tita98 utworzono 16 marca 2011 utworzono 16 marca 2011 Witam. dwa dni po zmianie systemu laptop zaczął trochę spowalniać szczególnie siedząc w internecie.kilkanaście minut chodził bez antywirusa.po zainstalowaniu avira nic nie znalazła ale za to dzisiaj zauważyłem ze chwilami coś spowalnia.zrobiłem skan i znalazły się 4 baboki.poszły do kwarantanny ale to nic nie pomogło.proszę wiec o sprawdzenie loga. logi OTL [log]OTL logfile created on: 2011-03-16 17:21:04 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 014,00 Mb Total Physical Memory | 499,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,00 Gb Total Space | 23,99 Gb Free Space | 79,97% Space Free | Partition Type: NTFS Drive E: | 79,78 Gb Total Space | 36,73 Gb Free Space | 46,04% Space Free | Partition Type: NTFS Computer Name: BLACKV7 | User Name: Administrator | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-03-16 17:18:13 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\OTL.exe PRC - [2011-03-03 19:45:59 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2011-03-03 19:45:58 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-02-01 15:27:40 | 003,265,944 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe PRC - [2011-01-10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011-01-10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011-01-10 14:23:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-05-25 16:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe PRC - [2010-01-14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009-06-29 06:01:51 | 001,699,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-03-05 12:09:55 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-02-25 21:13:16 | 001,555,456 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe PRC - [2009-01-21 11:20:12 | 000,166,912 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe PRC - [2009-01-21 11:18:28 | 000,134,656 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe PRC - [2009-01-21 11:18:02 | 000,243,712 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe PRC - [2008-04-14 20:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 20:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 20:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 20:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-13 13:39:20 | 000,049,152 | ---- | M] (artArmin) -- C:\Program Files\Vista Drive Icon\DrvIcon.exe PRC - [2007-04-26 10:30:24 | 000,192,512 | ---- | M] (Wistron) -- C:\Program Files\Launch Manager\HotkeyApp.exe PRC - [2007-01-15 16:14:54 | 000,147,456 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2007-01-15 16:13:50 | 001,208,320 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe PRC - [2007-01-15 16:01:56 | 000,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe PRC - [2006-11-17 20:45:26 | 000,118,784 | ---- | M] (Wistron Corp.) -- C:\Program Files\Launch Manager\WisLMSvc.exe PRC - [2006-11-03 19:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe PRC - [2006-10-23 10:00:36 | 000,815,104 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe PRC - [2006-05-21 08:43:08 | 000,180,224 | ---- | M] () -- C:\Program Files\UberIcon\UberIcon.exe PRC - [2004-04-30 05:28:33 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2004-04-30 05:28:32 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-03-16 17:18:13 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\OTL.exe MOD - [2010-11-03 15:39:40 | 000,034,208 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll MOD - [2009-08-14 12:27:37 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-07-24 10:32:26 | 013,762,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-07-06 16:13:09 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-06-26 08:30:35 | 000,642,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-03-05 12:10:20 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-03-05 12:08:25 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-03-05 12:08:02 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-03-05 12:07:50 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-03-05 12:06:30 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-03-05 12:06:27 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-02-21 15:26:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-02-21 15:25:55 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-02-09 09:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-04-14 20:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 20:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 20:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 20:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 20:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 20:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 20:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 20:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 20:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 20:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-14 20:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 20:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 20:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 20:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-14 20:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2006-05-21 08:43:08 | 000,065,536 | ---- | M] () -- C:\Program Files\UberIcon\UberIcon.dll MOD - [2004-04-30 05:28:35 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2004-04-30 05:28:24 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2011-01-10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011-01-10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2006-11-17 20:45:26 | 000,118,784 | ---- | M] (Wistron Corp.) [On_Demand | Running] -- C:\Program Files\Launch Manager\WisLMSvc.exe -- (WisLMSvc) SRV - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-01-25 11:40:06 | 000,097,112 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI) DRV - [2011-01-10 14:23:53 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011-01-10 14:23:53 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010-06-17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009-10-26 14:47:30 | 004,221,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) Intel(R) DRV - [2009-06-29 20:59:07 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2007-05-01 09:11:54 | 000,630,272 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CHDAud.sys -- (HdAudAddService) DRV - [2007-02-07 00:43:26 | 000,090,880 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2003-04-28 11:27:06 | 000,009,867 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\HOTKEY.sys -- (Hotkey) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\.DEFAULT\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-18\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-20\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:7.2.3 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-14 22:19:27 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-15 21:19:37 | 000,000,000 | ---D | M] [2011-03-14 22:19:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Extensions [2011-03-15 20:46:47 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\fqgecin9.default\extensions [2011-03-14 22:18:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-03-15 20:44:28 | 000,000,000 | ---D | M] (IDM CC) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\DANE APLIKACJI\IDM\IDMMZCC3 [2010-12-09 11:47:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2011-03-03 17:38:41 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2011-03-03 17:38:41 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2011-03-03 17:38:41 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2011-03-03 17:38:41 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2011-03-03 17:38:41 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2011-03-03 17:38:41 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Foxit PDF Creator Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Foxit PDF Creator Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [BackgroundSwitcher] C:\WINDOWS\system32\bgswitch.exe () O4 - HKLM..\Run: [CtrlVol] File not found O4 - HKLM..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe (artArmin) O4 - HKLM..\Run: [HotkeyApp] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron) O4 - HKLM..\Run: [LaunchAp] File not found O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [Wbutton] File not found O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-606747145-1390067357-1606980848-500..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-606747145-1390067357-1606980848-500..\Run: [UberIcon] C:\Program Files\UberIcon\UberIcon.exe () O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm () O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm () O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm () O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.10.254 82.160.29.254 213.199.225.14 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2011-03-16 16:49:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2011-03-16 16:11:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\skróty [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Detektor Winampa [2011-03-15 21:19:23 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2011-03-15 21:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp [2011-03-15 21:00:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative [2011-03-15 21:00:23 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2011-03-15 21:00:22 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2011-03-15 20:50:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Wideo [2011-03-15 20:48:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic [2011-03-15 20:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software [2011-03-15 20:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads [2011-03-15 20:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\IDM [2011-03-15 20:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache [2011-03-15 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Internet Download Manager [2011-03-15 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Internet Download Manager [2011-03-15 20:41:50 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager [2011-03-15 20:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Foxit Reader [2011-03-15 20:40:40 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com [2011-03-15 20:40:34 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software [2011-03-15 20:31:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JDownloader [2011-03-15 20:30:22 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2011-03-15 20:30:03 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2011-03-15 20:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2011-03-15 19:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\skypePM [2011-03-15 18:57:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Temp [2011-03-15 18:57:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2011-03-15 18:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google [2011-03-15 18:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2011-03-15 18:56:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2011-03-15 18:56:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2011-03-15 18:56:48 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2011-03-15 18:56:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Skype [2011-03-15 18:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2011-03-15 18:41:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Identities [2011-03-15 18:41:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Ahead [2011-03-15 18:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero 7 Premium [2011-03-15 18:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Ahead [2011-03-15 18:34:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2011-03-15 18:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2011-03-15 18:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2011-03-15 18:28:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office [2011-03-15 18:28:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2011-03-15 18:28:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2011-03-15 18:27:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2011-03-15 18:27:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2011-03-14 22:22:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Avira [2011-03-14 22:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia [2011-03-14 22:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe [2011-03-14 22:20:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie [2011-03-14 22:19:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mozilla [2011-03-14 22:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla [2011-03-14 22:18:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox [2011-03-14 22:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-03-14 22:01:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Avira [2011-03-14 22:01:49 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2011-03-14 22:01:46 | 000,135,096 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2011-03-14 22:01:46 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2011-03-14 22:01:46 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2011-03-14 22:01:46 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2011-03-14 22:01:46 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2011-03-14 22:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avira [2011-03-14 21:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager [2011-03-14 21:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2011-03-14 21:41:12 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT [2011-03-14 21:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2011-03-14 21:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu [2011-03-14 21:35:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2011-03-14 21:34:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek [2011-03-14 21:34:30 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011-03-14 21:34:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS [2011-03-14 21:34:29 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2011-03-14 21:34:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\InstallShield [2011-03-14 21:34:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR [2011-03-14 21:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2011-03-14 21:02:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2011-03-14 21:02:37 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2011-03-14 21:02:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2011-03-14 21:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2011-03-14 21:02:31 | 000,000,000 | R--D | C] -- C:\Program Files [2011-03-14 21:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2011-03-14 21:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [2011-03-14 21:02:09 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2011-03-14 21:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2011-03-14 21:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2011-03-14 21:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2011-03-14 21:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2011-03-14 21:01:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2011-03-14 21:01:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2011-03-14 21:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2011-03-14 21:01:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2011-03-14 20:59:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Staging [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Resources [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\FileTypes [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Effects [2011-03-14 20:57:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2011-03-14 20:54:24 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2011-03-14 20:54:24 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2011-03-14 20:54:24 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2011-03-14 20:54:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2011-03-14 20:42:50 | 000,000,000 | ---D | C] -- C:\swsetup [2011-03-14 20:41:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE [2011-03-14 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Yahoo! Companion [2011-03-14 20:38:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2011-03-14 20:38:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2011-03-14 20:38:43 | 000,000,000 | ---D | C] -- C:\Intel [2011-03-14 20:34:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2011-03-14 20:31:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender [2011-03-14 20:30:51 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache [2011-03-14 20:30:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Identities [2011-03-14 20:30:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Muzyka [2011-03-14 20:30:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moje obrazy [2011-03-14 20:30:24 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2011-03-14 20:30:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:30:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Ulubione [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Akcesoria [2011-03-14 20:30:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\Cookies [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Szablony [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\NetHood [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\WinRAR [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Desktop Slide Show [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Vista Drive Icon [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Sun [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\RarSFX1 [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\RarSFX0 [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Gry [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\CCleaner [2011-03-14 20:30:09 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2011-03-14 20:30:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2011-03-14 20:30:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011-03-14 20:29:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:29:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2011-03-14 20:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\winxpbe [2011-03-14 20:27:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show [2011-03-14 20:27:31 | 000,000,000 | ---D | C] -- C:\Program Files\Speed-X [2011-03-14 20:27:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SpeedX [2011-03-14 20:24:03 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:24:03 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2011-03-14 20:23:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2011-03-14 20:23:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2011-03-14 20:23:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2011-03-14 20:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2011-03-14 20:21:02 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2011-03-14 20:21:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2011-03-14 20:21:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2011-03-14 20:19:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2011-03-14 20:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011-03-14 20:19:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2011-03-14 20:19:06 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo! [2011-03-14 20:19:01 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2011-03-14 20:18:57 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2011-03-14 20:18:40 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ [2011-03-14 20:18:36 | 000,000,000 | ---D | C] -- C:\Program Files\Snipping Tool [2011-03-14 20:18:29 | 000,000,000 | ---D | C] -- C:\Program Files\Alky for Applications [2011-03-14 20:17:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2011-03-14 20:17:12 | 000,000,000 | ---D | C] -- C:\Program Files\UberIcon [2011-03-14 20:17:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\K-Lite Codec Pack [2011-03-14 20:17:05 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2011-03-14 20:17:04 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2011-03-14 20:17:04 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2011-03-14 20:17:03 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll [2011-03-14 20:17:02 | 000,685,056 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx.dll [2011-03-14 20:16:57 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2011-03-14 20:15:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2011-03-14 20:14:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2011-03-14 20:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011-03-14 20:14:12 | 000,000,000 | ---D | C] -- C:\Program Files\Vista Drive Icon [2011-03-14 20:14:09 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2011-03-14 20:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache [2011-03-14 20:13:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2011-03-14 20:12:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2011-03-14 20:12:53 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2011-03-14 20:12:50 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2011-03-14 20:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2011-03-14 20:12:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2011-03-14 20:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2011-03-14 20:12:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2011-03-14 20:12:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2011-03-14 20:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2011-03-14 20:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2011-03-14 20:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2011-03-14 20:11:52 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2011-03-14 20:11:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry [2011-03-14 20:11:06 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2011-03-14 20:10:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne [2011-03-14 20:10:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2011-03-14 20:10:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Accessories [2011-03-14 20:09:02 | 000,000,000 | ---D | C] -- C:\Program Files\VistaExperience.org [2011-03-14 20:07:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2011-03-14 20:06:55 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-03-14 20:06:54 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2011-03-14 20:06:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2011-03-14 20:06:28 | 000,737,280 | ---- | C] (dotPDN LLC) -- C:\WINDOWS\System32\mspaint.exe [2011-03-14 20:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2011-03-14 20:06:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2011-03-14 20:06:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2011-03-14 20:05:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria [2011-02-01 15:37:03 | 000,097,112 | ---- | C] (Tonec Inc.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [2005-11-26 20:23:22 | 000,049,152 | ---- | C] ( ) -- C:\WINDOWS\System32\Interop.WIA.dll [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2011-03-16 17:12:25 | 000,497,824 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-03-16 17:12:25 | 000,438,948 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-03-16 17:12:25 | 000,087,442 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-03-16 17:12:25 | 000,070,124 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-03-16 17:10:53 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011-03-16 17:07:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-03-16 17:01:01 | 000,000,250 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2011-03-16 15:57:09 | 000,126,912 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-15 21:19:38 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2011-03-15 21:01:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-03-15 20:51:14 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-15 20:40:50 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk [2011-03-15 20:31:01 | 000,000,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2011-03-15 20:08:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Administrator\default.pls [2011-03-15 19:06:39 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-03-15 19:05:16 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-03-15 18:55:52 | 000,001,306 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Pobieranie.lnk [2011-03-15 18:41:03 | 000,002,174 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Nero Burning ROM.lnk [2011-03-15 18:28:51 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2011-03-14 22:19:28 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2011-03-14 22:01:59 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2011-03-14 21:42:38 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2011-03-14 21:42:36 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf [2011-03-14 21:36:55 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DeskUpdate.lnk [2011-03-14 21:02:41 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2011-03-14 20:29:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-03-14 20:29:01 | 000,004,512 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-03-14 20:29:01 | 000,001,142 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011-03-14 20:28:25 | 000,005,519 | ---- | M] () -- C:\WINDOWS\unins000.dat [2011-03-14 20:27:59 | 000,697,943 | ---- | M] () -- C:\WINDOWS\unins000.exe [2011-03-14 20:19:01 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2011-03-14 20:14:00 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-03-14 20:13:52 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-03-14 20:13:52 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-03-14 20:13:51 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011-03-14 20:13:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2011-03-14 20:11:22 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-03-14 20:05:30 | 000,000,205 | -HS- | M] () -- C:\boot.ini [2011-01-25 11:40:06 | 000,097,112 | ---- | M] (Tonec Inc.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-15 21:19:38 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2011-03-15 20:40:50 | 000,000,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk [2011-03-15 20:40:45 | 000,000,250 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2011-03-15 20:31:01 | 000,000,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2011-03-15 20:08:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Administrator\default.pls [2011-03-15 20:02:51 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-03-15 20:02:37 | 005,690,224 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\5 - Opcji Jest Wiele - Paczek.mp3 [2011-03-15 20:01:11 | 000,002,080 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Grinch.jpg [2011-03-15 19:06:39 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-03-15 18:56:51 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-03-15 18:54:48 | 000,001,306 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Pobieranie.lnk [2011-03-15 18:41:03 | 000,002,174 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Nero Burning ROM.lnk [2011-03-15 18:28:51 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2011-03-14 22:19:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-03-14 22:01:59 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2011-03-14 21:42:38 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2011-03-14 21:42:36 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf [2011-03-14 21:42:32 | 000,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys [2011-03-14 21:42:05 | 001,060,424 | ---- | C] () -- C:\WINDOWS\System32\WdfCoInstaller01000.dll [2011-03-14 21:36:55 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DeskUpdate.lnk [2011-03-14 21:02:41 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2011-03-14 21:02:40 | 000,004,512 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2011-03-14 21:02:36 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-03-14 21:02:20 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2011-03-14 21:01:20 | 000,126,912 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-14 21:01:15 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-14 21:00:31 | 000,000,205 | -HS- | C] () -- C:\boot.ini [2011-03-14 21:00:28 | 000,001,142 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2011-03-14 20:38:51 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin [2011-03-14 20:38:51 | 000,032,416 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp [2011-03-14 20:38:51 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp [2011-03-14 20:34:44 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011-03-14 20:31:23 | 000,001,017 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Defender.lnk [2011-03-14 20:30:59 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Internet Explorer.lnk [2011-03-14 20:30:38 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Outlook Express.lnk [2011-03-14 20:30:12 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Pomoc zdalna.lnk [2011-03-14 20:30:12 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2011-03-14 20:30:12 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Media Player.lnk [2011-03-14 20:30:11 | 001,636,376 | ---- | C] () -- C:\Documents and Settings\Administrator\ycomp_setup.exe [2011-03-14 20:28:52 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-03-14 20:28:39 | 000,004,346 | R--- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tweaks - Dodaj to!.reg [2011-03-14 20:28:00 | 000,697,943 | ---- | C] () -- C:\WINDOWS\unins000.exe [2011-03-14 20:28:00 | 000,005,519 | ---- | C] () -- C:\WINDOWS\unins000.dat [2011-03-14 20:24:07 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2011-03-14 20:17:07 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-03-14 20:17:06 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-03-14 20:17:05 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2011-03-14 20:17:04 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-03-14 20:17:04 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-03-14 20:17:03 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2011-03-14 20:17:00 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-03-14 20:14:00 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2011-03-14 20:14:00 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2011-03-14 20:13:52 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2011-03-14 20:13:52 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2011-03-14 20:13:50 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2011-03-14 20:11:22 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-03-14 20:06:38 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2011-03-14 20:06:38 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2011-03-14 20:06:36 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2011-03-14 20:06:30 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-07-26 05:00:52 | 000,571,392 | ---- | C] () -- C:\WINDOWS\System32\shutt.exe [2008-08-24 17:38:56 | 000,099,480 | ---- | C] () -- C:\WINDOWS\System32\ShellExtension_x64.dll [2008-08-24 17:38:54 | 000,093,336 | ---- | C] () -- C:\WINDOWS\System32\ShellExtension_x86.dll [2008-08-24 17:38:50 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\Squish_x86.dll [2008-08-24 17:38:50 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\Squish_x86_SSE2.dll [2008-08-24 17:38:50 | 000,095,744 | ---- | C] () -- C:\WINDOWS\System32\Squish_x64.dll [2008-08-24 15:25:26 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\WiaProxy32.exe.config [2008-08-24 15:25:16 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\UpdateMonitor.exe.config [2008-08-24 15:25:02 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\SetupNgen.exe.config [2008-08-24 15:24:46 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\PdnRepair.exe.config [2008-08-24 15:21:42 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\PaintDotNet.exe.config [2008-04-14 21:16:20 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2006-12-31 05:57:08 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2001-10-26 17:15:16 | 000,497,824 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 17:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 17:15:16 | 000,087,442 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 17:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-10-02 08:58:22 | 000,019,520 | ---- | C] () -- C:\WINDOWS\System32\bgswitch.exe [2001-08-23 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-17 22:30:24 | 000,438,948 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-17 22:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-17 22:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-17 22:30:22 | 000,070,124 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-17 22:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-07-21 23:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-21 23:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [color=#E56717]========== LOP Check ==========[/color] [2011-03-16 16:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache [2011-03-15 20:48:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software [2011-03-16 16:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IDM [2011-03-14 21:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu [2011-03-14 20:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show [2011-03-16 17:10:53 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [2011-03-16 17:01:01 | 000,000,250 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-03-14 20:05:30 | 000,000,205 | -HS- | M] () -- C:\boot.ini [2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-13 20:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-13 22:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2011-03-16 17:07:49 | 1598,029,824 | -HS- | M] () -- C:\pagefile.sys [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-13 19:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 20:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys [2008-04-13 19:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-05-02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\Driver Cache\i386\cdrom.sys [2008-05-02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\dllcache\cdrom.sys [2008-05-02 06:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 20:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 22:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-03-05 12:09:55 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] [log]OTL Extras logfile created on: 2011-03-16 17:21:04 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 014,00 Mb Total Physical Memory | 499,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,00 Gb Total Space | 23,99 Gb Free Space | 79,97% Space Free | Partition Type: NTFS Drive E: | 79,78 Gb Total Space | 36,73 Gb Free Space | 46,04% Space Free | Partition Type: NTFS Computer Name: BLACKV7 | User Name: Administrator | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [HKEY_USERS\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "UpdatesDisableNotify" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7 "{330B724C-A158-46A0-9459-0574058D6D94}_is1" = SpeedX "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3F3733A5-8322-454D-A638-3B74E1C83752}" = Gadget Installer "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1" = DirectX 9.0c Extra Files (x86, x64) "{88561496-997E-46E6-B481-AE254E7F1045}" = Nero 7 Premium "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90120000-008A-0409-0000-0000000FF1CE}" = Microsoft Office 2007 Recent Documents Gadget "{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP) "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0846526-66DD-4DC9-A02C-98F9A2806812}" = Launch Manager V1.4.6 "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1 "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "CCleaner" = CCleaner (remove only) "CNXT_HDAUDIO" = Conexant HD Audio "Foxit Reader" = Foxit Reader "HDMI" = Intel(R) Graphics Media Accelerator Driver "ie8" = Windows Internet Explorer 8 "Internet Download Manager" = Internet Download Manager "JDownloader" = JDownloader "KLiteCodecPack_is1" = K-Lite Codec Pack 5.0.0 (Full) "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.15)" = Mozilla Firefox (3.6.15) "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "RealAlt_is1" = Real Alternative 2.0.2 "SmartAudio" = SmartAudio "SynTPDeinstKey" = Synaptics Pointing Device Driver "Vista Drive Icon" = Vista Drive Icon 1.4 "Wdf01000" = Microsoft Kernel-Mode Driver Framework 1.0 "Winamp" = Winamp "Windows Desktop Slide Show" = Windows Desktop Slide Show "Windows Sidebar" = Windows Sidebar "WinRAR archiver" = Archiwizator WinRAR "Yahoo! Companion" = Yahoo! Toolbar "Yahoo! Toolbar" = Yahoo! Toolbar "YInstHelper" = Yahoo! Install Manager [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Winamp Detect" = Detektor Winampa [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-03-14 15:24:03 | Computer Name = BLACKV7 | Source = MsiInstaller | ID = 10005 Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004. Method SHGetFolderPath failed. HRESULT: 0x80004005. Error - 2011-03-14 15:24:03 | Computer Name = BLACKV7 | Source = MsiInstaller | ID = 10005 Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004. Method GetFontCacheDataFolder failed. HRESULT: 0x80004005. Error - 2011-03-16 11:49:14 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:50:03 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:50:04 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:51:39 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 12:01:27 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). [ System Events ] Error - 2011-03-15 15:50:56 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7001 Description = Usługa Host uniwersalnego urządzenia Plug and Play zależy od usługi Usługa odnajdywania SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2011-03-15 15:51:15 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1068” podczas próby uruchomienia usługi upnphost z argumentami „” w celu uruchomienia serwera: {204810B9-73B2-11D4-BF42-00B0D0118B56} Error - 2011-03-15 15:51:15 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7001 Description = Usługa Host uniwersalnego urządzenia Plug and Play zależy od usługi Usługa odnajdywania SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2011-03-15 16:01:26 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1068” podczas próby uruchomienia usługi upnphost z argumentami „” w celu uruchomienia serwera: {204810B9-73B2-11D4-BF42-00B0D0118B56} Error - 2011-03-15 16:01:26 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7001 Description = Usługa Host uniwersalnego urządzenia Plug and Play zależy od usługi Usługa odnajdywania SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2011-03-15 16:19:57 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1068” podczas próby uruchomienia usługi upnphost z argumentami „” w celu uruchomienia serwera: {204810B9-73B2-11D4-BF42-00B0D0118B56} Error - 2011-03-15 16:19:57 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7001 Description = Usługa Host uniwersalnego urządzenia Plug and Play zależy od usługi Usługa odnajdywania SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2011-03-15 16:21:49 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi ImapiService z argumentami „-Service” w celu uruchomienia serwera: {520CCA63-51A5-11D3-9144-00104BA11C5E} Error - 2011-03-16 10:57:49 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2011-03-16 12:08:16 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 < End of report > [/log] log RSIT [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Administrator at 2011-03-16 17:26:07 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 25 GB (80%) free of 31 GB Total RAM: 1014 MB (46% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:26:17, on 2011-03-16 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Vista Drive Icon\DrvIcon.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\UberIcon\UberIcon.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\Launch Manager\WisLMSvc.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\RSIT.exe C:\Program Files\trend micro\Administrator.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [BackgroundSwitcher] C:\WINDOWS\system32\bgswitch.exe O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe" O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKCU\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Usługa bramy warstwy aplikacji (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe -- End of file - 7234 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\MP Scheduled Scan.job C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}] IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-12-23 202160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] Foxit PDF Creator Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384] {D4027C7F-154A-4066-A1AD-4243D8127440} - Foxit PDF Creator Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BackgroundSwitcher"=C:\WINDOWS\system32\bgswitch.exe [2001-10-02 19520] "DrvIcon"=C:\Program Files\Vista Drive Icon\DrvIcon.exe [2008-04-13 49152] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2009-01-21 134656] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-01-21 166912] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-01-21 134656] "HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-04-26 192512] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-23 815104] "CtrlVol"=C:\Program Files\Launch Manager\CtrlVol.exe [] "LaunchAp"=C:\Program Files\Launch Manager\LaunchAp.exe [] "Wbutton"=C:\Program Files\Launch Manager\WButton.exe [] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-01-10 281768] "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "UberIcon"=C:\Program Files\UberIcon\UberIcon.exe [2006-05-21 180224] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-02-25 1555456] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-01-15 147456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2009-01-21 205824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-04-25 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableCAD"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoResolveTrack"=1 "NoResolveSearch"=1 "ForceClassicControlPanel"=1 "NoSMConfigurePrograms"=1 "NoSMHelp"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2011-03-16 17:26:08 ----D---- C:\Program Files\trend micro 2011-03-16 17:26:07 ----D---- C:\rsit 2011-03-16 16:49:10 ----D---- C:\WINDOWS\system32\NtmsData 2011-03-15 21:19:38 ----D---- C:\Program Files\Winamp Detect 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxsfs.dll 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxafs.dll 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\vxblock.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxwave.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxmas.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxdrv.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\px.dll 2011-03-15 21:19:23 ----D---- C:\Program Files\Winamp 2011-03-15 21:19:23 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pndx5032.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pndx5016.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pncrt.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\msvcp71.dll 2011-03-15 21:00:22 ----D---- C:\Program Files\Real Alternative 2011-03-15 20:48:54 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic 2011-03-15 20:48:04 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software 2011-03-15 20:41:59 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\IDM 2011-03-15 20:41:59 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache 2011-03-15 20:41:50 ----D---- C:\Program Files\Internet Download Manager 2011-03-15 20:40:40 ----D---- C:\Program Files\Ask.com 2011-03-15 20:40:34 ----D---- C:\Program Files\Foxit Software 2011-03-15 20:30:22 ----D---- C:\Program Files\JDownloader 2011-03-15 20:02:51 ----A---- C:\WINDOWS\NeroDigital.ini 2011-03-15 20:02:08 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google 2011-03-15 19:06:31 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\skypePM 2011-03-15 18:56:59 ----D---- C:\Program Files\Google 2011-03-15 18:56:50 ----D---- C:\Program Files\Common Files\Skype 2011-03-15 18:56:48 ----RD---- C:\Program Files\Skype 2011-03-15 18:56:47 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Skype 2011-03-15 18:56:43 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Skype 2011-03-15 18:36:03 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Ahead 2011-03-15 18:34:36 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero 2011-03-15 18:34:35 ----D---- C:\Program Files\Nero 2011-03-15 18:34:35 ----D---- C:\Program Files\Common Files\Ahead 2011-03-15 18:28:51 ----A---- C:\WINDOWS\ODBC.INI 2011-03-15 18:28:47 ----A---- C:\WINDOWS\system32\mdimon.dll 2011-03-15 18:28:14 ----D---- C:\Program Files\Common Files\DESIGNER 2011-03-15 18:28:04 ----D---- C:\WINDOWS\SHELLNEW 2011-03-15 18:27:29 ----D---- C:\Program Files\Microsoft.NET 2011-03-15 18:27:28 ----D---- C:\Program Files\Microsoft Office 2011-03-14 22:22:04 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Avira 2011-03-14 22:20:45 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia 2011-03-14 22:20:45 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe 2011-03-14 22:19:25 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla 2011-03-14 22:18:53 ----D---- C:\Program Files\Mozilla Firefox 2011-03-14 22:01:49 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys 2011-03-14 22:01:46 ----D---- C:\Program Files\Avira 2011-03-14 22:01:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Avira 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys 2011-03-14 21:42:32 ----D---- C:\Program Files\Launch Manager 2011-03-14 21:42:32 ----A---- C:\WINDOWS\system32\drivers\HOTKEY.sys 2011-03-14 21:42:24 ----HDC---- C:\WINDOWS\$NtUninstallWdf01000$ 2011-03-14 21:42:09 ----D---- C:\Program Files\Synaptics 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\WdfCoInstaller01000.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynTPCo4.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynCOM.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys 2011-03-14 21:41:33 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2011-03-14 21:41:32 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2011-03-14 21:41:30 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2011-03-14 21:41:29 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2011-03-14 21:41:28 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2011-03-14 21:41:27 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2011-03-14 21:41:26 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2011-03-14 21:41:24 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2011-03-14 21:41:23 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011-03-14 21:41:22 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2011-03-14 21:41:19 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011-03-14 21:41:12 ----D---- C:\Program Files\CONEXANT 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\ksuser.dll 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2011-03-14 21:39:37 ----D---- C:\Program Files\Intel 2011-03-14 21:36:48 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu 2011-03-14 21:35:09 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2011-03-14 21:34:31 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys 2011-03-14 21:34:30 ----D---- C:\WINDOWS\OPTIONS 2011-03-14 21:34:30 ----D---- C:\Program Files\Realtek 2011-03-14 21:34:29 ----HD---- C:\Program Files\InstallShield Installation Information 2011-03-14 21:34:22 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\InstallShield 2011-03-14 21:34:10 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR 2011-03-14 21:16:15 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage 2011-03-14 21:05:29 ----A---- C:\WINDOWS\system32\h323log.txt 2011-03-14 21:05:22 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2011-03-14 21:04:40 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2011-03-14 21:04:36 ----A---- C:\WINDOWS\system32\drivers\compbatt.sys 2011-03-14 21:04:36 ----A---- C:\WINDOWS\system32\drivers\CmBatt.sys 2011-03-14 21:04:35 ----A---- C:\WINDOWS\system32\drivers\battc.sys 2011-03-14 21:03:42 ----A---- C:\WINDOWS\system32\usbui.dll 2011-03-14 21:03:33 ----A---- C:\WINDOWS\system32\drivers\wmiacpi.sys 2011-03-14 21:02:40 ----A---- C:\WINDOWS\imsins.BAK 2011-03-14 21:02:37 ----SHD---- C:\WINDOWS\Installer 2011-03-14 21:02:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-03-14 21:02:36 ----D---- C:\Program Files\Common Files\ODBC 2011-03-14 21:02:36 ----A---- C:\WINDOWS\ODBCINST.INI 2011-03-14 21:02:32 ----D---- C:\Program Files\Common Files\SpeechEngines 2011-03-14 21:02:31 ----RD---- C:\Program Files 2011-03-14 21:02:31 ----D---- C:\Program Files\Common Files\Microsoft Shared 2011-03-14 21:02:31 ----D---- C:\Program Files\Common Files 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\irclass.dll 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\dgsetup.dll 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2011-03-14 21:02:22 ----A---- C:\WINDOWS\system32\spxcoins.dll 2011-03-14 21:02:22 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2011-03-14 21:02:20 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2011-03-14 21:02:20 ----A---- C:\WINDOWS\TASKMAN.EXE 2011-03-14 21:02:20 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2011-03-14 21:02:19 ----A---- C:\WINDOWS\system32\batt.dll 2011-03-14 21:02:19 ----A---- C:\WINDOWS\NOTEPAD.EXE 2011-03-14 21:02:18 ----A---- C:\WINDOWS\system32\storprop.dll 2011-03-14 21:02:09 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2011-03-14 21:02:03 ----RA---- C:\WINDOWS\SET8.tmp 2011-03-14 21:02:00 ----RA---- C:\WINDOWS\SET4.tmp 2011-03-14 21:01:59 ----RA---- C:\WINDOWS\SET3.tmp 2011-03-14 21:01:54 ----D---- C:\WINDOWS\system32\CatRoot2 2011-03-14 21:01:54 ----D---- C:\WINDOWS\system32\CatRoot 2011-03-14 21:01:48 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2011-03-14 21:01:26 ----A---- C:\WINDOWS\setuplog.txt 2011-03-14 21:01:21 ----D---- C:\Documents and Settings 2011-03-14 21:01:20 ----SHD---- C:\System Volume Information 2011-03-14 21:00:31 ----SH---- C:\boot.ini 2011-03-14 20:59:37 ----D---- C:\WINDOWS\system32\Staging 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\Resources 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\FileTypes 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\Effects 2011-03-14 20:57:13 ----D---- C:\WINDOWS\system32\ReinstallBackups 2011-03-14 20:54:24 ----SD---- C:\WINDOWS\Downloaded Program Files 2011-03-14 20:54:24 ----RSD---- C:\WINDOWS\Fonts 2011-03-14 20:54:24 ----RD---- C:\WINDOWS\Web 2011-03-14 20:54:24 ----HD---- C:\WINDOWS\inf 2011-03-14 20:54:24 ----D---- C:\WINDOWS\WinSxS 2011-03-14 20:54:24 ----D---- C:\WINDOWS\WBEM 2011-03-14 20:54:24 ----D---- C:\WINDOWS\twain_32 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Temp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\wins 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\wbem 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\usmt 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\spool 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ShellExt 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\Setup 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ras 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\pl-pl 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\pl 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\npp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\mui 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\inetsrv 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\icsxml 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ias 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\export 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\UMDF 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\etc 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\disdn 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\dhcp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\config 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\3com_dmi 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\3076 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\2052 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1054 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1045 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1042 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1041 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1037 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1033 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1031 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1028 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1025 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system 2011-03-14 20:54:24 ----D---- C:\WINDOWS\security 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Resources 2011-03-14 20:54:24 ----D---- C:\WINDOWS\repair 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Provisioning 2011-03-14 20:54:24 ----D---- C:\WINDOWS\PeerNet 2011-03-14 20:54:24 ----D---- C:\WINDOWS\PCHealth 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Offline Web Pages 2011-03-14 20:54:24 ----D---- C:\WINDOWS\NLDRV 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Network Diagnostic 2011-03-14 20:54:24 ----D---- C:\WINDOWS\mui 2011-03-14 20:54:24 ----D---- C:\WINDOWS\msapps 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Media 2011-03-14 20:54:24 ----D---- C:\WINDOWS\L2Schemas 2011-03-14 20:54:24 ----D---- C:\WINDOWS\java 2011-03-14 20:54:24 ----D---- C:\WINDOWS\ime 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Help 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Driver Cache 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Debug 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Cursors 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Connection Wizard 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Config 2011-03-14 20:54:24 ----D---- C:\WINDOWS\AppPatch 2011-03-14 20:54:24 ----D---- C:\WINDOWS\addins 2011-03-14 20:54:24 ----D---- C:\WINDOWS 2011-03-14 20:54:24 ----ASH---- C:\pagefile.sys 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\NETw5r32.dll 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\NETw5c32.dll 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\drivers\NETw5x32.sys 2011-03-14 20:44:48 ----D---- C:\DeskUpdate.tmp 2011-03-14 20:42:50 ----D---- C:\swsetup 2011-03-14 20:41:56 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Yahoo! Companion 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igxprd32.dll 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxtray.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxpers.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxext.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxexps.dll 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\drivers\igxpmp32.sys 2011-03-14 20:38:51 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpgd32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpdx32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpdv32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxress.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxpph.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxdo.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxdev.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxCoIn_v5029.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\ig4icd32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\ig4dev32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\hkcmd.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\hccutils.dll 2011-03-14 20:38:50 ----D---- C:\WINDOWS\system32\Lang 2011-03-14 20:38:50 ----A---- C:\WINDOWS\system32\igxpun.exe 2011-03-14 20:38:50 ----A---- C:\WINDOWS\system32\difxapi.dll 2011-03-14 20:38:43 ----D---- C:\Intel 2011-03-14 20:34:33 ----SHD---- C:\RECYCLER 2011-03-14 20:31:21 ----D---- C:\Program Files\Windows Defender 2011-03-14 20:30:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2011-03-14 20:30:35 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Identities 2011-03-14 20:30:24 ----HD---- C:\Program Files\Uninstall Information 2011-03-14 20:30:13 ----ASH---- C:\Documents and Settings\Administrator\Dane aplikacji\desktop.ini 2011-03-14 20:30:10 ----SD---- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft 2011-03-14 20:30:10 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Sun 2011-03-14 20:30:09 ----SHD---- C:\WINDOWS\CSC 2011-03-14 20:30:06 ----D---- C:\WINDOWS\SoftwareDistribution 2011-03-14 20:30:01 ----D---- C:\WINDOWS\Prefetch 2011-03-14 20:30:00 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-03-14 20:28:35 ----D---- C:\Program Files\winxpbe 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_9.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_8.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_7.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_6.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_10.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_41.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_40.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_39.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_38.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_37.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_36.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_35.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_34.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_33.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_41.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_40.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_38.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_37.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_36.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_35.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_34.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_33.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_36.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_35.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_34.dll 2011-03-14 20:28:00 ----A---- C:\WINDOWS\unins000.exe 2011-03-14 20:28:00 ----A---- C:\WINDOWS\system32\d3dcompiler_33.dll 2011-03-14 20:27:47 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show 2011-03-14 20:27:31 ----D---- C:\Program Files\Speed-X 2011-03-14 20:23:52 ----D---- C:\WINDOWS\system32\XPSViewer 2011-03-14 20:23:51 ----D---- C:\WINDOWS\system32\en-US 2011-03-14 20:23:51 ----D---- C:\Program Files\MSBuild 2011-03-14 20:23:47 ----D---- C:\Program Files\Reference Assemblies 2011-03-14 20:21:02 ----RSD---- C:\WINDOWS\assembly 2011-03-14 20:21:02 ----D---- C:\WINDOWS\Microsoft.NET 2011-03-14 20:21:01 ----D---- C:\WINDOWS\system32\URTTemp 2011-03-14 20:20:56 ----N---- C:\WINDOWS\system32\xpssvcs.dll 2011-03-14 20:20:56 ----N---- C:\WINDOWS\system32\xpsshhdr.dll 2011-03-14 20:20:42 ----N---- C:\WINDOWS\system32\prntvpt.dll 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\javaws.exe 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\javaw.exe 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\java.exe 2011-03-14 20:19:22 ----D---- C:\Program Files\Java 2011-03-14 20:19:21 ----D---- C:\Program Files\Common Files\Java 2011-03-14 20:19:06 ----D---- C:\Program Files\Yahoo! 2011-03-14 20:19:01 ----D---- C:\Program Files\CCleaner 2011-03-14 20:18:57 ----SD---- C:\WINDOWS\system32\Microsoft 2011-03-14 20:18:40 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ 2011-03-14 20:18:36 ----D---- C:\Program Files\Snipping Tool 2011-03-14 20:18:29 ----D---- C:\Program Files\Alky for Applications 2011-03-14 20:17:13 ----D---- C:\Program Files\Microsoft Games 2011-03-14 20:17:12 ----D---- C:\Program Files\UberIcon 2011-03-14 20:17:07 ----A---- C:\WINDOWS\system32\unrar.dll 2011-03-14 20:17:06 ----A---- C:\WINDOWS\avisplitter.ini 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\xvidcore.dll 2011-03-14 20:17:03 ----A---- C:\WINDOWS\system32\qt-dx331.dll 2011-03-14 20:17:03 ----A---- C:\WINDOWS\system32\dpl100.dll 2011-03-14 20:17:02 ----A---- C:\WINDOWS\system32\divx.dll 2011-03-14 20:17:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2011-03-14 20:17:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2011-03-14 20:16:58 ----A---- C:\WINDOWS\system32\msvcr71.dll 2011-03-14 20:16:57 ----D---- C:\Program Files\K-Lite Codec Pack 2011-03-14 20:16:23 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2011-03-14 20:15:16 ----HDC---- C:\WINDOWS\ie8 2011-03-14 20:14:41 ----D---- C:\Program Files\MSXML 4.0 2011-03-14 20:14:17 ----N---- C:\WINDOWS\system32\imapi2fs.dll 2011-03-14 20:14:17 ----N---- C:\WINDOWS\system32\imapi2.dll 2011-03-14 20:14:15 ----D---- C:\Program Files\WinRAR 2011-03-14 20:14:12 ----D---- C:\Program Files\Vista Drive Icon 2011-03-14 20:14:10 ----N---- C:\WINDOWS\system32\spmsg.dll 2011-03-14 20:14:09 ----HD---- C:\WINDOWS\$hf_mig$ 2011-03-14 20:14:00 ----RASH---- C:\MSDOS.SYS 2011-03-14 20:14:00 ----RASH---- C:\IO.SYS 2011-03-14 20:14:00 ----A---- C:\WINDOWS\control.ini 2011-03-14 20:14:00 ----A---- C:\CONFIG.SYS 2011-03-14 20:14:00 ----A---- C:\AUTOEXEC.BAT 2011-03-14 20:13:46 ----A---- C:\WINDOWS\OEWABLog.txt 2011-03-14 20:13:41 ----D---- C:\WINDOWS\system32\dllcache 2011-03-14 20:13:41 ----A---- C:\WINDOWS\system32\mapi32.dll 2011-03-14 20:13:02 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2011-03-14 20:12:59 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2011-03-14 20:12:53 ----HD---- C:\Program Files\WindowsUpdate 2011-03-14 20:12:50 ----D---- C:\Program Files\Usługi online 2011-03-14 20:12:35 ----A---- C:\WINDOWS\system32\desktop.ini 2011-03-14 20:12:35 ----A---- C:\WINDOWS\desktop.ini 2011-03-14 20:12:30 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2011-03-14 20:12:29 ----A---- C:\WINDOWS\system32\acctres.dll 2011-03-14 20:12:28 ----D---- C:\Program Files\Common Files\Services 2011-03-14 20:12:26 ----SD---- C:\WINDOWS\Tasks 2011-03-14 20:12:26 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2011-03-14 20:12:25 ----D---- C:\Program Files\Common Files\MSSoap 2011-03-14 20:12:22 ----D---- C:\WINDOWS\system32\Macromed 2011-03-14 20:12:20 ----A---- C:\WINDOWS\system32\wuweb.dll 2011-03-14 20:12:20 ----A---- C:\WINDOWS\system32\wucltui.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wups.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuauserv.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuaueng.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuauclt.exe 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuapi.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2011-03-14 20:12:17 ----A---- C:\WINDOWS\system32\qmgr.dll 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\fltMc.exe 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\fltlib.dll 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2011-03-14 20:12:15 ----D---- C:\WINDOWS\system32\Restore 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srsvc.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srrstr.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srclient.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\msconf.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\mnmdd.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\ils.dll 2011-03-14 20:12:10 ----D---- C:\Program Files\NetMeeting 2011-03-14 20:12:10 ----A---- C:\WINDOWS\system32\msoert2.dll 2011-03-14 20:12:10 ----A---- C:\WINDOWS\system32\msoeacct.dll 2011-03-14 20:12:08 ----A---- C:\WINDOWS\system32\inetres.dll 2011-03-14 20:12:08 ----A---- C:\WINDOWS\system32\inetcomm.dll 2011-03-14 20:12:05 ----D---- C:\Program Files\Outlook Express 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\schedsvc.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\mstinit.exe 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\mstask.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\isign32.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2011-03-14 20:12:04 ----A---- C:\WINDOWS\system32\inetcfg.dll 2011-03-14 20:11:57 ----D---- C:\Program Files\Common Files\System 2011-03-14 20:11:52 ----D---- C:\Program Files\Internet Explorer 2011-03-14 20:11:06 ----D---- C:\Program Files\ComPlus Applications 2011-03-14 20:11:04 ----A---- C:\WINDOWS\vbaddin.ini 2011-03-14 20:11:04 ----A---- C:\WINDOWS\vb.ini 2011-03-14 20:10:59 ----D---- C:\WINDOWS\Registration 2011-03-14 20:09:02 ----D---- C:\Program Files\VistaExperience.org 2011-03-14 20:07:02 ----D---- C:\Program Files\Windows Sidebar 2011-03-14 20:06:55 ----D---- C:\Program Files\Windows Media Connect 2 2011-03-14 20:06:54 ----D---- C:\Program Files\Windows Media Player 2011-03-14 20:06:51 ----D---- C:\Program Files\MSN Gaming Zone 2011-03-14 20:06:51 ----A---- C:\WINDOWS\system32\write.exe 2011-03-14 20:06:47 ----A---- C:\WINDOWS\system32\sndvol32.exe 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\winchat.exe 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\hticons.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avwav.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avtapi.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avmeter.dll 2011-03-14 20:06:40 ----A---- C:\WINDOWS\system32\getuname.dll 2011-03-14 20:06:40 ----A---- C:\WINDOWS\system32\charmap.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\winmine.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\sol.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\mshearts.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\calc.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tslabels.ini 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tskill.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tscon.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\shadow.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\rwinsta.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\reset.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\freecell.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\regini.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\qwinsta.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\qappsrv.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\msg.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\logoff.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\cdmodem.dll 2011-03-14 20:06:30 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2011-03-14 20:06:29 ----A---- C:\WINDOWS\system32\mplay32.exe 2011-03-14 20:06:29 ----A---- C:\WINDOWS\system32\hypertrm.dll 2011-03-14 20:06:28 ----D---- C:\Program Files\Windows NT 2011-03-14 20:06:28 ----A---- C:\WINDOWS\system32\mspaint.exe 2011-03-14 20:06:28 ----A---- C:\WINDOWS\system32\clipbrd.exe 2011-03-14 20:06:27 ----A---- C:\WINDOWS\system32\spider.exe 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\tsgqec.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\mstscax.dll 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\mstsc.exe 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\aaclient.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\termsrv.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\sessmgr.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\remotepg.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdshost.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdchost.dll 2011-03-14 20:06:23 ----D---- C:\WINDOWS\system32\MsDtc 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\rdpclip.exe 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\qprocess.exe 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\mtxoci.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\icaapi.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\xolehlp.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtctm.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtclog.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtc.exe 2011-03-14 20:06:21 ----D---- C:\WINDOWS\system32\Com 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\stclient.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxex.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxdm.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\comrepl.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\comaddin.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\colbact.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\clbcatex.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrvut.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrvps.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrv.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comuid.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comsvcs.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comsnap.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\clbcatq.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\servdeps.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\mmfutil.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\licwmi.dll 2011-03-14 20:06:11 ----A---- C:\WINDOWS\system32\cmprops.dll 2011-03-14 20:06:07 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2011-03-14 20:06:07 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys ======List of files/folders modified in the last 1 months====== 2011-03-14 21:02:30 ----A---- C:\WINDOWS\system.ini 2011-03-14 20:13:57 ----A---- C:\WINDOWS\win.ini 2011-03-14 20:13:28 ----ASH---- C:\WINDOWS\fonts\desktop.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-06-29 62208] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-01-10 135096] R1 Hotkey;Hotkey; C:\WINDOWS\system32\drivers\Hotkey.sys [2003-04-28 9867] R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-01-25 97112] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520] R1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-01-10 61960] R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAud.sys [2007-05-01 630272] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-01-21 6278560] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-07-24 12160] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-02-07 90880] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-10-23 179896] R3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2005-11-30 474184] S1 mailKmd;mailKmd; C:\WINDOWS\system32\drivers\mailKmd.sys [] S3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2009-10-26 4221952] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-04-25 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-04-25 82944] S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-01-10 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-01-10 267944] R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-01-15 266240] R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-17 118784] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-30 46104] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log]
Tomek01 komentarz 16 marca 2011 komentarz 16 marca 2011 Odinstaluj Foxit PDF Creator Toolbar, Yahoo! Toolbar, Ask Toolbar. Wstaw nowe logi OTL i RSIT.
tita98 komentarz 16 marca 2011 Autor komentarz 16 marca 2011 (edytowane) Odinstalowałem wszystko oprócz Ask Toolbar bo nigdzie nie mogłem znaleźć. podaje logi. [log]OTL logfile created on: 2011-03-16 18:28:19 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 014,00 Mb Total Physical Memory | 548,00 Mb Available Physical Memory | 54,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,00 Gb Total Space | 23,25 Gb Free Space | 77,50% Space Free | Partition Type: NTFS Drive E: | 79,78 Gb Total Space | 36,67 Gb Free Space | 45,97% Space Free | Partition Type: NTFS Computer Name: BLACKV7 | User Name: Administrator | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-03-16 17:18:13 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\OTL.exe PRC - [2011-03-03 19:45:59 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2011-03-03 19:45:58 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-01-10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011-01-10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011-01-10 14:23:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-12-20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2010-01-14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-06-29 06:01:51 | 001,699,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-03-05 12:09:55 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-02-25 21:13:16 | 001,555,456 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe PRC - [2009-01-21 11:20:12 | 000,166,912 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe PRC - [2009-01-21 11:18:28 | 000,134,656 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe PRC - [2009-01-21 11:18:02 | 000,243,712 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe PRC - [2008-04-14 20:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 20:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 20:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 20:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 20:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-13 13:39:20 | 000,049,152 | ---- | M] (artArmin) -- C:\Program Files\Vista Drive Icon\DrvIcon.exe PRC - [2007-04-26 10:30:24 | 000,192,512 | ---- | M] (Wistron) -- C:\Program Files\Launch Manager\HotkeyApp.exe PRC - [2007-01-15 16:14:54 | 000,147,456 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2007-01-15 16:13:50 | 001,208,320 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe PRC - [2007-01-15 16:01:56 | 000,266,240 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe PRC - [2006-11-17 20:45:26 | 000,118,784 | ---- | M] (Wistron Corp.) -- C:\Program Files\Launch Manager\WisLMSvc.exe PRC - [2006-11-03 19:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe PRC - [2006-10-23 10:00:36 | 000,815,104 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe PRC - [2006-05-21 08:43:08 | 000,180,224 | ---- | M] () -- C:\Program Files\UberIcon\UberIcon.exe PRC - [2004-04-30 05:28:33 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2004-04-30 05:28:32 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-03-16 17:18:13 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\OTL.exe MOD - [2010-11-03 15:39:40 | 000,034,208 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll MOD - [2009-08-14 12:27:37 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-07-24 10:32:26 | 013,762,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-07-06 16:13:09 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-06-26 08:30:35 | 000,642,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-03-05 12:10:20 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-03-05 12:08:25 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-03-05 12:08:02 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-03-05 12:07:50 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-03-05 12:06:30 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-03-05 12:06:27 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-02-21 15:26:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-02-21 15:25:55 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-02-09 09:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-04-14 20:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 20:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 20:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 20:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 20:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 20:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 20:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-14 20:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 20:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 20:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 20:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-14 20:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2006-05-21 08:43:08 | 000,065,536 | ---- | M] () -- C:\Program Files\UberIcon\UberIcon.dll MOD - [2004-04-30 05:28:35 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2004-04-30 05:28:24 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2011-01-10 14:23:41 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011-01-10 14:23:30 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010-12-20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2006-11-17 20:45:26 | 000,118,784 | ---- | M] (Wistron Corp.) [On_Demand | Running] -- C:\Program Files\Launch Manager\WisLMSvc.exe -- (WisLMSvc) SRV - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-01-25 11:40:06 | 000,097,112 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI) DRV - [2011-01-10 14:23:53 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011-01-10 14:23:53 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010-12-20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2010-06-17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009-10-26 14:47:30 | 004,221,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) Intel(R) DRV - [2009-06-29 20:59:07 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2007-05-01 09:11:54 | 000,630,272 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CHDAud.sys -- (HdAudAddService) DRV - [2007-02-07 00:43:26 | 000,090,880 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2003-04-28 11:27:06 | 000,009,867 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\HOTKEY.sys -- (Hotkey) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\.DEFAULT\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-18\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-20\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found IE - HKU\S-1-5-21-606747145-1390067357-1606980848-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:7.2.3 FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.25 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-16 17:48:29 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-16 17:48:29 | 000,000,000 | ---D | M] [2011-03-14 22:19:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Extensions [2011-03-16 17:48:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\fqgecin9.default\extensions [2011-03-16 17:48:30 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\fqgecin9.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2011-03-14 22:18:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-03-15 20:44:28 | 000,000,000 | ---D | M] (IDM CC) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\DANE APLIKACJI\IDM\IDMMZCC3 [2010-08-24 10:31:30 | 000,773,120 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll [2010-12-09 11:47:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2011-03-03 17:38:41 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2011-03-03 17:38:41 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2011-03-03 17:38:41 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2011-03-03 17:38:41 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2011-03-03 17:38:41 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2011-03-03 17:38:41 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.12.6.dll (BitComet) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.) O3 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [BackgroundSwitcher] C:\WINDOWS\system32\bgswitch.exe () O4 - HKLM..\Run: [CtrlVol] File not found O4 - HKLM..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe (artArmin) O4 - HKLM..\Run: [HotkeyApp] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron) O4 - HKLM..\Run: [LaunchAp] File not found O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [Wbutton] File not found O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-606747145-1390067357-1606980848-500..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-606747145-1390067357-1606980848-500..\Run: [UberIcon] C:\Program Files\UberIcon\UberIcon.exe () O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0 O8 - Extra context menu item: &P&obierz &za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm () O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm () O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm () O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.12.6.dll (BitComet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.10.254 82.160.29.254 213.199.225.14 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-03-16 18:23:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2011-03-16 18:02:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes [2011-03-16 18:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware [2011-03-16 18:01:36 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011-03-16 18:01:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2011-03-16 18:01:31 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011-03-16 18:01:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011-03-16 17:49:10 | 000,000,000 | ---D | C] -- C:\Downloads [2011-03-16 17:48:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\BitComet [2011-03-16 17:48:27 | 000,000,000 | ---D | C] -- C:\Program Files\BitComet [2011-03-16 17:48:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\BitComet [2011-03-16 17:26:08 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-03-16 17:26:07 | 000,000,000 | ---D | C] -- C:\rsit [2011-03-16 16:49:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2011-03-16 16:11:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\skróty [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp [2011-03-15 21:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Detektor Winampa [2011-03-15 21:19:23 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2011-03-15 21:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp [2011-03-15 21:00:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative [2011-03-15 21:00:23 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2011-03-15 21:00:22 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2011-03-15 20:50:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Wideo [2011-03-15 20:48:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic [2011-03-15 20:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software [2011-03-15 20:44:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads [2011-03-15 20:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\IDM [2011-03-15 20:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache [2011-03-15 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Internet Download Manager [2011-03-15 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Internet Download Manager [2011-03-15 20:41:50 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager [2011-03-15 20:40:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Foxit Reader [2011-03-15 20:40:34 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software [2011-03-15 20:31:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JDownloader [2011-03-15 20:30:22 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2011-03-15 20:30:03 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2011-03-15 20:02:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2011-03-15 19:06:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\skypePM [2011-03-15 18:57:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Temp [2011-03-15 18:57:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2011-03-15 18:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google [2011-03-15 18:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2011-03-15 18:56:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2011-03-15 18:56:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2011-03-15 18:56:48 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2011-03-15 18:56:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Skype [2011-03-15 18:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2011-03-15 18:41:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Identities [2011-03-15 18:41:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Ahead [2011-03-15 18:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero 7 Premium [2011-03-15 18:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Ahead [2011-03-15 18:34:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero [2011-03-15 18:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2011-03-15 18:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2011-03-15 18:28:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office [2011-03-15 18:28:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2011-03-15 18:28:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2011-03-15 18:27:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2011-03-15 18:27:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2011-03-14 22:22:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Avira [2011-03-14 22:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia [2011-03-14 22:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe [2011-03-14 22:20:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie [2011-03-14 22:19:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mozilla [2011-03-14 22:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla [2011-03-14 22:18:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox [2011-03-14 22:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-03-14 22:01:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Avira [2011-03-14 22:01:49 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2011-03-14 22:01:46 | 000,135,096 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2011-03-14 22:01:46 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2011-03-14 22:01:46 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2011-03-14 22:01:46 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2011-03-14 22:01:46 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2011-03-14 22:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avira [2011-03-14 21:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Launch Manager [2011-03-14 21:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2011-03-14 21:41:12 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT [2011-03-14 21:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2011-03-14 21:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu [2011-03-14 21:35:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2011-03-14 21:34:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek [2011-03-14 21:34:30 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011-03-14 21:34:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS [2011-03-14 21:34:29 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2011-03-14 21:34:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\InstallShield [2011-03-14 21:34:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR [2011-03-14 21:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2011-03-14 21:02:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2011-03-14 21:02:37 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2011-03-14 21:02:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2011-03-14 21:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2011-03-14 21:02:31 | 000,000,000 | R--D | C] -- C:\Program Files [2011-03-14 21:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2011-03-14 21:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2011-03-14 21:02:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [2011-03-14 21:02:09 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2011-03-14 21:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2011-03-14 21:02:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2011-03-14 21:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2011-03-14 21:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2011-03-14 21:01:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2011-03-14 21:01:48 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2011-03-14 21:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2011-03-14 21:01:20 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2011-03-14 20:59:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Staging [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Resources [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\FileTypes [2011-03-14 20:59:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Effects [2011-03-14 20:57:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2011-03-14 20:54:24 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2011-03-14 20:54:24 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2011-03-14 20:54:24 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2011-03-14 20:54:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2011-03-14 20:54:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2011-03-14 20:42:50 | 000,000,000 | ---D | C] -- C:\swsetup [2011-03-14 20:41:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE [2011-03-14 20:38:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2011-03-14 20:38:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2011-03-14 20:38:43 | 000,000,000 | ---D | C] -- C:\Intel [2011-03-14 20:34:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2011-03-14 20:31:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender [2011-03-14 20:30:51 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache [2011-03-14 20:30:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Identities [2011-03-14 20:30:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Muzyka [2011-03-14 20:30:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moje obrazy [2011-03-14 20:30:24 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2011-03-14 20:30:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:30:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent [2011-03-14 20:30:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Ulubione [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart [2011-03-14 20:30:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Akcesoria [2011-03-14 20:30:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\Cookies [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Szablony [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood [2011-03-14 20:30:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\NetHood [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\WinRAR [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Desktop Slide Show [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Vista Drive Icon [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Sun [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\RarSFX1 [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\RarSFX0 [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Gry [2011-03-14 20:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\CCleaner [2011-03-14 20:30:09 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2011-03-14 20:30:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2011-03-14 20:30:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011-03-14 20:29:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:29:55 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2011-03-14 20:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\winxpbe [2011-03-14 20:27:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show [2011-03-14 20:27:31 | 000,000,000 | ---D | C] -- C:\Program Files\Speed-X [2011-03-14 20:27:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SpeedX [2011-03-14 20:24:03 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-03-14 20:24:03 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2011-03-14 20:23:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2011-03-14 20:23:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2011-03-14 20:23:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2011-03-14 20:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2011-03-14 20:21:02 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2011-03-14 20:21:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2011-03-14 20:21:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2011-03-14 20:19:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2011-03-14 20:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011-03-14 20:19:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2011-03-14 20:19:06 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo! [2011-03-14 20:19:01 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2011-03-14 20:18:57 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2011-03-14 20:18:40 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ [2011-03-14 20:18:36 | 000,000,000 | ---D | C] -- C:\Program Files\Snipping Tool [2011-03-14 20:18:29 | 000,000,000 | ---D | C] -- C:\Program Files\Alky for Applications [2011-03-14 20:17:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2011-03-14 20:17:12 | 000,000,000 | ---D | C] -- C:\Program Files\UberIcon [2011-03-14 20:17:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\K-Lite Codec Pack [2011-03-14 20:17:05 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2011-03-14 20:17:04 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2011-03-14 20:17:04 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2011-03-14 20:17:03 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll [2011-03-14 20:17:02 | 000,685,056 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\divx.dll [2011-03-14 20:16:57 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2011-03-14 20:15:16 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2011-03-14 20:14:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2011-03-14 20:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011-03-14 20:14:12 | 000,000,000 | ---D | C] -- C:\Program Files\Vista Drive Icon [2011-03-14 20:14:09 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2011-03-14 20:13:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache [2011-03-14 20:13:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2011-03-14 20:12:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2011-03-14 20:12:53 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2011-03-14 20:12:50 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2011-03-14 20:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2011-03-14 20:12:26 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2011-03-14 20:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2011-03-14 20:12:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2011-03-14 20:12:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2011-03-14 20:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2011-03-14 20:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2011-03-14 20:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2011-03-14 20:11:52 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2011-03-14 20:11:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry [2011-03-14 20:11:06 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2011-03-14 20:10:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne [2011-03-14 20:10:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2011-03-14 20:10:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Accessories [2011-03-14 20:09:02 | 000,000,000 | ---D | C] -- C:\Program Files\VistaExperience.org [2011-03-14 20:07:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2011-03-14 20:06:55 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-03-14 20:06:54 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2011-03-14 20:06:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2011-03-14 20:06:28 | 000,737,280 | ---- | C] (dotPDN LLC) -- C:\WINDOWS\System32\mspaint.exe [2011-03-14 20:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2011-03-14 20:06:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2011-03-14 20:06:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2011-03-14 20:05:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria [2005-11-26 20:23:22 | 000,049,152 | ---- | C] ( ) -- C:\WINDOWS\System32\Interop.WIA.dll [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-03-16 18:29:42 | 000,497,824 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-03-16 18:29:42 | 000,438,948 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-03-16 18:29:42 | 000,087,442 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-03-16 18:29:42 | 000,070,124 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-03-16 18:27:59 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011-03-16 18:24:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-03-16 18:01:37 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-03-16 17:48:29 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk [2011-03-16 17:39:15 | 000,001,301 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Downloads.lnk [2011-03-16 15:57:09 | 000,126,912 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-15 21:19:38 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2011-03-15 21:01:03 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-03-15 20:51:14 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-15 20:40:50 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk [2011-03-15 20:31:01 | 000,000,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2011-03-15 20:08:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Administrator\default.pls [2011-03-15 19:06:39 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-03-15 19:05:16 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-03-15 18:55:52 | 000,001,306 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Pobieranie.lnk [2011-03-15 18:41:03 | 000,002,174 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Nero Burning ROM.lnk [2011-03-15 18:28:51 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2011-03-14 22:19:28 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2011-03-14 22:01:59 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2011-03-14 21:42:38 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2011-03-14 21:42:36 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf [2011-03-14 21:36:55 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DeskUpdate.lnk [2011-03-14 21:02:41 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2011-03-14 20:29:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-03-14 20:29:01 | 000,004,512 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-03-14 20:29:01 | 000,001,142 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011-03-14 20:28:25 | 000,005,519 | ---- | M] () -- C:\WINDOWS\unins000.dat [2011-03-14 20:27:59 | 000,697,943 | ---- | M] () -- C:\WINDOWS\unins000.exe [2011-03-14 20:19:01 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2011-03-14 20:14:00 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-03-14 20:13:52 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-03-14 20:13:52 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-03-14 20:13:51 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011-03-14 20:13:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2011-03-14 20:11:22 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-03-14 20:05:30 | 000,000,205 | -HS- | M] () -- C:\boot.ini [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-16 18:01:37 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-03-16 17:48:29 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk [2011-03-16 17:38:07 | 000,001,301 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Downloads.lnk [2011-03-15 21:19:38 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2011-03-15 20:40:50 | 000,000,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Foxit Reader.lnk [2011-03-15 20:31:01 | 000,000,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2011-03-15 20:08:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Administrator\default.pls [2011-03-15 20:02:51 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-03-15 20:02:37 | 005,690,224 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\5 - Opcji Jest Wiele - Paczek.mp3 [2011-03-15 20:01:11 | 000,002,080 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Grinch.jpg [2011-03-15 19:06:39 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-03-15 18:56:51 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-03-15 18:54:48 | 000,001,306 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Pobieranie.lnk [2011-03-15 18:41:03 | 000,002,174 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Nero Burning ROM.lnk [2011-03-15 18:28:51 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2011-03-14 22:19:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-03-14 22:01:59 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2011-03-14 21:42:38 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2011-03-14 21:42:36 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf [2011-03-14 21:42:32 | 000,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys [2011-03-14 21:42:05 | 001,060,424 | ---- | C] () -- C:\WINDOWS\System32\WdfCoInstaller01000.dll [2011-03-14 21:36:55 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DeskUpdate.lnk [2011-03-14 21:02:41 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2011-03-14 21:02:40 | 000,004,512 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2011-03-14 21:02:36 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-03-14 21:02:20 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2011-03-14 21:01:20 | 000,126,912 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-14 21:01:15 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-14 21:00:31 | 000,000,205 | -HS- | C] () -- C:\boot.ini [2011-03-14 21:00:28 | 000,001,142 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2011-03-14 20:38:51 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin [2011-03-14 20:38:51 | 000,032,416 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp [2011-03-14 20:38:51 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp [2011-03-14 20:34:44 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011-03-14 20:31:23 | 000,001,017 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Defender.lnk [2011-03-14 20:30:59 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Internet Explorer.lnk [2011-03-14 20:30:38 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Outlook Express.lnk [2011-03-14 20:30:12 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Pomoc zdalna.lnk [2011-03-14 20:30:12 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2011-03-14 20:30:12 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Media Player.lnk [2011-03-14 20:30:11 | 001,636,376 | ---- | C] () -- C:\Documents and Settings\Administrator\ycomp_setup.exe [2011-03-14 20:28:52 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-03-14 20:28:39 | 000,004,346 | R--- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tweaks - Dodaj to!.reg [2011-03-14 20:28:00 | 000,697,943 | ---- | C] () -- C:\WINDOWS\unins000.exe [2011-03-14 20:28:00 | 000,005,519 | ---- | C] () -- C:\WINDOWS\unins000.dat [2011-03-14 20:24:07 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2011-03-14 20:17:07 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-03-14 20:17:06 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-03-14 20:17:05 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2011-03-14 20:17:04 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-03-14 20:17:04 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-03-14 20:17:03 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2011-03-14 20:17:00 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-03-14 20:14:00 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2011-03-14 20:14:00 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2011-03-14 20:13:52 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2011-03-14 20:13:52 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2011-03-14 20:13:50 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2011-03-14 20:11:22 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-03-14 20:06:38 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2011-03-14 20:06:38 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2011-03-14 20:06:36 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2011-03-14 20:06:30 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-07-26 05:00:52 | 000,571,392 | ---- | C] () -- C:\WINDOWS\System32\shutt.exe [2008-08-24 17:38:56 | 000,099,480 | ---- | C] () -- C:\WINDOWS\System32\ShellExtension_x64.dll [2008-08-24 17:38:54 | 000,093,336 | ---- | C] () -- C:\WINDOWS\System32\ShellExtension_x86.dll [2008-08-24 17:38:50 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\Squish_x86.dll [2008-08-24 17:38:50 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\Squish_x86_SSE2.dll [2008-08-24 17:38:50 | 000,095,744 | ---- | C] () -- C:\WINDOWS\System32\Squish_x64.dll [2008-08-24 15:25:26 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\WiaProxy32.exe.config [2008-08-24 15:25:16 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\UpdateMonitor.exe.config [2008-08-24 15:25:02 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\SetupNgen.exe.config [2008-08-24 15:24:46 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\PdnRepair.exe.config [2008-08-24 15:21:42 | 000,000,147 | ---- | C] () -- C:\WINDOWS\System32\PaintDotNet.exe.config [2008-04-14 21:16:20 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2006-12-31 05:57:08 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2001-10-26 17:15:16 | 000,497,824 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 17:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 17:15:16 | 000,087,442 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 17:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-10-02 08:58:22 | 000,019,520 | ---- | C] () -- C:\WINDOWS\System32\bgswitch.exe [2001-08-23 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-17 22:30:24 | 000,438,948 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-17 22:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-17 22:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-17 22:30:22 | 000,070,124 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-17 22:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-07-21 23:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-21 23:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [color=#E56717]========== LOP Check ==========[/color] [2011-03-16 18:10:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\BitComet [2011-03-16 18:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache [2011-03-15 20:48:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software [2011-03-16 16:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IDM [2011-03-14 21:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu [2011-03-14 20:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show [2011-03-16 18:27:59 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011-03-14 20:05:30 | 000,000,205 | -HS- | M] () -- C:\boot.ini [2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2011-03-14 20:14:00 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2011-03-14 20:14:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-13 20:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-13 22:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2011-03-16 18:24:54 | 1598,029,824 | -HS- | M] () -- C:\pagefile.sys [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-13 19:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 20:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys [2008-04-13 19:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-24 10:52:52 | 018,637,317 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-05-02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\Driver Cache\i386\cdrom.sys [2008-05-02 11:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\dllcache\cdrom.sys [2008-05-02 06:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 20:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-13 22:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-03-05 12:09:55 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] [log]OTL Extras logfile created on: 2011-03-16 18:28:19 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 014,00 Mb Total Physical Memory | 548,00 Mb Available Physical Memory | 54,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,00 Gb Total Space | 23,25 Gb Free Space | 77,50% Space Free | Partition Type: NTFS Drive E: | 79,78 Gb Total Space | 36,67 Gb Free Space | 45,97% Space Free | Partition Type: NTFS Computer Name: BLACKV7 | User Name: Administrator | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [HKEY_USERS\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "UpdatesDisableNotify" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "26446:TCP" = 26446:TCP:*:Enabled:BitComet 26446 TCP "26446:UDP" = 26446:UDP:*:Enabled:BitComet 26446 UDP [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.) "C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe -- (www.BitComet.com) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7 "{330B724C-A158-46A0-9459-0574058D6D94}_is1" = SpeedX "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3F3733A5-8322-454D-A638-3B74E1C83752}" = Gadget Installer "{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1" = DirectX 9.0c Extra Files (x86, x64) "{88561496-997E-46E6-B481-AE254E7F1045}" = Nero 7 Premium "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90120000-008A-0409-0000-0000000FF1CE}" = Microsoft Office 2007 Recent Documents Gadget "{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP) "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0846526-66DD-4DC9-A02C-98F9A2806812}" = Launch Manager V1.4.6 "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1 "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "BitComet" = BitComet 1.26 "CCleaner" = CCleaner (remove only) "CNXT_HDAUDIO" = Conexant HD Audio "Foxit Reader" = Foxit Reader "HDMI" = Intel(R) Graphics Media Accelerator Driver "ie8" = Windows Internet Explorer 8 "Internet Download Manager" = Internet Download Manager "JDownloader" = JDownloader "KLiteCodecPack_is1" = K-Lite Codec Pack 5.0.0 (Full) "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.15)" = Mozilla Firefox (3.6.15) "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "RealAlt_is1" = Real Alternative 2.0.2 "SmartAudio" = SmartAudio "SynTPDeinstKey" = Synaptics Pointing Device Driver "Vista Drive Icon" = Vista Drive Icon 1.4 "Wdf01000" = Microsoft Kernel-Mode Driver Framework 1.0 "Winamp" = Winamp "Windows Desktop Slide Show" = Windows Desktop Slide Show "Windows Sidebar" = Windows Sidebar "WinRAR archiver" = Archiwizator WinRAR [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-606747145-1390067357-1606980848-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Winamp Detect" = Detektor Winampa [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-03-14 15:24:03 | Computer Name = BLACKV7 | Source = MsiInstaller | ID = 10005 Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004. Method SHGetFolderPath failed. HRESULT: 0x80004005. Error - 2011-03-14 15:24:03 | Computer Name = BLACKV7 | Source = MsiInstaller | ID = 10005 Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004. Method GetFontCacheDataFolder failed. HRESULT: 0x80004005. Error - 2011-03-16 11:49:14 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:50:03 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:50:04 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 11:51:39 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). Error - 2011-03-16 12:01:27 | Computer Name = BLACKV7 | Source = VSS | ID = 5013 Description = Błąd Usługi kopiowania woluminów w tle: autor kopii w tle ContentIndexingService wywołał procedurę VsServiceChangeState, która nie powiodła się, stan: 0x80070424 (przekonwertowany na 0x800423f4). [ System Events ] Error - 2011-03-15 16:19:57 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1068” podczas próby uruchomienia usługi upnphost z argumentami „” w celu uruchomienia serwera: {204810B9-73B2-11D4-BF42-00B0D0118B56} Error - 2011-03-15 16:19:57 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7001 Description = Usługa Host uniwersalnego urządzenia Plug and Play zależy od usługi Usługa odnajdywania SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2011-03-15 16:21:49 | Computer Name = BLACKV7 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi ImapiService z argumentami „-Service” w celu uruchomienia serwera: {520CCA63-51A5-11D3-9144-00104BA11C5E} Error - 2011-03-16 10:57:49 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2011-03-16 12:08:16 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2011-03-16 13:12:18 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2011-03-16 13:21:50 | Computer Name = BLACKV7 | Source = sr | ID = 1 Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC0000001' podczas przetwarzania pliku '' w woluminie 'HarddiskVolume2'. W rezultacie zostało zatrzymane monitorowanie woluminu. Error - 2011-03-16 13:22:11 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Si3112 Error - 2011-03-16 13:22:12 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2011-03-16 13:25:21 | Computer Name = BLACKV7 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 < End of report > [/log] [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Administrator at 2011-03-16 18:31:56 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 24 GB (77%) free of 31 GB Total RAM: 1014 MB (51% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:32:02, on 2011-03-16 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Vista Drive Icon\DrvIcon.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\UberIcon\UberIcon.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\Launch Manager\WisLMSvc.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\OTL.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\Programs\RSIT.exe C:\Program Files\trend micro\Administrator.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.12.6.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O4 - HKLM\..\Run: [BackgroundSwitcher] C:\WINDOWS\system32\bgswitch.exe O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe" O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O8 - Extra context menu item: &P&obierz &za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Ściągnij przez IDM - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.12.6.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Usługa bramy warstwy aplikacji (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe -- End of file - 7366 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\MP Scheduled Scan.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}] IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-12-23 202160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}] BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.12.6.dll [2010-12-06 765744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BackgroundSwitcher"=C:\WINDOWS\system32\bgswitch.exe [2001-10-02 19520] "DrvIcon"=C:\Program Files\Vista Drive Icon\DrvIcon.exe [2008-04-13 49152] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2009-01-21 134656] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-01-21 166912] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-01-21 134656] "HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-04-26 192512] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-23 815104] "CtrlVol"=C:\Program Files\Launch Manager\CtrlVol.exe [] "LaunchAp"=C:\Program Files\Launch Manager\LaunchAp.exe [] "Wbutton"=C:\Program Files\Launch Manager\WButton.exe [] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-01-10 281768] "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648] "Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-12-20 443728] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "UberIcon"=C:\Program Files\UberIcon\UberIcon.exe [2006-05-21 180224] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-02-25 1555456] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-01-15 147456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2009-01-21 205824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-04-25 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableCAD"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoResolveTrack"=1 "NoResolveSearch"=1 "NoSMConfigurePrograms"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary" "C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp" "C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2011-03-16 18:23:39 ----D---- C:\WINDOWS\system32\appmgmt 2011-03-16 18:02:20 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes 2011-03-16 18:01:36 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2011-03-16 18:01:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2011-03-16 18:01:31 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2011-03-16 18:01:31 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2011-03-16 17:49:10 ----D---- C:\Downloads 2011-03-16 17:48:27 ----D---- C:\Program Files\BitComet 2011-03-16 17:48:27 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\BitComet 2011-03-16 17:26:08 ----D---- C:\Program Files\trend micro 2011-03-16 17:26:07 ----D---- C:\rsit 2011-03-16 16:49:10 ----D---- C:\WINDOWS\system32\NtmsData 2011-03-15 21:19:38 ----D---- C:\Program Files\Winamp Detect 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxsfs.dll 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\pxafs.dll 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2011-03-15 21:19:27 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\vxblock.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxwave.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxmas.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\pxdrv.dll 2011-03-15 21:19:26 ----N---- C:\WINDOWS\system32\px.dll 2011-03-15 21:19:23 ----D---- C:\Program Files\Winamp 2011-03-15 21:19:23 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pndx5032.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pndx5016.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\pncrt.dll 2011-03-15 21:00:23 ----A---- C:\WINDOWS\system32\msvcp71.dll 2011-03-15 21:00:22 ----D---- C:\Program Files\Real Alternative 2011-03-15 20:48:54 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic 2011-03-15 20:48:04 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit Software 2011-03-15 20:41:59 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\IDM 2011-03-15 20:41:59 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\DMCache 2011-03-15 20:41:50 ----D---- C:\Program Files\Internet Download Manager 2011-03-15 20:40:34 ----D---- C:\Program Files\Foxit Software 2011-03-15 20:30:22 ----D---- C:\Program Files\JDownloader 2011-03-15 20:02:51 ----A---- C:\WINDOWS\NeroDigital.ini 2011-03-15 20:02:08 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google 2011-03-15 19:06:31 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\skypePM 2011-03-15 18:56:59 ----D---- C:\Program Files\Google 2011-03-15 18:56:50 ----D---- C:\Program Files\Common Files\Skype 2011-03-15 18:56:48 ----RD---- C:\Program Files\Skype 2011-03-15 18:56:47 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Skype 2011-03-15 18:56:43 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Skype 2011-03-15 18:36:03 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Ahead 2011-03-15 18:34:36 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero 2011-03-15 18:34:35 ----D---- C:\Program Files\Nero 2011-03-15 18:34:35 ----D---- C:\Program Files\Common Files\Ahead 2011-03-15 18:28:51 ----A---- C:\WINDOWS\ODBC.INI 2011-03-15 18:28:47 ----A---- C:\WINDOWS\system32\mdimon.dll 2011-03-15 18:28:14 ----D---- C:\Program Files\Common Files\DESIGNER 2011-03-15 18:28:04 ----D---- C:\WINDOWS\SHELLNEW 2011-03-15 18:27:29 ----D---- C:\Program Files\Microsoft.NET 2011-03-15 18:27:28 ----D---- C:\Program Files\Microsoft Office 2011-03-14 22:22:04 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Avira 2011-03-14 22:20:45 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia 2011-03-14 22:20:45 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe 2011-03-14 22:19:25 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla 2011-03-14 22:18:53 ----D---- C:\Program Files\Mozilla Firefox 2011-03-14 22:01:49 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys 2011-03-14 22:01:46 ----D---- C:\Program Files\Avira 2011-03-14 22:01:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Avira 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys 2011-03-14 22:01:46 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys 2011-03-14 21:42:32 ----D---- C:\Program Files\Launch Manager 2011-03-14 21:42:32 ----A---- C:\WINDOWS\system32\drivers\HOTKEY.sys 2011-03-14 21:42:24 ----HDC---- C:\WINDOWS\$NtUninstallWdf01000$ 2011-03-14 21:42:09 ----D---- C:\Program Files\Synaptics 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\WdfCoInstaller01000.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynTPCo4.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\SynCOM.dll 2011-03-14 21:42:05 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys 2011-03-14 21:41:33 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2011-03-14 21:41:32 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2011-03-14 21:41:30 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2011-03-14 21:41:29 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2011-03-14 21:41:28 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2011-03-14 21:41:27 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2011-03-14 21:41:26 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2011-03-14 21:41:24 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2011-03-14 21:41:23 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011-03-14 21:41:22 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2011-03-14 21:41:19 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011-03-14 21:41:12 ----D---- C:\Program Files\CONEXANT 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\ksuser.dll 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2011-03-14 21:41:11 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2011-03-14 21:39:37 ----D---- C:\Program Files\Intel 2011-03-14 21:36:48 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu 2011-03-14 21:35:09 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2011-03-14 21:34:31 ----A---- C:\WINDOWS\system32\drivers\Rtenicxp.sys 2011-03-14 21:34:30 ----D---- C:\WINDOWS\OPTIONS 2011-03-14 21:34:30 ----D---- C:\Program Files\Realtek 2011-03-14 21:34:29 ----HD---- C:\Program Files\InstallShield Installation Information 2011-03-14 21:34:22 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\InstallShield 2011-03-14 21:34:10 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR 2011-03-14 21:16:15 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage 2011-03-14 21:05:29 ----A---- C:\WINDOWS\system32\h323log.txt 2011-03-14 21:05:22 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2011-03-14 21:04:40 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2011-03-14 21:04:36 ----A---- C:\WINDOWS\system32\drivers\compbatt.sys 2011-03-14 21:04:36 ----A---- C:\WINDOWS\system32\drivers\CmBatt.sys 2011-03-14 21:04:35 ----A---- C:\WINDOWS\system32\drivers\battc.sys 2011-03-14 21:03:42 ----A---- C:\WINDOWS\system32\usbui.dll 2011-03-14 21:03:33 ----A---- C:\WINDOWS\system32\drivers\wmiacpi.sys 2011-03-14 21:02:40 ----A---- C:\WINDOWS\imsins.BAK 2011-03-14 21:02:37 ----SHD---- C:\WINDOWS\Installer 2011-03-14 21:02:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-03-14 21:02:36 ----D---- C:\Program Files\Common Files\ODBC 2011-03-14 21:02:36 ----A---- C:\WINDOWS\ODBCINST.INI 2011-03-14 21:02:32 ----D---- C:\Program Files\Common Files\SpeechEngines 2011-03-14 21:02:31 ----RD---- C:\Program Files 2011-03-14 21:02:31 ----D---- C:\Program Files\Common Files\Microsoft Shared 2011-03-14 21:02:31 ----D---- C:\Program Files\Common Files 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\irclass.dll 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\dgsetup.dll 2011-03-14 21:02:23 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2011-03-14 21:02:22 ----A---- C:\WINDOWS\system32\spxcoins.dll 2011-03-14 21:02:22 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2011-03-14 21:02:20 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2011-03-14 21:02:20 ----A---- C:\WINDOWS\TASKMAN.EXE 2011-03-14 21:02:20 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2011-03-14 21:02:19 ----A---- C:\WINDOWS\system32\batt.dll 2011-03-14 21:02:19 ----A---- C:\WINDOWS\NOTEPAD.EXE 2011-03-14 21:02:18 ----A---- C:\WINDOWS\system32\storprop.dll 2011-03-14 21:02:09 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2011-03-14 21:02:03 ----RA---- C:\WINDOWS\SET8.tmp 2011-03-14 21:02:00 ----RA---- C:\WINDOWS\SET4.tmp 2011-03-14 21:01:59 ----RA---- C:\WINDOWS\SET3.tmp 2011-03-14 21:01:54 ----D---- C:\WINDOWS\system32\CatRoot2 2011-03-14 21:01:54 ----D---- C:\WINDOWS\system32\CatRoot 2011-03-14 21:01:48 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2011-03-14 21:01:26 ----A---- C:\WINDOWS\setuplog.txt 2011-03-14 21:01:21 ----D---- C:\Documents and Settings 2011-03-14 21:01:20 ----SHD---- C:\System Volume Information 2011-03-14 21:00:31 ----SH---- C:\boot.ini 2011-03-14 20:59:37 ----D---- C:\WINDOWS\system32\Staging 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\Resources 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\FileTypes 2011-03-14 20:59:34 ----D---- C:\WINDOWS\system32\Effects 2011-03-14 20:57:13 ----D---- C:\WINDOWS\system32\ReinstallBackups 2011-03-14 20:54:24 ----SD---- C:\WINDOWS\Downloaded Program Files 2011-03-14 20:54:24 ----RSD---- C:\WINDOWS\Fonts 2011-03-14 20:54:24 ----RD---- C:\WINDOWS\Web 2011-03-14 20:54:24 ----HD---- C:\WINDOWS\inf 2011-03-14 20:54:24 ----D---- C:\WINDOWS\WinSxS 2011-03-14 20:54:24 ----D---- C:\WINDOWS\WBEM 2011-03-14 20:54:24 ----D---- C:\WINDOWS\twain_32 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Temp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\wins 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\wbem 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\usmt 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\spool 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ShellExt 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\Setup 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ras 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\pl-pl 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\pl 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\npp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\mui 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\inetsrv 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\icsxml 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\ias 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\export 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\UMDF 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\etc 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers\disdn 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\drivers 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\dhcp 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\config 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\3com_dmi 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\3076 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\2052 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1054 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1045 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1042 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1041 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1037 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1033 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1031 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1028 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32\1025 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system32 2011-03-14 20:54:24 ----D---- C:\WINDOWS\system 2011-03-14 20:54:24 ----D---- C:\WINDOWS\security 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Resources 2011-03-14 20:54:24 ----D---- C:\WINDOWS\repair 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Provisioning 2011-03-14 20:54:24 ----D---- C:\WINDOWS\PeerNet 2011-03-14 20:54:24 ----D---- C:\WINDOWS\PCHealth 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Offline Web Pages 2011-03-14 20:54:24 ----D---- C:\WINDOWS\NLDRV 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Network Diagnostic 2011-03-14 20:54:24 ----D---- C:\WINDOWS\mui 2011-03-14 20:54:24 ----D---- C:\WINDOWS\msapps 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Media 2011-03-14 20:54:24 ----D---- C:\WINDOWS\L2Schemas 2011-03-14 20:54:24 ----D---- C:\WINDOWS\java 2011-03-14 20:54:24 ----D---- C:\WINDOWS\ime 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Help 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Driver Cache 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Debug 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Cursors 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Connection Wizard 2011-03-14 20:54:24 ----D---- C:\WINDOWS\Config 2011-03-14 20:54:24 ----D---- C:\WINDOWS\AppPatch 2011-03-14 20:54:24 ----D---- C:\WINDOWS\addins 2011-03-14 20:54:24 ----D---- C:\WINDOWS 2011-03-14 20:54:24 ----ASH---- C:\pagefile.sys 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\NETw5r32.dll 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\NETw5c32.dll 2011-03-14 20:45:13 ----A---- C:\WINDOWS\system32\drivers\NETw5x32.sys 2011-03-14 20:44:48 ----D---- C:\DeskUpdate.tmp 2011-03-14 20:42:50 ----D---- C:\swsetup 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igxprd32.dll 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxtray.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxpers.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxext.exe 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\igfxexps.dll 2011-03-14 20:38:52 ----A---- C:\WINDOWS\system32\drivers\igxpmp32.sys 2011-03-14 20:38:51 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpgd32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpdx32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igxpdv32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxress.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxpph.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxdo.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxdev.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxCoIn_v5029.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\ig4icd32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\ig4dev32.dll 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\hkcmd.exe 2011-03-14 20:38:51 ----A---- C:\WINDOWS\system32\hccutils.dll 2011-03-14 20:38:50 ----D---- C:\WINDOWS\system32\Lang 2011-03-14 20:38:50 ----A---- C:\WINDOWS\system32\igxpun.exe 2011-03-14 20:38:50 ----A---- C:\WINDOWS\system32\difxapi.dll 2011-03-14 20:38:43 ----D---- C:\Intel 2011-03-14 20:34:33 ----SHD---- C:\RECYCLER 2011-03-14 20:31:21 ----D---- C:\Program Files\Windows Defender 2011-03-14 20:30:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2011-03-14 20:30:35 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Identities 2011-03-14 20:30:24 ----HD---- C:\Program Files\Uninstall Information 2011-03-14 20:30:13 ----ASH---- C:\Documents and Settings\Administrator\Dane aplikacji\desktop.ini 2011-03-14 20:30:10 ----SD---- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft 2011-03-14 20:30:10 ----D---- C:\Documents and Settings\Administrator\Dane aplikacji\Sun 2011-03-14 20:30:09 ----SHD---- C:\WINDOWS\CSC 2011-03-14 20:30:06 ----D---- C:\WINDOWS\SoftwareDistribution 2011-03-14 20:30:01 ----D---- C:\WINDOWS\Prefetch 2011-03-14 20:30:00 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-03-14 20:28:35 ----D---- C:\Program Files\winxpbe 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAudio2_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_9.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_8.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_7.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_6.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_10.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2011-03-14 20:28:16 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_41.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_40.dll 2011-03-14 20:28:15 ----A---- C:\WINDOWS\system32\d3dx9_39.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_38.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_37.dll 2011-03-14 20:28:14 ----A---- C:\WINDOWS\system32\d3dx9_36.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_35.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_34.dll 2011-03-14 20:28:13 ----A---- C:\WINDOWS\system32\d3dx9_33.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2011-03-14 20:28:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_41.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_40.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_38.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_37.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_36.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_35.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_34.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10_33.dll 2011-03-14 20:28:11 ----A---- C:\WINDOWS\system32\d3dx10.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll 2011-03-14 20:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_36.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_35.dll 2011-03-14 20:28:09 ----A---- C:\WINDOWS\system32\d3dcompiler_34.dll 2011-03-14 20:28:00 ----A---- C:\WINDOWS\unins000.exe 2011-03-14 20:28:00 ----A---- C:\WINDOWS\system32\d3dcompiler_33.dll 2011-03-14 20:27:47 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Slide Show 2011-03-14 20:27:31 ----D---- C:\Program Files\Speed-X 2011-03-14 20:23:52 ----D---- C:\WINDOWS\system32\XPSViewer 2011-03-14 20:23:51 ----D---- C:\WINDOWS\system32\en-US 2011-03-14 20:23:51 ----D---- C:\Program Files\MSBuild 2011-03-14 20:23:47 ----D---- C:\Program Files\Reference Assemblies 2011-03-14 20:21:02 ----RSD---- C:\WINDOWS\assembly 2011-03-14 20:21:02 ----D---- C:\WINDOWS\Microsoft.NET 2011-03-14 20:21:01 ----D---- C:\WINDOWS\system32\URTTemp 2011-03-14 20:20:56 ----N---- C:\WINDOWS\system32\xpssvcs.dll 2011-03-14 20:20:56 ----N---- C:\WINDOWS\system32\xpsshhdr.dll 2011-03-14 20:20:42 ----N---- C:\WINDOWS\system32\prntvpt.dll 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\javaws.exe 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\javaw.exe 2011-03-14 20:19:44 ----A---- C:\WINDOWS\system32\java.exe 2011-03-14 20:19:22 ----D---- C:\Program Files\Java 2011-03-14 20:19:21 ----D---- C:\Program Files\Common Files\Java 2011-03-14 20:19:06 ----D---- C:\Program Files\Yahoo! 2011-03-14 20:19:01 ----D---- C:\Program Files\CCleaner 2011-03-14 20:18:57 ----SD---- C:\WINDOWS\system32\Microsoft 2011-03-14 20:18:40 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ 2011-03-14 20:18:36 ----D---- C:\Program Files\Snipping Tool 2011-03-14 20:18:29 ----D---- C:\Program Files\Alky for Applications 2011-03-14 20:17:13 ----D---- C:\Program Files\Microsoft Games 2011-03-14 20:17:12 ----D---- C:\Program Files\UberIcon 2011-03-14 20:17:07 ----A---- C:\WINDOWS\system32\unrar.dll 2011-03-14 20:17:06 ----A---- C:\WINDOWS\avisplitter.ini 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2011-03-14 20:17:04 ----A---- C:\WINDOWS\system32\xvidcore.dll 2011-03-14 20:17:03 ----A---- C:\WINDOWS\system32\qt-dx331.dll 2011-03-14 20:17:03 ----A---- C:\WINDOWS\system32\dpl100.dll 2011-03-14 20:17:02 ----A---- C:\WINDOWS\system32\divx.dll 2011-03-14 20:17:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2011-03-14 20:17:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2011-03-14 20:16:58 ----A---- C:\WINDOWS\system32\msvcr71.dll 2011-03-14 20:16:57 ----D---- C:\Program Files\K-Lite Codec Pack 2011-03-14 20:16:23 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2011-03-14 20:15:16 ----HDC---- C:\WINDOWS\ie8 2011-03-14 20:14:41 ----D---- C:\Program Files\MSXML 4.0 2011-03-14 20:14:17 ----N---- C:\WINDOWS\system32\imapi2fs.dll 2011-03-14 20:14:17 ----N---- C:\WINDOWS\system32\imapi2.dll 2011-03-14 20:14:15 ----D---- C:\Program Files\WinRAR 2011-03-14 20:14:12 ----D---- C:\Program Files\Vista Drive Icon 2011-03-14 20:14:10 ----N---- C:\WINDOWS\system32\spmsg.dll 2011-03-14 20:14:09 ----HD---- C:\WINDOWS\$hf_mig$ 2011-03-14 20:14:00 ----RASH---- C:\MSDOS.SYS 2011-03-14 20:14:00 ----RASH---- C:\IO.SYS 2011-03-14 20:14:00 ----A---- C:\WINDOWS\control.ini 2011-03-14 20:14:00 ----A---- C:\CONFIG.SYS 2011-03-14 20:14:00 ----A---- C:\AUTOEXEC.BAT 2011-03-14 20:13:46 ----A---- C:\WINDOWS\OEWABLog.txt 2011-03-14 20:13:41 ----D---- C:\WINDOWS\system32\dllcache 2011-03-14 20:13:41 ----A---- C:\WINDOWS\system32\mapi32.dll 2011-03-14 20:13:02 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2011-03-14 20:12:59 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2011-03-14 20:12:53 ----HD---- C:\Program Files\WindowsUpdate 2011-03-14 20:12:50 ----D---- C:\Program Files\Usługi online 2011-03-14 20:12:35 ----A---- C:\WINDOWS\system32\desktop.ini 2011-03-14 20:12:35 ----A---- C:\WINDOWS\desktop.ini 2011-03-14 20:12:30 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2011-03-14 20:12:29 ----A---- C:\WINDOWS\system32\acctres.dll 2011-03-14 20:12:28 ----D---- C:\Program Files\Common Files\Services 2011-03-14 20:12:26 ----SD---- C:\WINDOWS\Tasks 2011-03-14 20:12:26 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2011-03-14 20:12:25 ----D---- C:\Program Files\Common Files\MSSoap 2011-03-14 20:12:22 ----D---- C:\WINDOWS\system32\Macromed 2011-03-14 20:12:20 ----A---- C:\WINDOWS\system32\wuweb.dll 2011-03-14 20:12:20 ----A---- C:\WINDOWS\system32\wucltui.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wups.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuauserv.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2011-03-14 20:12:19 ----A---- C:\WINDOWS\system32\wuaueng.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuauclt.exe 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\wuapi.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2011-03-14 20:12:18 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2011-03-14 20:12:17 ----A---- C:\WINDOWS\system32\qmgr.dll 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\fltMc.exe 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\fltlib.dll 2011-03-14 20:12:16 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2011-03-14 20:12:15 ----D---- C:\WINDOWS\system32\Restore 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srsvc.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srrstr.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\srclient.dll 2011-03-14 20:12:15 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\msconf.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\mnmdd.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2011-03-14 20:12:14 ----A---- C:\WINDOWS\system32\ils.dll 2011-03-14 20:12:10 ----D---- C:\Program Files\NetMeeting 2011-03-14 20:12:10 ----A---- C:\WINDOWS\system32\msoert2.dll 2011-03-14 20:12:10 ----A---- C:\WINDOWS\system32\msoeacct.dll 2011-03-14 20:12:08 ----A---- C:\WINDOWS\system32\inetres.dll 2011-03-14 20:12:08 ----A---- C:\WINDOWS\system32\inetcomm.dll 2011-03-14 20:12:05 ----D---- C:\Program Files\Outlook Express 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\schedsvc.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\mstinit.exe 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\mstask.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\isign32.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2011-03-14 20:12:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2011-03-14 20:12:04 ----A---- C:\WINDOWS\system32\inetcfg.dll 2011-03-14 20:11:57 ----D---- C:\Program Files\Common Files\System 2011-03-14 20:11:52 ----D---- C:\Program Files\Internet Explorer 2011-03-14 20:11:06 ----D---- C:\Program Files\ComPlus Applications 2011-03-14 20:11:04 ----A---- C:\WINDOWS\vbaddin.ini 2011-03-14 20:11:04 ----A---- C:\WINDOWS\vb.ini 2011-03-14 20:10:59 ----D---- C:\WINDOWS\Registration 2011-03-14 20:09:02 ----D---- C:\Program Files\VistaExperience.org 2011-03-14 20:07:02 ----D---- C:\Program Files\Windows Sidebar 2011-03-14 20:06:55 ----D---- C:\Program Files\Windows Media Connect 2 2011-03-14 20:06:54 ----D---- C:\Program Files\Windows Media Player 2011-03-14 20:06:51 ----D---- C:\Program Files\MSN Gaming Zone 2011-03-14 20:06:51 ----A---- C:\WINDOWS\system32\write.exe 2011-03-14 20:06:47 ----A---- C:\WINDOWS\system32\sndvol32.exe 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\winchat.exe 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\hticons.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avwav.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avtapi.dll 2011-03-14 20:06:46 ----A---- C:\WINDOWS\system32\avmeter.dll 2011-03-14 20:06:40 ----A---- C:\WINDOWS\system32\getuname.dll 2011-03-14 20:06:40 ----A---- C:\WINDOWS\system32\charmap.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\winmine.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\sol.exe 2011-03-14 20:06:39 ----A---- C:\WINDOWS\system32\mshearts.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tslabels.ini 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tskill.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\tscon.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\shadow.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\rwinsta.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\reset.exe 2011-03-14 20:06:38 ----A---- C:\WINDOWS\system32\freecell.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\regini.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\qwinsta.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\qappsrv.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\msg.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\logoff.exe 2011-03-14 20:06:37 ----A---- C:\WINDOWS\system32\cdmodem.dll 2011-03-14 20:06:30 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2011-03-14 20:06:29 ----A---- C:\WINDOWS\system32\mplay32.exe 2011-03-14 20:06:29 ----A---- C:\WINDOWS\system32\hypertrm.dll 2011-03-14 20:06:28 ----D---- C:\Program Files\Windows NT 2011-03-14 20:06:28 ----A---- C:\WINDOWS\system32\mspaint.exe 2011-03-14 20:06:28 ----A---- C:\WINDOWS\system32\clipbrd.exe 2011-03-14 20:06:27 ----A---- C:\WINDOWS\system32\spider.exe 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\tsgqec.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2011-03-14 20:06:26 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\mstscax.dll 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\mstsc.exe 2011-03-14 20:06:25 ----A---- C:\WINDOWS\system32\aaclient.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\termsrv.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\sessmgr.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\remotepg.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdshost.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2011-03-14 20:06:24 ----A---- C:\WINDOWS\system32\rdchost.dll 2011-03-14 20:06:23 ----D---- C:\WINDOWS\system32\MsDtc 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\rdpclip.exe 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\qprocess.exe 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\mtxoci.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\icaapi.dll 2011-03-14 20:06:23 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\xolehlp.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtctm.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtclog.dll 2011-03-14 20:06:22 ----A---- C:\WINDOWS\system32\msdtc.exe 2011-03-14 20:06:21 ----D---- C:\WINDOWS\system32\Com 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\stclient.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxex.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\mtxdm.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\comrepl.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\comaddin.dll 2011-03-14 20:06:21 ----A---- C:\WINDOWS\system32\colbact.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\clbcatex.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrvut.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrvps.dll 2011-03-14 20:06:20 ----A---- C:\WINDOWS\system32\catsrv.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comuid.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comsvcs.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\comsnap.dll 2011-03-14 20:06:19 ----A---- C:\WINDOWS\system32\clbcatq.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\servdeps.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\mmfutil.dll 2011-03-14 20:06:12 ----A---- C:\WINDOWS\system32\licwmi.dll 2011-03-14 20:06:11 ----A---- C:\WINDOWS\system32\cmprops.dll 2011-03-14 20:06:07 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2011-03-14 20:06:07 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys ======List of files/folders modified in the last 1 months====== 2011-03-14 21:02:30 ----A---- C:\WINDOWS\system.ini 2011-03-14 20:13:57 ----A---- C:\WINDOWS\win.ini 2011-03-14 20:13:28 ----ASH---- C:\WINDOWS\fonts\desktop.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-06-29 62208] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-01-10 135096] R1 Hotkey;Hotkey; C:\WINDOWS\system32\drivers\Hotkey.sys [2003-04-28 9867] R1 IDMTDI;IDMTDI; C:\WINDOWS\system32\DRIVERS\idmtdi.sys [2011-01-25 97112] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520] R1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-01-10 61960] R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAud.sys [2007-05-01 630272] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-01-21 6278560] R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-07-24 12160] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-02-07 90880] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-10-23 179896] R3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2005-11-30 474184] S1 mailKmd;mailKmd; C:\WINDOWS\system32\drivers\mailKmd.sys [] S3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2009-10-26 4221952] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-04-25 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-04-25 82944] S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-01-10 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-01-10 267944] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-12-20 363344] R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-01-15 266240] R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-17 118784] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-30 46104] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log]
Tomek01 komentarz 16 marca 2011 komentarz 16 marca 2011 W logach nic szczególnego nie widać. Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Użyj ATF Cleaner, zaznacz trzy pierwsze fajki i empty selected. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i jakby coś wykryły raporty pokaż na forum.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.