Scan result of Farbar Recovery Scan Tool (FRST written by farbar) Version: 07-03-2012 01 Ran by Dell at 07-03-2012 21:29:32 Running from C:\Users\Dell\Downloads Service Pack 1 (X86) OS Language: Polish Attention: Could not load system hive.Bť¤D: Proces nie moľe uzyska† dost©pu do pliku, poniewaľ jest on uľywany przez inny proces. ========================== Registry (Whitelisted) ============= HKLM\...\Winlogon: [Userinit] [x] HKLM\...\Winlogon: [Shell] ================================ Services (Whitelisted) ================== ========================== Drivers (Whitelisted) ============= ========================== NetSvcs (Whitelisted) =========== ============ One Month Created Files and Folders ============== 2012-03-07 21:28 - 2012-03-07 21:29 - 0000000 ____D C:\FRST 2012-03-07 21:28 - 2012-03-07 21:28 - 0863238 ____A C:\Users\Dell\Downloads\FRST.exe 2012-03-07 14:58 - 2012-03-08 03:02 - 0100358 ____A C:\OTL.Txt 2012-03-07 07:35 - 2012-03-07 07:35 - 0000000 ____D C:\_OTL 2012-03-07 07:30 - 2012-03-07 07:30 - 0584704 ____A (OldTimer Tools) C:\Users\Dell\Downloads\OTL.exe 2012-03-07 07:14 - 2012-03-07 07:14 - 0007605 ____A C:\Users\Dell\AppData\Local\Resmon.ResmonCfg 2012-03-07 00:48 - 2012-03-07 00:48 - 0000000 ____D C:\Windows\System32\Lang 2012-03-07 00:48 - 2009-07-28 15:01 - 0398848 ____A (Intel(R) Corporation) C:\Windows\System32\TVWizudlg.exe 2012-03-07 00:48 - 2009-07-28 15:00 - 0140288 ____A () C:\Windows\System32\igfxtvcx.dll 2012-03-07 00:48 - 2009-07-28 14:57 - 0121232 ____A C:\Windows\System32\IScrNB.bmp 2012-03-07 00:45 - 2012-03-07 00:45 - 0000000 ____D C:\Windows\System32\x64 2012-03-07 00:45 - 2009-07-28 22:37 - 0997912 ____A (Intel Corporation) C:\Windows\System32\igxpun.exe 2012-03-06 23:12 - 2012-03-06 23:12 - 0000000 ____D C:\Windows\System32\SPReview 2012-03-06 23:10 - 2012-03-06 23:10 - 0000000 ____D C:\Windows\System32\EventProviders 2012-03-06 22:57 - 2012-03-06 22:57 - 0000000 ____D C:\Program Files\Common Files\Java 2012-03-06 22:54 - 2012-03-06 22:54 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaws.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaw.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\java.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0000000 ____D C:\Program Files\Java 2012-03-06 21:16 - 2012-03-06 21:16 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_LUsbFilt_01005.Wdf 2012-03-06 18:26 - 2012-03-06 18:26 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{8827097c-67b1-11e1-8e76-876f68bf8db1}.TxR.blf 2012-03-06 15:48 - 2012-03-06 15:48 - 0000000 ____D C:\Users\Dell\AppData\Local\COMODO 2012-03-06 14:33 - 2012-03-06 14:33 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0001071 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\Users\All Users\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\ProgramData\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2012-03-06 14:32 - 2011-12-10 15:24 - 0020464 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2012-03-05 23:19 - 2012-03-06 22:12 - 1679890 ____A C:\Windows\ntbtlog.txt 2012-03-05 16:53 - 2012-03-06 10:35 - 0000000 ____D C:\Users\All Users\CPA_VA 2012-03-05 16:53 - 2012-03-06 10:35 - 0000000 ____D C:\ProgramData\CPA_VA 2012-03-05 16:52 - 2012-03-05 16:52 - 0000000 ___HD C:\VritualRoot 2012-03-05 16:52 - 2012-03-05 16:52 - 0000000 ____D C:\Users\Public\Documents\COMODO 2012-03-05 15:41 - 2012-03-07 21:26 - 1474832 ____A C:\Windows\System32\Drivers\sfi.dat 2012-03-05 15:38 - 2012-03-05 15:41 - 0000000 ____D C:\Users\All Users\Comodo 2012-03-05 15:38 - 2012-03-05 15:41 - 0000000 ____D C:\ProgramData\Comodo 2012-03-05 15:38 - 2012-03-05 15:38 - 0001846 ____A C:\Users\Public\Desktop\COMODO Antivirus.lnk 2012-03-05 15:38 - 2012-03-05 15:38 - 0001202 ____A C:\Users\Public\Desktop\COMODO GeekBuddy.lnk 2012-03-05 15:37 - 2012-03-06 19:49 - 0000000 ____D C:\Program Files\Comodo 2012-03-05 15:37 - 2012-03-05 15:37 - 1700352 ____A (Microsoft Corporation) C:\Windows\System32\gdiplus.dll 2012-03-05 15:37 - 2012-03-05 15:37 - 1060864 ____A (Microsoft Corporation) C:\Windows\System32\mfc71.dll 2012-03-05 15:37 - 2012-03-05 15:37 - 0001072 ____A C:\Users\Public\Desktop\Comodo Dragon.lnk 2012-03-04 23:57 - 2012-03-04 23:57 - 0179716 ____A C:\Windows\System32\c_72651.nls 2012-03-04 22:50 - 2012-03-04 22:50 - 0000000 ____D C:\Users\Dell\Desktop\nowemsc 2012-03-02 13:50 - 2012-03-02 13:50 - 0009180 ____A C:\Users\Dell\Desktop\ustalone platnościgg.xlsx 2012-03-01 19:19 - 2012-03-01 19:19 - 0571295 ____A C:\Users\Dell\Desktop\PotwierdzenieOperacji_20120301_191851.pdf 2012-03-01 19:18 - 2012-03-01 19:18 - 0571295 ____A C:\Users\Dell\Downloads\PotwierdzenieOperacji_20120301_191834.pdf 2012-02-22 22:46 - 2012-02-22 23:59 - 0009055 ____A C:\Users\Dell\Desktop\Zes.xlsx 2012-02-22 12:25 - 2012-02-22 12:26 - 0000000 ____D C:\Users\Dell\Desktop\m6 2012-02-21 09:46 - 2012-02-21 09:46 - 0023387 ____N C:\Users\Dell\Desktop\porozumienie -EARTHWORKS -do akceptacji.docx 2012-02-20 13:02 - 2012-02-20 13:02 - 0021700 ____N C:\Users\Dell\Desktop\Umowa - pracownicy fizyczni Inter stal.docx 2012-02-17 15:44 - 2012-02-17 15:44 - 0063166 ____N C:\Users\Dell\Desktop\płatności 15 02 2012.xlsx 2012-02-15 23:21 - 2011-12-14 04:30 - 12282368 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2012-02-15 23:21 - 2011-12-14 04:10 - 9705472 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2012-02-15 23:21 - 2011-12-14 04:04 - 1798656 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2012-02-15 23:21 - 2011-12-14 03:57 - 1127424 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2012-02-15 23:21 - 2011-12-14 03:57 - 1103360 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2012-02-15 23:21 - 2011-12-14 03:56 - 1427456 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2012-02-15 23:21 - 2011-12-14 03:55 - 0231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2012-02-15 23:21 - 2011-12-14 03:54 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2012-02-15 23:21 - 2011-12-14 03:53 - 0716800 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2012-02-15 23:21 - 2011-12-14 03:52 - 1792000 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2012-02-15 23:21 - 2011-12-14 03:50 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2012-02-15 23:21 - 2011-12-14 03:50 - 0072704 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2012-02-15 23:21 - 2011-12-14 03:47 - 0176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2012-02-15 20:17 - 2012-02-15 20:17 - 0000000 ____D C:\Users\Dell\Desktop\fent 2012-02-15 19:31 - 2012-01-14 04:35 - 2343424 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2012-02-15 19:31 - 2012-01-04 09:59 - 12872704 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll 2012-02-15 19:31 - 2012-01-04 09:58 - 0442880 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll 2012-02-15 19:31 - 2011-12-30 06:27 - 0478720 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl 2012-02-15 19:31 - 2011-12-16 08:52 - 0690688 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll 2012-02-13 13:04 - 2012-02-13 13:04 - 0070160 ____N C:\Users\Dell\Desktop\debica skarpowanie.pdf 2012-02-10 11:51 - 2012-02-10 11:52 - 0000000 ____D C:\Users\Dell\Desktop\projekt ============ 3 Months Modified Files and Folders =============== 2012-03-08 03:02 - 2012-03-07 14:58 - 0100358 ____A C:\OTL.Txt 2012-03-07 21:29 - 2012-03-07 21:28 - 0000000 ____D C:\FRST 2012-03-07 21:28 - 2012-03-07 21:28 - 0863238 ____A C:\Users\Dell\Downloads\FRST.exe 2012-03-07 21:26 - 2012-03-05 15:41 - 1474832 ____A C:\Windows\System32\Drivers\sfi.dat 2012-03-07 21:19 - 2011-11-15 22:09 - 0001032 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2012-03-07 21:18 - 2011-04-21 12:25 - 1326764 ____A C:\Windows\WindowsUpdate.log 2012-03-07 21:18 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\Microsoft.NET 2012-03-07 21:13 - 2009-07-14 05:34 - 0014448 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2012-03-07 21:13 - 2009-07-14 05:34 - 0014448 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2012-03-07 21:11 - 2011-04-21 22:20 - 0700012 ____A C:\Windows\System32\perfh015.dat 2012-03-07 21:11 - 2011-04-21 22:20 - 0135990 ____A C:\Windows\System32\perfc015.dat 2012-03-07 21:11 - 2011-04-21 12:31 - 1556224 ____A C:\Windows\System32\PerfStringBackup.INI 2012-03-07 21:07 - 2011-12-29 09:55 - 0000000 ____D C:\Users\Dell\AppData\Local\Htc 2012-03-07 21:07 - 2011-11-15 22:09 - 0001028 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2012-03-07 21:06 - 2011-10-23 12:17 - 0055304 ____A C:\Windows\setupact.log 2012-03-07 21:06 - 2011-04-21 12:22 - 2780745728 __ASH C:\hiberfil.sys 2012-03-07 21:06 - 2009-07-14 05:53 - 0000006 ___AH C:\Windows\Tasks\SA.DAT 2012-03-07 14:55 - 2011-04-21 12:34 - 0000000 ____D C:\users\Dell 2012-03-07 07:35 - 2012-03-07 07:35 - 0000000 ____D C:\_OTL 2012-03-07 07:30 - 2012-03-07 07:30 - 0584704 ____A (OldTimer Tools) C:\Users\Dell\Downloads\OTL.exe 2012-03-07 07:14 - 2012-03-07 07:14 - 0007605 ____A C:\Users\Dell\AppData\Local\Resmon.ResmonCfg 2012-03-07 00:48 - 2012-03-07 00:48 - 0000000 ____D C:\Windows\System32\Lang 2012-03-07 00:48 - 2011-10-23 10:21 - 0000000 ____D C:\Program Files\Intel 2012-03-07 00:45 - 2012-03-07 00:45 - 0000000 ____D C:\Windows\System32\x64 2012-03-07 00:44 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\System32\DriverStore 2012-03-07 00:38 - 2009-07-14 05:33 - 0412056 ____A C:\Windows\System32\FNTCACHE.DAT 2012-03-07 00:29 - 2011-04-21 12:34 - 0000174 ___SH C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini 2012-03-07 00:26 - 2011-10-24 13:19 - 0008162 ____A C:\Windows\PFRO.log 2012-03-06 23:56 - 2009-07-14 08:50 - 0000000 ____D C:\Program Files\Windows Journal 2012-03-06 23:56 - 2009-07-14 05:52 - 0000000 ____D C:\Program Files\Windows Sidebar 2012-03-06 23:56 - 2009-07-14 05:52 - 0000000 ____D C:\Program Files\Windows Portable Devices 2012-03-06 23:56 - 2009-07-14 05:52 - 0000000 ____D C:\Program Files\Windows Photo Viewer 2012-03-06 23:56 - 2009-07-14 05:52 - 0000000 ____D C:\Program Files\Windows Defender 2012-03-06 23:56 - 2009-07-14 05:52 - 0000000 ____D C:\Program Files\DVD Maker 2012-03-06 23:56 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\System32\AdvancedInstallers 2012-03-06 23:56 - 2009-07-14 03:37 - 0000000 ____D C:\Program Files\Common Files\System 2012-03-06 23:55 - 2011-04-21 22:20 - 0000000 ____D C:\Windows\System32\Drivers\pl-PL 2012-03-06 23:55 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\System32\pl-PL 2012-03-06 23:32 - 2009-07-14 03:05 - 0152576 ____A (Microsoft Corporation) C:\Windows\System32\msclmd.dll 2012-03-06 23:12 - 2012-03-06 23:12 - 0000000 ____D C:\Windows\System32\SPReview 2012-03-06 23:10 - 2012-03-06 23:10 - 0000000 ____D C:\Windows\System32\EventProviders 2012-03-06 23:10 - 2011-10-23 11:30 - 0000000 ____D C:\Program Files\Microsoft Office 2012-03-06 23:09 - 2011-10-23 11:30 - 0000000 ____D C:\Users\All Users\Microsoft Help 2012-03-06 23:09 - 2011-10-23 11:30 - 0000000 ____D C:\ProgramData\Microsoft Help 2012-03-06 23:06 - 2009-07-14 03:37 - 0000000 ____D C:\Program Files\Common Files\microsoft shared 2012-03-06 23:01 - 2009-07-14 03:04 - 0000478 ____A C:\Windows\win.ini 2012-03-06 22:57 - 2012-03-06 22:57 - 0000000 ____D C:\Program Files\Common Files\Java 2012-03-06 22:54 - 2012-03-06 22:54 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaws.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaw.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\java.exe 2012-03-06 22:54 - 2012-03-06 22:54 - 0000000 ____D C:\Program Files\Java 2012-03-06 22:54 - 2011-11-30 09:32 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\System32\deployJava1.dll 2012-03-06 22:12 - 2012-03-05 23:19 - 1679890 ____A C:\Windows\ntbtlog.txt 2012-03-06 21:16 - 2012-03-06 21:16 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_LUsbFilt_01005.Wdf 2012-03-06 21:16 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\System32\config\TxR 2012-03-06 19:49 - 2012-03-05 15:37 - 0000000 ____D C:\Program Files\Comodo 2012-03-06 18:26 - 2012-03-06 18:26 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{8827097c-67b1-11e1-8e76-876f68bf8db1}.TxR.blf 2012-03-06 18:26 - 2009-07-14 05:53 - 0032604 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2012-03-06 15:48 - 2012-03-06 15:48 - 0000000 ____D C:\Users\Dell\AppData\Local\COMODO 2012-03-06 14:33 - 2012-03-06 14:33 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0001071 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\Users\All Users\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\ProgramData\Malwarebytes 2012-03-06 14:32 - 2012-03-06 14:32 - 0000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2012-03-06 10:35 - 2012-03-05 16:53 - 0000000 ____D C:\Users\All Users\CPA_VA 2012-03-06 10:35 - 2012-03-05 16:53 - 0000000 ____D C:\ProgramData\CPA_VA 2012-03-05 16:52 - 2012-03-05 16:52 - 0000000 ___HD C:\VritualRoot 2012-03-05 16:52 - 2012-03-05 16:52 - 0000000 ____D C:\Users\Public\Documents\COMODO 2012-03-05 15:41 - 2012-03-05 15:38 - 0000000 ____D C:\Users\All Users\Comodo 2012-03-05 15:41 - 2012-03-05 15:38 - 0000000 ____D C:\ProgramData\Comodo 2012-03-05 15:38 - 2012-03-05 15:38 - 0001846 ____A C:\Users\Public\Desktop\COMODO Antivirus.lnk 2012-03-05 15:38 - 2012-03-05 15:38 - 0001202 ____A C:\Users\Public\Desktop\COMODO GeekBuddy.lnk 2012-03-05 15:37 - 2012-03-05 15:37 - 1700352 ____A (Microsoft Corporation) C:\Windows\System32\gdiplus.dll 2012-03-05 15:37 - 2012-03-05 15:37 - 1060864 ____A (Microsoft Corporation) C:\Windows\System32\mfc71.dll 2012-03-05 15:37 - 2012-03-05 15:37 - 0001072 ____A C:\Users\Public\Desktop\Comodo Dragon.lnk 2012-03-04 23:57 - 2012-03-04 23:57 - 0179716 ____A C:\Windows\System32\c_72651.nls 2012-03-04 23:57 - 2009-07-14 03:04 - 0000761 _RASH C:\Windows\System32\Drivers\etc\hosts 2012-03-04 22:50 - 2012-03-04 22:50 - 0000000 ____D C:\Users\Dell\Desktop\nowemsc 2012-03-02 13:50 - 2012-03-02 13:50 - 0009180 ____A C:\Users\Dell\Desktop\ustalone platnościgg.xlsx 2012-03-02 00:16 - 2011-11-11 13:10 - 0000000 ____D C:\Program Files\Mozilla Firefox 2012-03-01 19:19 - 2012-03-01 19:19 - 0571295 ____A C:\Users\Dell\Desktop\PotwierdzenieOperacji_20120301_191851.pdf 2012-03-01 19:18 - 2012-03-01 19:18 - 0571295 ____A C:\Users\Dell\Downloads\PotwierdzenieOperacji_20120301_191834.pdf 2012-02-28 10:00 - 2011-10-28 15:50 - 0045024 ___AH C:\Users\Dell\drlog.txt 2012-02-28 10:00 - 2011-10-28 15:50 - 0000284 ____A C:\Windows\Tasks\Synology Data Replicator 3-Dell-Komputer-Dell.job 2012-02-22 23:59 - 2012-02-22 22:46 - 0009055 ____A C:\Users\Dell\Desktop\Zes.xlsx 2012-02-22 12:26 - 2012-02-22 12:25 - 0000000 ____D C:\Users\Dell\Desktop\m6 2012-02-21 09:46 - 2012-02-21 09:46 - 0023387 ____N C:\Users\Dell\Desktop\porozumienie -EARTHWORKS -do akceptacji.docx 2012-02-20 13:02 - 2012-02-20 13:02 - 0021700 ____N C:\Users\Dell\Desktop\Umowa - pracownicy fizyczni Inter stal.docx 2012-02-17 15:44 - 2012-02-17 15:44 - 0063166 ____N C:\Users\Dell\Desktop\płatności 15 02 2012.xlsx 2012-02-17 15:12 - 2012-01-19 16:39 - 0012762 ____N C:\Users\Dell\Desktop\Zeszyt1.xlsx 2012-02-16 09:36 - 2011-10-23 10:22 - 52550552 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2012-02-15 20:17 - 2012-02-15 20:17 - 0000000 ____D C:\Users\Dell\Desktop\fent 2012-02-13 13:04 - 2012-02-13 13:04 - 0070160 ____N C:\Users\Dell\Desktop\debica skarpowanie.pdf 2012-02-10 11:52 - 2012-02-10 11:51 - 0000000 ____D C:\Users\Dell\Desktop\projekt 2012-02-06 13:10 - 2011-12-29 10:15 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Outlook 2012-02-02 19:22 - 2012-02-02 19:22 - 0000000 ____D C:\Users\Dell\Desktop\projekt 2.02.2012 2012-02-02 14:14 - 2012-02-02 14:14 - 0009338 ____N C:\Users\Dell\Desktop\kalkulacja recykler.xlsx 2012-02-02 10:57 - 2012-02-02 10:57 - 0067164 ____N C:\Users\Dell\Desktop\płatności 02.02 2012.xlsx 2012-01-31 16:03 - 2012-01-31 16:03 - 0012424 ____N C:\Users\Dell\Desktop\Kopia kalkuacja bdynkow sosnowice 31.01.xlsx 2012-01-31 13:44 - 2011-10-23 10:18 - 0237072 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe 2012-01-30 14:16 - 2012-01-30 14:16 - 0030760 ____N C:\Users\Dell\Desktop\Malinowski.xlsx 2012-01-24 16:57 - 2012-01-24 16:45 - 0009969 ____N C:\Users\Dell\Desktop\polb ew.docx 2012-01-24 00:24 - 2009-07-14 08:49 - 0000000 ___RD C:\Users\Public\Recorded TV 2012-01-24 00:00 - 2012-01-24 00:00 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Real 2012-01-23 22:51 - 2012-01-23 22:51 - 0029696 ____N C:\Users\Dell\Desktop\szulski 23.01.2012.doc 2012-01-17 22:52 - 2012-01-17 22:52 - 0000000 ____D C:\84c33535be98c49bfadf4d03f0 2012-01-17 21:00 - 2012-01-17 21:00 - 0491816 ____A (COMODO) C:\Windows\System32\Drivers\cmdGuard.sys 2012-01-17 20:01 - 2011-10-23 10:57 - 0000000 ____D C:\Program Files\Common Files\Adobe 2012-01-16 20:41 - 2011-12-29 09:54 - 0000000 ____D C:\Users\Dell\AppData\Roaming\HTC 2012-01-16 14:35 - 2012-01-16 14:35 - 0056002 ____N C:\Users\Dell\Desktop\Umowa o roboty budowlane dRS.docx 2012-01-16 14:35 - 2012-01-16 14:35 - 0022144 ____N C:\Users\Dell\Desktop\Zał nr 3 - Harmonogram prac.docx 2012-01-14 04:35 - 2012-02-15 19:31 - 2343424 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2012-01-11 16:42 - 2012-01-11 16:41 - 0000000 ____D C:\38d095349ac5214161 2012-01-11 16:40 - 2012-01-11 16:40 - 0065536 __ASH C:\Windows\System32\config\COMPONENTS{49b32c2f-31fc-11e1-849b-0024e8c8d14b}.TxR.blf 2012-01-11 12:34 - 2012-01-11 12:26 - 0038545 ____N C:\Users\Dell\Desktop\Umowa o roboty budowlane RS wykop 11.01.2012.docx 2012-01-10 15:36 - 2011-10-23 11:28 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Skype 2012-01-09 14:18 - 2012-01-09 13:52 - 0011028 ____N C:\Users\Dell\Desktop\kalkuacja bdynkow sosnowice.xlsx 2012-01-09 11:02 - 2012-01-09 11:02 - 0078904 ____N C:\Users\Dell\Desktop\płatności 05 01 2012-wstepne.xlsx 2012-01-04 11:15 - 2012-01-04 11:15 - 0013496 ____N C:\Users\Dell\Desktop\zestawienie.xlsx 2012-01-04 09:59 - 2012-02-15 19:31 - 12872704 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll 2012-01-04 09:58 - 2012-02-15 19:31 - 0442880 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll 2011-12-30 18:38 - 2011-12-30 18:37 - 0259918 ____A C:\Windows\msxml4-KB973685-enu.LOG 2011-12-30 06:27 - 2012-02-15 19:31 - 0478720 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl 2011-12-29 22:53 - 2011-12-29 22:53 - 0000000 ____D C:\Users\Dell\Documents\My Photos 2011-12-29 22:53 - 2011-12-29 22:53 - 0000000 ____D C:\Users\Dell\Documents\My Documents 2011-12-29 22:29 - 2011-12-29 22:29 - 0000000 ___RD C:\Program Files\Skype 2011-12-29 22:29 - 2011-10-23 11:27 - 0002505 ____A C:\Users\Public\Desktop\Skype.lnk 2011-12-29 22:29 - 2011-10-23 11:27 - 0000000 ____D C:\Users\All Users\Skype 2011-12-29 22:29 - 2011-10-23 11:27 - 0000000 ____D C:\ProgramData\Skype 2011-12-29 22:27 - 2011-12-29 22:27 - 0980104 ____A (Skype Technologies S.A.) C:\Users\Dell\Downloads\SkypeSetup.exe 2011-12-29 22:09 - 2011-12-29 22:09 - 0000000 ____D C:\Users\Dell\Desktop\kontakty 2011-12-29 11:20 - 2011-12-29 11:20 - 0004991 ____N C:\Users\Dell\Desktop\generatePDF.pdf 2011-12-29 10:04 - 2011-12-29 10:04 - 0001040 ____A C:\Users\Public\Desktop\HTC Sync.lnk 2011-12-29 10:04 - 2011-12-29 09:53 - 0000000 ____D C:\Users\Dell\AppData\Local\Downloaded Installations 2011-12-29 10:02 - 2011-11-17 19:38 - 0041472 ____A C:\Windows\DPINST.LOG 2011-12-29 10:01 - 2011-12-29 09:51 - 0000000 ____D C:\Program Files\Common Files\Adobe AIR 2011-12-29 09:56 - 2011-12-29 09:56 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_ANDROIDUSB_01007.Wdf 2011-12-29 09:55 - 2011-12-29 09:55 - 0000000 ____D C:\Users\Dell\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1 2011-12-29 09:54 - 2011-12-29 09:51 - 0000000 ____D C:\Program Files\HTC 2011-12-29 09:52 - 2011-12-29 09:52 - 0000000 ____D C:\Program Files\Spirent Communications 2011-12-29 09:51 - 2011-12-29 09:51 - 0000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2011-12-29 09:51 - 2011-12-29 09:51 - 0000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2011-12-29 09:51 - 2011-10-23 11:36 - 0000000 ____D C:\Users\Dell\AppData\Local\Adobe 2011-12-29 09:51 - 2011-10-23 10:57 - 0000000 ____D C:\Program Files\Adobe 2011-12-29 09:51 - 2011-10-23 10:56 - 0000000 ____D C:\Users\All Users\Adobe 2011-12-29 09:51 - 2011-10-23 10:56 - 0000000 ____D C:\ProgramData\Adobe 2011-12-29 09:51 - 2011-10-23 10:23 - 0000000 ____D C:\Users\Dell\AppData\Roaming\Adobe 2011-12-29 09:50 - 2011-12-29 09:50 - 0000000 ____D C:\Program Files\MSXML 4.0 2011-12-29 09:49 - 2011-12-29 09:49 - 153325832 ____N (HTC Corporation ) C:\Users\Dell\Desktop\setup_3.0.5579.exe 2011-12-27 19:25 - 2011-12-27 19:25 - 0000000 ____D C:\Users\Dell\Desktop\filmy austria 2011-12-27 19:22 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\System32\NDF 2011-12-27 00:53 - 2011-12-27 00:51 - 0000000 ____D C:\Users\Dell\Desktop\msc 2011-12-26 10:18 - 2011-12-26 10:18 - 0014194 ____N C:\Users\Dell\Desktop\1 Viva Diskotheken GmbH.docx 2011-12-23 00:49 - 2011-12-20 22:52 - 0010410 ____N C:\Users\Dell\Desktop\Główny AP w kuchni.docx 2011-12-21 11:48 - 2011-12-21 11:48 - 0013707 ____N C:\Users\Dell\Desktop\zestawienie płatności EQ.xlsx 2011-12-20 09:28 - 2009-07-14 03:37 - 0000000 ____D C:\Windows\rescache 2011-12-19 18:59 - 2011-12-19 18:59 - 0082400 ____A (COMODO) C:\Windows\System32\Drivers\inspect.sys 2011-12-19 18:59 - 2011-12-19 18:59 - 0039640 ____A (COMODO) C:\Windows\System32\Drivers\cmdhlp.sys 2011-12-19 18:59 - 2011-12-19 18:59 - 0019600 ____A (COMODO) C:\Windows\System32\Drivers\cmderd.sys 2011-12-19 18:58 - 2011-12-19 18:58 - 0301224 ____A (COMODO) C:\Windows\System32\guard32.dll 2011-12-19 18:58 - 2011-12-19 18:58 - 0033984 ____A (COMODO) C:\Windows\System32\cmdcsr.dll 2011-12-19 18:10 - 2011-12-19 18:08 - 0000000 ____D C:\Users\Dell\Desktop\prezentacja 2011-12-16 08:52 - 2012-02-15 19:31 - 0690688 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll 2011-12-15 13:35 - 2011-12-15 13:30 - 0015582 ____N C:\Users\Dell\Desktop\2011 12 15 MARR - R Szulski.docx 2011-12-14 22:44 - 2011-12-14 11:58 - 0000000 ____D C:\Users\Dell\Desktop\Nowy folder (2) 2011-12-14 04:30 - 2012-02-15 23:21 - 12282368 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2011-12-14 04:10 - 2012-02-15 23:21 - 9705472 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2011-12-14 04:04 - 2012-02-15 23:21 - 1798656 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2011-12-14 03:57 - 2012-02-15 23:21 - 1127424 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2011-12-14 03:57 - 2012-02-15 23:21 - 1103360 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2011-12-14 03:56 - 2012-02-15 23:21 - 1427456 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2011-12-14 03:55 - 2012-02-15 23:21 - 0231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2011-12-14 03:54 - 2012-02-15 23:21 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2011-12-14 03:53 - 2012-02-15 23:21 - 0716800 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2011-12-14 03:52 - 2012-02-15 23:21 - 1792000 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2011-12-14 03:50 - 2012-02-15 23:21 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2011-12-14 03:50 - 2012-02-15 23:21 - 0072704 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2011-12-14 03:47 - 2012-02-15 23:21 - 0176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2011-12-12 23:02 - 2011-12-12 23:01 - 0204952 ____A C:\Windows\Minidump\121211-19328-01.dmp 2011-12-12 23:01 - 2011-11-03 10:41 - 315082510 ____A C:\Windows\MEMORY.DMP 2011-12-12 23:01 - 2011-11-03 10:41 - 0000000 ____D C:\Windows\Minidump 2011-12-10 15:24 - 2012-03-06 14:32 - 0020464 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys ========================= Known DLLs (Whitelisted) ============ ========================= Bamital & volsnap Check ============ C:\Windows\explorer.exe [2011-10-23 10:14] - [2011-02-25 06:30] - 2616320 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ========================= Memory info ====================== Percentage of memory in use: 28% Total physical RAM: 3535.9 MB Available physical RAM: 2519.53 MB Total Pagefile: 7070.09 MB Available Pagefile: 5791.66 MB Total Virtual: 2047.88 MB Available Virtual: 1948.33 MB ======================= Partitions ========================= 1 Drive c: () (Fixed) (Total:97.56 GB) (Free:40.08 GB) NTFS 2 Drive e: (Nowy) (Fixed) (Total:21.58 GB) (Free:3.83 GB) NTFS Nr dysku Stan Rozmiar Wolne Dyn GPT -------- ------------- ------- ------- --- --- Dysk 0 Online 119 GB 1024 KB Trwa opuszczanie programu DiskPart... ========================================================== Last Boot: 2012-02-29 10:02 ======================= End Of Log ==========================