2011-02-04 09:23:16 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2011-02-04 09:23:12 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-10-20 19:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2009-06-07 15:24:04 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-06-07 15:16:12 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-05-16 03:54:01 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2009-05-16 03:54:01 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2009-04-23 20:04:54 | 000,189,051 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2009-02-18 18:55:21 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe [2009-02-03 21:52:03 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe [2009-01-28 19:50:44 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-04-15 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2008-04-15 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2008-04-15 13:00:00 | 000,503,694 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2008-04-15 13:00:00 | 000,444,548 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2008-04-15 13:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2008-04-15 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2008-04-15 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2008-04-15 13:00:00 | 000,090,394 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2008-04-15 13:00:00 | 000,072,424 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2008-04-15 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2008-04-15 13:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2008-04-15 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2008-04-15 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2008-04-15 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2008-04-15 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2008-04-15 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2004-04-23 22:02:10 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe [2003-04-08 13:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2003-02-19 01:26:28 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2011-02-05 10:09:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\AVI ReComp [2011-02-05 10:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\Canneverbe Limited [2011-02-04 22:24:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\Codeton [2011-02-06 11:38:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\Conceiva [2011-02-04 20:30:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\GHISLER [2011-03-16 17:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\ipla [2011-02-05 16:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\IVONA Player [2011-02-07 08:16:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\OpenOffice.ux.pl [2011-02-17 16:13:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\POLENG4 [2011-02-05 08:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\RDRM [2011-02-05 09:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\ScanSoft [2011-02-05 13:28:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\Thinstall [2011-02-04 19:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\TuneUp Software [2011-03-16 20:21:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\#_arek\Dane aplikacji\uTorrent [2011-02-04 13:07:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ad Muncher [2011-02-11 16:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Applications [2011-02-05 10:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2011-02-09 08:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Conceiva [2011-03-14 22:24:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\e-file [2011-02-06 10:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-02-05 09:10:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ScanSoft [2011-02-04 19:17:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2011-02-04 19:17:25 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} [2011-08-05 15:41:04 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{E7EED94C-B589-43A1-BD7E-647216ABE5B0}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2011-02-04 09:26:53 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-02-04 09:26:53 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-02-04 09:26:53 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-03-14 22:31:51 | 000,002,074 | ---- | M] () -- C:\Log.txt [2011-02-04 09:26:53 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2011-03-17 04:43:07 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\dllcache\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS [2008-04-14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\AGP440.SYS [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-15 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-15 13:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] [log]OTL Extras logfile created on: 2011-03-17 05:14:49 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\#_arek\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 100,69 Gb Total Space | 42,35 Gb Free Space | 42,06% Space Free | Partition Type: NTFS Drive D: | 120,21 Gb Total Space | 52,73 Gb Free Space | 43,87% Space Free | Partition Type: NTFS Drive E: | 120,17 Gb Total Space | 52,39 Gb Free Space | 43,59% Space Free | Partition Type: NTFS Drive F: | 120,18 Gb Total Space | 55,66 Gb Free Space | 46,31% Space Free | Partition Type: NTFS Computer Name: DOM-9A8BACBFC93 | User Name: #_arek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google) "C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe" = C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime -- (Nero AG) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\ipla\ipla.exe" = C:\Program Files\ipla\ipla.exe:*:Enabled:ipla -- (Redefine Sp z o.o.) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox -- (Mozilla Corporation) "C:\Program Files\Paseczek\Paseczek.exe" = C:\Program Files\Paseczek\Paseczek.exe:*:Enabled:Paseczek -- (Codeton Software) "C:\Program Files\Futuremark\3DMark06\3DMark06.exe" = C:\Program Files\Futuremark\3DMark06\3DMark06.exe:*:Enabled:3DMark06 -- (Futuremark Corporation) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation) "C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.) "C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe" = C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe:*:Enabled:Microsoft Flight Simulator® -- (Microsoft Corp.) "C:\Program Files\DriverGenius\DriverGenius.exe" = C:\Program Files\DriverGenius\DriverGenius.exe:*:Enabled:Driver Genius Professional Edition -- (Driver-Soft Inc.) "C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- (RealNetworks, Inc.) "C:\Program Files\DownloadStudio\DownloadStudio.exe" = C:\Program Files\DownloadStudio\DownloadStudio.exe:*:Enabled:DownloadStudio -- (Conceiva Pty. Ltd.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{00606438-902C-4280-84DD-E665911DFBE1}" = Aerosoft's - PBY Catalina X "{036FD544-AED6-3F33-856D-A2292D0CF471}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK "{0446A460-E8E8-4387-9D1F-4BE9C9824F7B}" = Microsoft Antimalware Service PL-PL Language Pack "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{07B5FCA5-2B1F-E26C-95FF-57EBEF4C1989}" = Catalyst Control Center Localization All "{0D005F09-A5F4-473B-A901-5735C6AF5628}" = Silent Hunter 4 Wolves of the Pacific "{0EB5340D-F940-3252-317B-478A1B953ADA}" = CCC Help Hungarian "{10CE1EA2-1248-11D3-825E-00C04F6843FE}" = Dźwięki pakietu Microsoft Office "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{20D7A14C-2E0C-261C-2D03-CC01017FB889}" = CCC Help Swedish "{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v1.5.0.2827 "{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 23 "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{2A558A06-A44E-400D-95AD-D9FAA89AFD36}" = USB Network Joystick "{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36AD13A4-AEE0-24F6-AA8F-0C6E681DECC1}" = Catalyst Control Center HydraVision Full "{3FA7A919-87DA-42B1-814B-86DE8DCA17C2}" = gmax "{41B60BE2-2AD5-4407-82A3-CAC011722891}" = CCC Help English "{4620539C-8EB4-2AFE-1C27-BF9C4BA946CC}" = CCC Help Greek "{462DAE77-0970-423B-8736-356E4C6A6732}" = Chessmaster 10th Edition "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{57BFA92D-1D86-D1A0-AECF-B579806DAE9C}" = CCC Help Norwegian "{5C104E56-A441-429D-A609-D8A46EB92EA1}" = PCMark05 "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{6428883D-64B5-A88F-7A53-355E7DD2D904}" = ccc-utility "{6523912B-1853-8E2F-E7E7-BC81D4035B96}" = ccc-core-preinstall "{670A2206-F20A-490C-8C13-25EA88BF8E53}_is1" = e-pity 2010 "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7336143C-44FD-4AAC-B53A-158FEA08489D}" = OpenOffice.ux.pl 3.3 "{75177B35-F07D-B593-67C6-A8B7A7F9A635}" = CCC Help Japanese "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware "{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client "{7C77393F-8237-3825-A88A-AFAF3C69C072}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{7E8DB1E0-C2C4-F8B8-F794-9FDA6BBD053B}" = CCC Help Chinese Standard "{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06 "{7FEE6984-87F3-00F8-9758-402091A4A8CC}" = CCC Help Czech "{85767617-E6B1-499E-8C1B-C92E2AAFF586}" = TuneUp Utilities Language Pack (pl-PL) "{859B9BCA-5376-4566-9F88-C6C9DAA7A925}" = Microsoft Security Client PL-PL Language Pack "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B184BEE-318C-E789-D988-1BB0708D99FE}" = Catalyst Control Center Graphics Full Existing "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{91C0B95B-B83A-4828-A775-BBE2DD421045}" = Nero 7 Ultra Edition "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9527A496-5DF9-412A-ADC7-168BA5379CA6}" = Microsoft Flight Simulator X "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{A6B15DB7-DB7C-4EB7-96F5-7F801CFA6F35}" = Just Flight - 737 Pilot In Command (FSX) "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9729B90-D37B-4A69-B66A-7436AC1F7274}" = Microsoft Flight Simulator X: Acceleration "{A9EC5CD8-7CEF-15C3-61EC-37D38ADC2B68}" = CCC Help Turkish "{AA4469D9-F78A-AD5E-857E-0083E183DC3C}" = Catalyst Control Center Graphics Full New "{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.2 - Polish "{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver "{AF280B6D-7C2E-156C-E416-33E880233D77}" = CCC Help Spanish "{B0020634-3C3E-A66A-1CB3-DD73B441C21C}" = Catalyst Control Center Core Implementation "{B307FBF9-C9B5-355A-E8E9-EAB36E702B31}" = CCC Help Korean "{B5DE553F-E158-2468-1927-A7F6B255823D}" = ccc-core-static "{B6C16142-FD10-9698-9237-9603B09D90EE}" = CCC Help Italian "{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11 "{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}" = DownloadStudio "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CE0BDD48-B2F5-7026-32E0-3A4706500A62}" = CCC Help Russian "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CF56984D-35C6-4ADB-9075-394978A427FB}" = Microsoft Flight Simulator X: Acceleration SDK "{CFDF1790-24E0-8612-F72E-8CB557E87042}" = CCC Help Thai "{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities "{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding "{DB52432E-3AD8-41A5-A586-0F065FB6A31E}" = Game Cam "{DD4371B0-D2F6-11D7-BDC5-123456789098}" = Translatica 4 "{E02F11FF-DE47-7D17-2DAF-C914A4EF7935}" = Catalyst Control Center Graphics Light "{E05DB37A-ED2A-A026-73E0-4C1855914EC4}" = CCC Help Portuguese "{E386EBA3-4F64-2CCD-9F18-B4846EF8B34A}" = CCC Help Danish "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{EF1F9A01-578D-6324-A490-BF9C8DDE421A}" = CCC Help Polish "{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}" = aerosoft's - Lukla X - Mount Everest "{F31E509D-3597-324E-83CF-0C160B2320F0}" = Microsoft .NET Framework 3.5 Language Pack - plk "{F39FBC8B-FBC2-FDBB-1D32-9D5BCB5ACE3C}" = CCC Help French "{F63932B1-635F-B28F-0F43-1CED483AF4F4}" = CCC Help Chinese Traditional "{FB4F9000-04FC-11E0-85D2-001AA037B01E}" = Google Earth Plug-in "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "{FD93D7F1-9631-7477-F88D-FF53976D83C3}" = Catalyst Control Center Graphics Previews Common "{FED94B87-98BE-D640-1F37-58A8D15D87FC}" = CCC Help Dutch "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "{FF7DDA54-5150-6959-3D17-D170D00FB57C}" = CCC Help Finnish "{FFDEBCEC-2CC5-6AB0-260A-22EA03E9895E}" = CCC Help German "Ad Muncher" = Ad Muncher v4.72 Build 30400 "ADE9xSetup_is1" = Airport Design Editor 9x Version 1.47.7.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AICarriers" = AI Carriers "All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI "Ashampoo HDD Control_is1" = Ashampoo HDD Control 1.10 "ATI Display Driver" = ATI Display Driver "Audacity_is1" = Audacity 1.2.6 "AVI ReComp" = AVI ReComp 1.5.1 "Avisynth" = AviSynth 2.5 "ClocX" = ClocX (1.5b1) "C-Media Audio Driver" = C-Media WDM Audio Driver "Corel Applications" = Corel Applications "CPUID CPU-Z_is1" = CPUID CPU-Z 1.55 "CWK" = CWK (Czasowy Wyłącznik Komputera) "DivX Setup.divx.com" = DivX Setup "Driver Genius Professional Edition_is1" = Driver Genius Professional Edition "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "FastStone Image Viewer" = FastStone Image Viewer 4.2 "FlightSim_{A9729B90-D37B-4A69-B66A-7436AC1F7274}" = Microsoft Flight Simulator X: Acceleration "FormatFactory" = FormatFactory 2.30 "FSX Missions - A321 Lufthansa" = FSX Missions - A321 Lufthansa "HaaliMkx" = Haali Media Splitter "ie8" = Windows Internet Explorer 8 "InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}" = Microsoft Flight Simulator X "ipla" = ipla 2.2.2b "IVONA" = IVONA "IVONA Player" = IVONA Player "KLiteCodecPack_is1" = K-Lite Codec Pack 6.7.0 (Full) "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 Language Pack - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Security Client" = Microsoft Security Essentials "Mozilla Firefox (3.6.14)" = Mozilla Firefox (3.6.14) "OpenAL" = OpenAL "Paseczek_is1" = Paseczek 1.1.0.365 "PowerISO" = PowerISO "Revo Uninstaller" = Revo Uninstaller 1.88 "RTMshadow_{A9729B90-D37B-4A69-B66A-7436AC1F7274}" = Flight Simulator X "SP1_9527A496-5DF9-412A-ADC7-168BA5379CA6" = Microsoft Flight Simulator X Service Pack 1 "SP1shadow_{A9729B90-D37B-4A69-B66A-7436AC1F7274}" = Flight Simulator X Service Pack 1 "SpeedFan" = SpeedFan (remove only) "SysInfoMyWork" = SysInfoMyWork "The KMPlayer" = The KMPlayer (remove only) "Totalcmd" = Total Commander (Remove or Repair) "TuneUp Utilities" = TuneUp Utilities "UltraISO_is1" = UltraISO Premium V8.2 "uTorrent" = µTorrent "VirtualDubMod" = VirtualDubMod 1.5.10.2 PL "VobSub" = VobSub 2.23 "Winamp" = Winamp "Windows Media Encoder 9" = Windows Media Encoder 9 Series "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Wings of POWER II: P51 Mustang" = Wings of POWER II: P51 Mustang "Wings of POWER: Heavy Bombers and Jets" = Wings of POWER: Heavy Bombers and Jets "WinPcapInst" = WinPcap 4.1.1 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 "Xvid_is1" = Xvid 1.2.2 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1004336348-1958367476-527237240-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Ultimate Airliners - Super 80 Professional" = Ultimate Airliners - Super 80 Professional "Ultimate Terrain X - Europe" = Ultimate Terrain X - Europe [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-02-11 12:17:10 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:17:49 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:27:01 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:30:53 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:36:10 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:36:20 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1001 Description = Pakiet błędów 557892417. Error - 2011-02-11 12:37:24 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-11 12:37:29 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1001 Description = Pakiet błędów 557892417. Error - 2011-02-12 10:06:51 | Computer Name = DOM-9A8BACBFC93 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd fsx.exe, wersja 10.0.61637.0, moduł powodujący błąd g3d.dll, wersja 10.0.61637.0, adres błędu 0x000122fa. Error - 2011-02-12 14:44:47 | Computer Name = DOM-9A8BACBFC93 | Source = MPSampleSubmission | ID = 5000 Description = EventType mptelemetry, P1 80240022, P2 processdownloadresults, P3 download, P4 3.0.8107.0, P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P8 NIL, P9 NIL, P10 NIL. [ System Events ] Error - 2011-02-12 14:44:47 | Computer Name = DOM-9A8BACBFC93 | Source = Microsoft Antimalware | ID = 2001 Description = Program %%860 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.97.1491.0 Źródło aktualizacji: %%859 Etap aktualizacji %%853 Ścieżka źródła: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizacji: %%803 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.6502.0 Kod błędu: 0x80240022 Opis błędu: Program nie może sprawdzić, czy są dostępne aktualizacje definicji. Error - 2011-02-12 14:44:47 | Computer Name = DOM-9A8BACBFC93 | Source = Microsoft Antimalware | ID = 2001 Description = Program %%860 napotkał błąd podczas próby aktualizacji podpisów. Nowa wersja podpisu: Poprzednia wersja podpisu: 1.97.1491.0 Źródło aktualizacji: %%859 Etap aktualizacji %%853 Ścieżka źródła: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizacji: %%803 Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.6502.0 Kod błędu: 0x80240022 Opis błędu: Program nie może sprawdzić, czy są dostępne aktualizacje definicji. < End of report > [/log] RSIT [log]info.txt logfile of random's system information tool 1.08 2011-03-17 05:32:56 ======Uninstall list====== -->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL 3DMark06-->"C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -runfromtemp -l0x0009 -removeonly Ad Muncher v4.72 Build 30400-->"C:\Program Files\Ad Muncher\AM-Install.exe" /P "InstallerAction=Uninstall" /P "InstallTarget=C:\Program Files\Ad Muncher" Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe -maintain activex Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10n_Plugin.exe -maintain plugin Adobe Reader 9.4.2 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001} aerosoft's - Lukla X - Mount Everest-->C:\Program Files\InstallShield Installation Information\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}\setup.exe -runfromtemp -l0x0009 -uninst -removeonly Aerosoft's - PBY Catalina X-->C:\Program Files\InstallShield Installation Information\{00606438-902C-4280-84DD-E665911DFBE1}\setup.exe -runfromtemp -l0x0009 -removeonly AI Carriers-->"C:\Program Files\AICarriers\uninstall.exe" Airport Design Editor 9x Version 1.47.7.0-->"C:\Program Files\FS Design Tools\Airport Design Editor 9x\UninsHs.exe" Aktualizacja dla systemu Windows Internet Explorer 8 (KB2447568)-->"C:\WINDOWS\ie8updates\KB2447568-IE8\spuninst\spuninst.exe" Aktualizacja dla systemu Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2482017)-->"C:\WINDOWS\ie8updates\KB2482017-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2416400)-->"C:\WINDOWS\$NtUninstallKB2416400$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Ashampoo HDD Control 1.10-->"C:\Program Files\Ashampoo HDD Control\unins000.exe" ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0 ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe" AVI ReComp 1.5.1-->C:\Program Files\AVI ReComp\Uninstall.exe AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe" Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C} CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe" Chessmaster 10th Edition-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{462DAE77-0970-423B-8736-356E4C6A6732}\Setup.exe" -l0x15 ClocX (1.5b1)-->"C:\Program Files\ClocX\Uninstall.exe" C-Media WDM Audio Driver-->C:\WINDOWS\system32\cmirmdrv.exe Corel Applications-->C:\WINDOWS\Corel\Uninst32.exe CPUID CPU-Z 1.55-->"C:\Program Files\CPUID\CPU-Z\unins000.exe" CWK (Czasowy Wyłącznik Komputera)-->"C:\Program Files\CWK\CWK.exe" /uninstall DivX Setup-->C:\Documents and Settings\All Users\Dane aplikacji\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com DownloadStudio-->"C:\Program Files\InstallShield Installation Information\{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}\setup.exe" -runfromtemp -l0x0415 -removeonly Driver Genius Professional Edition-->"C:\Program Files\DriverGenius\unins000.exe" Dźwięki pakietu Microsoft Office-->MsiExec.exe /I{10CE1EA2-1248-11D3-825E-00C04F6843FE} e-pity 2010-->"C:\Program Files\e-file\e-pity2010\unins000.exe" EVEREST Ultimate Edition v5.30-->"C:\Program Files\EVEREST Ultimate Edition\unins000.exe" FastStone Image Viewer 4.2-->C:\Program Files\FastStone Image Viewer\uninst.exe FormatFactory 2.30-->C:\Program Files\FormatFactory\uninst.exe FSX Missions - A321 Lufthansa-->C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\Uninstal FSX Missions LH321.exe Futuremark SystemInfo-->"C:\Program Files\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe" -runfromtemp -l0x0409 -removeonly Game Cam-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DB52432E-3AD8-41A5-A586-0F065FB6A31E}\setup.exe" gmax-->MsiExec.exe /X{3FA7A919-87DA-42B1-814B-86DE8DCA17C2} Google Earth Plug-in-->MsiExec.exe /X{FB4F9000-04FC-11E0-85D2-001AA037B01E} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Haali Media Splitter-->"C:\Program Files\Haali\MatroskaSplitter\uninstall.exe" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" ipla 2.2.2b-->C:\Program Files\ipla\uninst.exe IVONA Player-->"C:\Program Files\IVONA\IVONA Player\uninstall.exe" IVONA-->C:\Program Files\Ivona\Ivona Voice\RemoveIvona.exe Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216023FF} Just Flight - 737 Pilot In Command (FSX)-->C:\Program Files\InstallShield Installation Information\{A6B15DB7-DB7C-4EB7-96F5-7F801CFA6F35}\Setup.exe -runfromtemp -l0x0009 -removeonly K-Lite Codec Pack 6.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Media Player Classic - Home Cinema v1.5.0.2827-->"C:\Program Files\Media Player Classic - Home Cinema\unins000.exe" Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{036FD544-AED6-3F33-856D-A2292D0CF471} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{7C77393F-8237-3825-A88A-AFAF3C69C072} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 Language Pack - plk-->MsiExec.exe /I{F31E509D-3597-324E-83CF-0C160B2320F0} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Antimalware Service PL-PL Language Pack-->MsiExec.exe /X{0446A460-E8E8-4387-9D1F-4BE9C9824F7B} Microsoft Antimalware-->MsiExec.exe /X{774088D4-0777-4D78-904D-E435B318F5D2} Microsoft Flight Simulator X Service Pack 1-->c:\WINDOWS\system32\msiexec.exe /qb /l*vx "%TEMP%\FlightSimPatchUninstall.log" /uninstall {92635E02-4C29-4A8F-AA82-7B8B95C823D3} /package {9527A496-5DF9-412A-ADC7-168BA5379CA6} Microsoft Flight Simulator X: Acceleration SDK-->MsiExec.exe /X{CF56984D-35C6-4ADB-9075-394978A427FB} Microsoft Flight Simulator X: Acceleration-->C:\WINDOWS\system32\msiexec.exe /qb /l*vx "%TEMP%\FlightSimUninstall.log" /uninstall {A9729B90-D37B-4A69-B66A-7436AC1F7274} Microsoft Flight Simulator X: Acceleration-->MsiExec.exe /I{A9729B90-D37B-4A69-B66A-7436AC1F7274} Microsoft Flight Simulator X-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{9527A496-5DF9-412A-ADC7-168BA5379CA6} Microsoft Flight Simulator X-->MsiExec.exe /X{9527A496-5DF9-412A-ADC7-168BA5379CA6} Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110415-6000-11D3-8CFE-0150048383C9} Microsoft Security Client PL-PL Language Pack-->MsiExec.exe /I{859B9BCA-5376-4566-9F88-C6C9DAA7A925} Microsoft Security Client-->MsiExec.exe /I{77A776C4-D10F-416D-88F0-53F2D9DCD9B3} Microsoft Security Essentials-->C:\Program Files\Microsoft Security Client\Setup.exe /x Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Mozilla Firefox (3.6.14)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC} Narzędzie Software Uninstall Utility firmy ATI-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe Nero 7 Ultra Edition-->MsiExec.exe /X{91C0B95B-B83A-4828-A775-BBE2DD421045} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U OpenOffice.ux.pl 3.3-->MsiExec.exe /I{7336143C-44FD-4AAC-B53A-158FEA08489D} Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - plk\setup.exe PaperPort Image Printer-->MsiExec.exe /X{332CC6BF-E6C7-48EE-BA3D-435E576AD67F} Paseczek 1.1.0.365-->"C:\Program Files\Paseczek\unins000.exe" PCMark05-->"C:\Program Files\InstallShield Installation Information\{5C104E56-A441-429D-A609-D8A46EB92EA1}\setup.exe" -runfromtemp -l0x0009 -removeonly PlayReady PC Runtime x86-->MsiExec.exe /X{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61} PowerISO-->"C:\Program Files\PowerISO\uninstall.exe" REALTEK GbE & FE Ethernet PCI NIC Driver-->C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe -runfromtemp -removeonly RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB} Revo Uninstaller 1.88-->C:\Program Files\Revo Uninstaller\uninst.exe ScanSoft PaperPort 11-->MsiExec.exe /I{B6C89654-A6A2-477C-873B-724EC1C56407} Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT="" Silent Hunter 4 Wolves of the Pacific-->C:\Program Files\InstallShield Installation Information\{0D005F09-A5F4-473B-A901-5735C6AF5628}\Setup.exe -runfromtemp -l0x0015 -removeonly Sp5-->MsiExec.exe /I{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C} Sp5Intl-->MsiExec.exe /I{FD4B33E1-24AE-4535-AA7B-162B30FB57CD} Sp5TTInt-->MsiExec.exe /I{E415C943-37E5-473F-8BAE-043C56734124} SpCommon-->MsiExec.exe /I{6C3959C6-943E-44B3-BAAD-570B04B134E5} SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe" SpPhones-->MsiExec.exe /I{4DFF1415-4C29-44A8-BFD4-2BCE249C4991} SysInfoMyWork-->C:\Program Files\SysInfoMyWork\Uninstall.exe The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe" Total Commander (Remove or Repair)-->C:\Program Files\totalcmd\tcuninst.exe Translatica 4-->MsiExec.exe /I{DD4371B0-D2F6-11D7-BDC5-123456789098} TuneUp Utilities-->C:\Program Files\TuneUp Utilities 2010\TUInstallHelper.exe --Trigger-Uninstall UltraISO Premium V8.2-->"C:\Program Files\UltraISO\unins000.exe" Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" USB Network Joystick-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}\setup.exe" -l0x9 VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} VirtualDubMod 1.5.10.2 PL-->C:\Program Files\VirtualDubMod\Odinstaluj.exe VobSub 2.23-->C:\Program Files\VobSub\uninstall.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Media Encoder 9 Series-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} Windows Media Encoder 9 Series-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} Wings of POWER II: P51 Mustang-->C:\PROGRA~1\MICROS~4\MICROS~1\\UNWISE.EXE C:\PROGRA~1\MICROS~4\MICROS~1\\tempwp.log Wings of POWER: Heavy Bombers and Jets-->C:\PROGRA~1\MICROS~4\MICROS~1\\UNWISE.EXE C:\PROGRA~1\MICROS~4\MICROS~1\\tempwp.log WinPcap 4.1.1-->C:\Program Files\WinPcap\uninstall.exe XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" Xvid 1.2.2-->C:\Program Files\Xvid\unins000.exe ======System event log====== Computer Name: DOM-9A8BACBFC93 Event Code: 5007 Message: Konfiguracja programu Microsoft Antimalware zmieniła się. Jeśli to jest nieoczekiwane zdarzenie, ustawienia powinny zostać przejrzane, ponieważ może to być wynik działania złośliwego oprogramowania. Stara wartość: Nowa wartość: HKLM\SOFTWARE\Microsoft\Microsoft Antimalware\Exclusions\Extensions\DDA = 0x0 Record Number: 1340 Source Name: Microsoft Antimalware Time Written: 20110211105336.000000+060 Event Type: informacje User: Computer Name: DOM-9A8BACBFC93 Event Code: 7035 Message: Do usługi MpKsl6a466ed4 został pomyślnie wysłany kod sterowania uruchom. Record Number: 1339 Source Name: Service Control Manager Time Written: 20110211092614.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: DOM-9A8BACBFC93 Event Code: 2000 Message: Wersja podpisu programu Microsoft Antimalware została zaktualizowana Bieżąca wersja podpisu: 1.97.1491.0 Poprzednia wersja podpisu: 1.97.1355.0 Typ podpisu: Oprogramowanie antywirusowe Typ aktualizacji: Różnica Użytkownik ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: 1.1.6502.0 Poprzednia wersja aparatu: 1.1.6502.0 Record Number: 1338 Source Name: Microsoft Antimalware Time Written: 20110211092613.000000+060 Event Type: informacje User: Computer Name: DOM-9A8BACBFC93 Event Code: 7036 Message: Usługa Instalator Windows weszła w stan uruchomienia. Record Number: 1337 Source Name: Service Control Manager Time Written: 20110805164038.000000+120 Event Type: informacje User: Computer Name: DOM-9A8BACBFC93 Event Code: 7035 Message: Do usługi Instalator Windows został pomyślnie wysłany kod sterowania uruchom. Record Number: 1336 Source Name: Service Control Manager Time Written: 20110805164038.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM =====Application event log===== Computer Name: DOM-9A8BACBFC93 Event Code: 11707 Message: Produkt: SpPhones -- Instalacja została pomyślnie zakończona. Record Number: 497 Source Name: MsiInstaller Time Written: 20110805164044.000000+120 Event Type: informacje User: DOM-9A8BACBFC93\#_arek Computer Name: DOM-9A8BACBFC93 Event Code: 11707 Message: Produkt: SpCommon -- Instalacja została pomyślnie zakończona. Record Number: 496 Source Name: MsiInstaller Time Written: 20110805164043.000000+120 Event Type: informacje User: DOM-9A8BACBFC93\#_arek Computer Name: DOM-9A8BACBFC93 Event Code: 11707 Message: Product: Sp5TTInt -- Installation completed successfully. Record Number: 495 Source Name: MsiInstaller Time Written: 20110805164042.000000+120 Event Type: informacje User: DOM-9A8BACBFC93\#_arek Computer Name: DOM-9A8BACBFC93 Event Code: 11707 Message: Product: Sp5Intl -- Installation completed successfully. Record Number: 494 Source Name: MsiInstaller Time Written: 20110805164041.000000+120 Event Type: informacje User: DOM-9A8BACBFC93\#_arek Computer Name: DOM-9A8BACBFC93 Event Code: 11707 Message: Produkt: Sp5 -- Instalacja została pomyślnie zakończona. Record Number: 493 Source Name: MsiInstaller Time Written: 20110805164040.000000+120 Event Type: informacje User: DOM-9A8BACBFC93\#_arek ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 1, GenuineIntel "PROCESSOR_REVISION"=0401 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log] [log]Logfile of random's system information tool 1.08 (written by random/random) Run by #_arek at 2011-03-17 05:32:51 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 43 GB (42%) free of 103 GB Total RAM: 2047 MB (69% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 05:32:54, on 2011-03-17 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\WINDOWS\system32\RunDll32.exe C:\Program Files\Ad Muncher\AdMunch.exe C:\Program Files\ClocX\ClocX.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Paseczek\Paseczek.exe C:\Program Files\SpeedFan\speedfan.exe C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\#_arek\Moje dokumenty\Downloads\RSIT.exe C:\Program Files\trend micro\#_arek.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: IeMonitor - {8170D7DC-BDD6-461e-88EB-F047257898C9} - C:\Program Files\DownloadStudio\DLMonitr.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: DownloadStudio IE Toolbar - {CB789373-04D5-4ef4-9C16-871463FD0830} - C:\Program Files\DownloadStudio\WebDLBar.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [Ad Muncher] "C:\Program Files\Ad Muncher\AdMunch.exe" /bt O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Paseczek] C:\Program Files\Paseczek\Paseczek.exe O4 - HKCU\..\Run: [speedfan] C:\Program Files\SpeedFan\speedfan.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: SysInfoMyWork.lnk = C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe O8 - Extra context menu item: Dodaj stronę do albumu DownloadStudio... - C:\Program Files\DownloadStudio\ds_snap.htm O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Korzystając z DownloadStudio pobierz stronę... - C:\Program Files\DownloadStudio\ds_all.htm O8 - Extra context menu item: Korzystając z DownloadStudio pobierz... - C:\Program Files\DownloadStudio\ds_file.htm O8 - Extra context menu item: Korzystając z DownloadStudio pokaż linki stron... - C:\Program Files\DownloadStudio\ds_link.htm O8 - Extra context menu item: Pobierz obrazek przy użyciu DownloadStudio... - C:\Program Files\DownloadStudio\ds_img.htm O8 - Extra context menu item: Pobierz plik wideo za pomocą DownloadStudio... - C:\Program Files\DownloadStudio\ds_video.htm O8 - Extra context menu item: Pobierz wybrane zadania przez DownloadStudio ... - C:\Program Files\DownloadStudio\ds_sel.htm O8 - Extra context menu item: Zaprenumeruj kanał informacyjny RSS... - C:\Program Files\DownloadStudio\ds_rss.htm O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (FuturemarkSystemInfoX Class) - http://clients.futuremark.com/openapi/receivers/FMSI.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo HDD Control\Dfsdks.exe O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 7750 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\User_Feed_Synchronization-{E7EED94C-B589-43A1-BD7E-647216ABE5B0}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2011-03-03 329312] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8170D7DC-BDD6-461e-88EB-F047257898C9}] DownloadStudio IE Add-on - C:\Program Files\DownloadStudio\DLMonitr.dll [2010-11-16 670024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-04 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-04 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {CB789373-04D5-4ef4-9C16-871463FD0830} - DownloadStudio IE Toolbar - C:\Program Files\DownloadStudio\WebDLBar.dll [2010-11-16 168264] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd [] "Ad Muncher"=C:\Program Files\Ad Muncher\AdMunch.exe [2011-02-04 779776] "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-05-20 98304] "ClocX"=C:\Program Files\ClocX\ClocX.exe [2005-01-26 270336] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "Paseczek"=C:\Program Files\Paseczek\Paseczek.exe [2008-03-07 1616384] "speedfan"=C:\Program Files\SpeedFan\speedfan.exe [2010-11-03 4360896] C:\Documents and Settings\#_arek\Menu Start\Programy\Autostart SysInfoMyWork.lnk - C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2009-05-16 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth" "C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer" "C:\Program Files\ipla\ipla.exe"="C:\Program Files\ipla\ipla.exe:*:Enabled:ipla" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox" "C:\Program Files\Paseczek\Paseczek.exe"="C:\Program Files\Paseczek\Paseczek.exe:*:Enabled:Paseczek" "C:\Program Files\Futuremark\3DMark06\3DMark06.exe"="C:\Program Files\Futuremark\3DMark06\3DMark06.exe:*:Enabled:3DMark06" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server" "C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp" "C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe"="C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe:*:Enabled:Microsoft Flight Simulator®" "C:\Program Files\DriverGenius\DriverGenius.exe"="C:\Program Files\DriverGenius\DriverGenius.exe:*:Enabled:Driver Genius Professional Edition" "C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer" "C:\Program Files\DownloadStudio\DownloadStudio.exe"="C:\Program Files\DownloadStudio\DownloadStudio.exe:*:Enabled:DownloadStudio" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2011-08-05 15:40:38 ----D---- C:\Program Files\Ivona 2011-03-17 05:32:51 ----D---- C:\rsit 2011-03-16 18:50:22 ----D---- C:\Program Files\trend micro 2011-03-14 22:24:24 ----D---- C:\Program Files\Common Files\SWF Studio 2011-03-14 22:24:12 ----D---- C:\Program Files\e-file 2011-03-14 22:24:12 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\e-file 2011-03-14 01:06:10 ----D---- C:\Program Files\Microsoft Security Client 2011-03-13 22:54:05 ----D---- C:\WINDOWS\system32\NtmsData 2011-03-13 20:25:30 ----D---- C:\Program Files\SpeedFan 2011-03-13 19:14:00 ----HD---- C:\WINDOWS\system32\GroupPolicy 2011-03-12 15:46:10 ----D---- C:\Program Files\EVEREST Ultimate Edition 2011-03-12 07:59:33 ----D---- C:\WINDOWS\Minidump 2011-03-05 11:25:02 ----D---- C:\Program Files\Wings of POWER II WWII FIGHTERS 2011-03-05 11:24:21 ----D---- C:\Program Files\Wings of POWER Heavy Bombers and Jets 2011-03-04 21:14:13 ----A---- C:\WINDOWS\ODBC.INI 2011-03-04 21:14:04 ----A---- C:\WINDOWS\system32\mdimon.dll 2011-03-04 21:12:41 ----D---- C:\Program Files\Common Files\DESIGNER 2011-03-04 21:12:21 ----D---- C:\WINDOWS\SHELLNEW 2011-03-04 21:12:18 ----D---- C:\Program Files\Microsoft.NET 2011-03-04 21:12:18 ----D---- C:\Program Files\Microsoft Office 2011-03-03 11:59:36 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2011-03-03 11:59:30 ----A---- C:\WINDOWS\system32\pndx5032.dll 2011-03-03 11:59:30 ----A---- C:\WINDOWS\system32\pndx5016.dll 2011-03-03 11:59:29 ----D---- C:\Program Files\Common Files\xing shared 2011-03-03 11:59:20 ----A---- C:\WINDOWS\system32\pncrt.dll 2011-03-03 11:59:20 ----A---- C:\WINDOWS\system32\msvcp71.dll 2011-03-03 11:59:18 ----D---- C:\Program Files\Common Files\Real 2011-03-03 11:58:50 ----D---- C:\Program Files\Real 2011-03-02 07:48:39 ----A---- C:\WINDOWS\system32\RtNicProp32.dll 2011-03-02 07:48:39 ----A---- C:\WINDOWS\system32\drivers\Rtnicxp.sys 2011-03-02 07:48:38 ----D---- C:\Program Files\Realtek 2011-03-02 07:29:12 ----D---- C:\WINDOWS\system32\ReinstallBackups 2011-03-02 07:29:09 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-03-02 07:29:09 ----D---- C:\Program Files\Intel 2011-03-02 07:29:09 ----A---- C:\WINDOWS\system32\CSVer.dll 2011-03-02 07:28:48 ----D---- C:\Intel 2011-03-01 19:36:23 ----A---- C:\WINDOWS\system32\XceedZip.dll 2011-03-01 19:36:21 ----D---- C:\Program Files\DriverGenius 2011-03-01 19:24:14 ----D---- C:\Program Files\CPUID 2011-03-01 19:24:14 ----A---- C:\WINDOWS\system32\drivers\cpuz134_x32.sys 2011-03-01 15:24:27 ----D---- C:\Program Files\AICarriers 2011-02-28 20:47:25 ----D---- C:\Program Files\FS Design Tools 2011-02-28 15:40:55 ----D---- C:\Program Files\gmax 2011-02-27 18:08:51 ----D---- C:\Program Files\Microsoft Games 2011-02-27 12:14:01 ----RHD---- C:\Documents and Settings\#_arek\Dane aplikacji\SecuROM 2011-02-27 12:14:00 ----A---- C:\WINDOWS\system32\CmdLineExt.dll 2011-02-27 12:02:04 ----D---- C:\Documents and Settings\#_arek\Dane aplikacji\InstallShield 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\vxblock.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxwave.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxsfs.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxmas.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxdrv.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\pxafs.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\px.dll 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2011-02-25 19:52:12 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2011-02-25 19:52:11 ----D---- C:\Program Files\Winamp 2011-02-25 19:52:11 ----D---- C:\Documents and Settings\#_arek\Dane aplikacji\Winamp 2011-02-23 19:53:20 ----A---- C:\WINDOWS\WORDPAD.INI 2011-02-22 11:59:36 ----D---- C:\Program Files\Translatica 4 ======List of files/folders modified in the last 1 months====== 2011-03-17 04:52:41 ----D---- C:\WINDOWS\Temp 2011-03-17 04:50:21 ----D---- C:\WINDOWS\Prefetch 2011-03-17 04:43:37 ----D---- C:\WINDOWS\system32\CatRoot2 2011-03-17 03:00:10 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-03-16 23:49:16 ----A---- C:\WINDOWS\NeroDigital.ini 2011-03-16 21:54:30 ----D---- C:\WINDOWS\Debug 2011-03-16 20:21:20 ----D---- C:\Documents and Settings\#_arek\Dane aplikacji\uTorrent 2011-03-16 18:50:22 ----RD---- C:\Program Files 2011-03-16 18:43:31 ----D---- C:\Program Files\Mozilla Firefox 2011-03-16 17:49:01 ----D---- C:\Documents and Settings\#_arek\Dane aplikacji\ipla 2011-03-16 08:29:45 ----D---- C:\WINDOWS\system32\config 2011-03-15 16:05:41 ----D---- C:\WINDOWS 2011-03-15 06:20:53 ----SD---- C:\WINDOWS\Tasks 2011-03-14 22:31:51 ----A---- C:\Log.txt 2011-03-14 22:24:24 ----D---- C:\Program Files\Common Files 2011-03-14 15:29:04 ----D---- C:\Program Files\Ashampoo HDD Control 2011-03-14 01:06:39 ----SHD---- C:\WINDOWS\Installer 2011-03-14 01:06:39 ----SHD---- C:\Config.Msi 2011-03-14 01:06:22 ----D---- C:\WINDOWS\system32\drivers 2011-03-14 01:06:20 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2011-03-14 01:06:13 ----HD---- C:\WINDOWS\inf 2011-03-13 22:54:05 ----D---- C:\WINDOWS\system32 2011-03-13 22:54:05 ----D---- C:\WINDOWS\repair 2011-03-13 22:54:01 ----D---- C:\WINDOWS\Registration 2011-03-13 22:49:32 ----D---- C:\Program Files\Game Cam 2011-03-13 21:18:00 ----D---- C:\WINDOWS\WinSxS 2011-03-13 10:08:43 ----SD---- C:\Documents and Settings\#_arek\Dane aplikacji\Microsoft 2011-03-13 08:54:57 ----RSD---- C:\WINDOWS\Fonts 2011-03-12 16:22:10 ----RSD---- C:\WINDOWS\assembly 2011-03-12 16:21:53 ----D---- C:\WINDOWS\system32\DirectX 2011-03-11 08:42:43 ----HD---- C:\Program Files\InstallShield Installation Information 2011-03-09 19:48:50 ----RSHDC---- C:\WINDOWS\system32\dllcache 2011-03-09 15:16:34 ----HD---- C:\WINDOWS\$hf_mig$ 2011-03-07 06:55:36 ----D---- C:\WINDOWS\system32\wbem 2011-03-07 06:55:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-03-06 15:24:29 ----A---- C:\WINDOWS\win.ini 2011-03-06 14:58:30 ----D---- C:\Program Files\Common Files\Microsoft Shared 2011-03-05 18:41:14 ----D---- C:\Program Files\CDBurnerXP 2011-03-04 21:32:48 ----D---- C:\Program Files\ArtIcons Pro v5.16 PL 2011-03-04 21:12:24 ----D---- C:\Program Files\Common Files\System 2011-03-04 21:10:50 ----D---- C:\WINDOWS\system 2011-03-03 12:00:04 ----D---- C:\Documents and Settings\#_arek\Dane aplikacji\Real 2011-03-03 11:59:20 ----A---- C:\WINDOWS\system32\msvcr71.dll 2011-03-03 11:58:55 ----D---- C:\Program Files\Internet Explorer 2011-03-03 11:42:04 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real 2011-03-02 19:56:50 ----A---- C:\WINDOWS\system32\MRT.exe 2011-03-02 07:29:16 ----D---- C:\WINDOWS\system32\CatRoot 2011-02-27 12:02:41 ----D---- C:\Program Files\Ubisoft 2011-02-23 15:52:57 ----D---- C:\Documents and Settings 2011-02-19 17:10:24 ----D---- C:\Program Files\Microsoft Silverlight ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 agp440;Filtr magistrali AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368] R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248] R0 imagedrv;imagedrv; C:\WINDOWS\System32\Drivers\imagedrv.sys [2007-07-03 11304] R0 imagesrv;imagesrv; C:\WINDOWS\system32\DRIVERS\imagesrv.sys [2007-07-03 132904] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-10-24 165264] R1 MpKslcdc71b9e;MpKslcdc71b9e; \??\C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{E7FCB753-E736-423D-87F2-88A45DAF37A5}\MpKslcdc71b9e.sys [] R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2010-04-12 59388] R1 Tcpip6;Sterownik protokołu IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880] R2 cpuz134;cpuz134; \??\C:\WINDOWS\system32\drivers\cpuz134_x32.sys [] R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-05-16 4069888] R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2006-06-09 1373120] R3 cpuz135;cpuz135; \??\C:\WINDOWS\TEMP\cpuz135\cpuz135_x32.sys [] R3 hid7906;MAP2A10K; C:\WINDOWS\system32\drivers\hid7906.sys [2007-05-23 34793] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [] R3 tunmp;Sterownik karty Microsoft Tun Miniport; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-15 12288] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] S1 MpKslb52434df;MpKslb52434df; \??\C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{37859F1E-09B3-4956-B5A6-FDB5C2F574CA}\MpKslb52434df.sys [] S3 cpuz130;cpuz130; \??\C:\DOCUME~1\#_arek\USTAWI~1\Temp\cpuz130\cpuz_x32.sys [] S3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992] S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-11-12 7168] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 6to4;Usługa Pomocnik IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-05-16 602112] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736] R2 NMSAccess;NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2010-03-04 71096] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880] R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-01-13 129440] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-05-15 593920] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-05 136176] S3 aspnet_state;Usuga stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo HDD Control\Dfsdks.exe [2009-08-24 406016] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-04 153376] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264] S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2011-02-04 435016] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log]
Tomek01 komentarz 17 marca 2011 komentarz 17 marca 2011 Nic tu specjalnego nie widać. Odinstaluj zbędnego toolbara: DownloadStudio IE Toolbar. Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Użyj ATF Cleaner, zaznacz trzy pierwsze fajki i empty selected. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i jakby coś wykryły raporty pokaż na forum. 1
arek_69 komentarz 17 marca 2011 Autor komentarz 17 marca 2011 Dzięki Tomek za pomoc przeskanowalem na razie na szybkim a w nocy puszcze go na pełny bo pewnie trochę to potrwa i jakby coś to wrzucę,na razie nic nie pokazalo. J[u][/u]eszcze raz [b]Wielkie Dzięki.[/b]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.