OTL logfile created on: 2005-06-16 20:56:25 - Run 1 OTL by OldTimer - Version 3.2.16.0 Folder = C:\Documents and Settings\Fazi\Moje dokumenty\Pobieranie Windows XP Professional Edition (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2600.0000) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 510,00 Mb Total Physical Memory | 353,00 Mb Available Physical Memory | 69,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 74,00% Paging File free Paging file location(s): c:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 12,00 Gb Total Space | 1,18 Gb Free Space | 9,81% Space Free | Partition Type: NTFS Drive D: | 64,68 Gb Total Space | 64,04 Gb Free Space | 99,00% Space Free | Partition Type: NTFS Computer Name: MKS-27A134D8C2F | User Name: Fazi | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-06-28 23:57:18 | 002,837,864 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010-06-28 23:57:15 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010-04-15 15:05:35 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-01-15 14:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe PRC - [2009-10-28 14:44:08 | 011,539,048 | ---- | M] (GG Network S.A.) -- C:\Program Files\Nowe Gadu-Gadu\gg.exe PRC - [2009-10-28 13:43:06 | 000,077,824 | ---- | M] () -- C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe PRC - [2009-02-10 17:30:02 | 000,364,544 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Connectivity\corecom\CoreCom.exe PRC - [2008-06-20 13:11:04 | 000,028,672 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Connectivity\corecom\OraConfigRecover.exe PRC - [2008-06-20 13:08:24 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\Program Files\Common Files\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe PRC - [2008-06-20 13:08:08 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe PRC - [2008-06-10 12:14:42 | 000,147,456 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Systray\SystrayApp.exe PRC - [2008-06-10 12:14:14 | 000,602,864 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Launcher\Launcher.exe PRC - [2008-06-10 12:11:34 | 000,712,704 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Connectivity\ConnectivityManager.exe PRC - [2008-06-10 12:11:04 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\Program Files\Common Files\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe PRC - [2007-04-16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe PRC - [2005-06-16 20:52:31 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fazi\Moje dokumenty\Pobieranie\OTL_3.2.16.0(dobreprogramy.pl).exe PRC - [2005-01-21 19:35:57 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2001-10-26 19:29:52 | 001,002,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2008-06-10 12:12:26 | 000,006,144 | ---- | M] (France Telecom SA) -- C:\Program Files\Livebox\Launcher\Inactivity.dll MOD - [2005-06-16 20:52:31 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fazi\Moje dokumenty\Pobieranie\OTL_3.2.16.0(dobreprogramy.pl).exe MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll MOD - [2003-02-21 14:42:22 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCR71.dll MOD - [2001-10-26 19:29:10 | 000,106,547 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - [2010-09-27 12:31:36 | 000,431,432 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service) SRV - [2010-06-28 23:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010-06-28 23:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010-06-28 23:57:15 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2010-04-15 15:05:35 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2010-04-15 15:05:35 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2010-01-15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2008-06-20 13:08:08 | 000,065,536 | ---- | M] (France Telecom SA) [Auto | Running] -- C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC) SRV - [2001-10-26 19:29:36 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\mspmspsv.dll -- (WmdmPmSp) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-06-28 23:37:52 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-06-28 23:37:30 | 000,165,456 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010-06-28 23:33:13 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-06-28 23:32:45 | 000,100,176 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-06-28 23:32:33 | 000,017,744 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-06-28 23:32:16 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2010-04-15 15:05:58 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86) DRV - [2008-09-24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2006-03-01 20:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2005-01-21 19:36:09 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX) DRV - [2005-01-21 19:36:07 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2004-08-04 02:35:04 | 000,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2003-09-23 12:38:34 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2001-08-17 21:20:16 | 000,035,200 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ac97via.sys -- (VIAudio) Kontroler VIA AC'97 Audio (WDM) DRV - [2001-08-17 20:12:42 | 000,023,070 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Livebox\SearchURLHook\SearchPageURL.dll () IE - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\..\URLSearchHook: {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\tbBaby.dll File not found IE - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search" FF - prefs.js..browser.search.defaulturl: "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=14542" FF - prefs.js..browser.search.order.1: "Search the web (Babylon)" FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search" FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/home?AF=14542" FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.825 FF - prefs.js..extensions.enabledItems: avg@igeared:4.504.019.003 FF - prefs.js..extensions.enabledItems: ffxtlbr@Facemoods.com:1.1.0 FF - prefs.js..extensions.enabledItems: {ce18769b-c7fa-42d2-860d-17c4662c70ad}:2.7.2.0 FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=adbartrp&AF=14542&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2005-01-21 22:33:02 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2005-05-25 14:39:46 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2005-04-19 23:37:01 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2005-04-16 14:34:50 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-03-11 20:57:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Mozilla\Extensions [2005-04-13 20:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Mozilla\Firefox\Profiles\enta2s8e.default\extensions [2005-04-13 19:59:14 | 000,000,000 | ---D | M] (Babylon-English Toolbar) -- C:\Documents and Settings\Fazi\Dane aplikacji\Mozilla\Firefox\Profiles\enta2s8e.default\extensions\{ce18769b-c7fa-42d2-860d-17c4662c70ad} [2005-04-13 19:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Mozilla\Firefox\Profiles\enta2s8e.default\extensions\ffxtlbr@Facemoods.com [2005-04-15 19:35:41 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.8.1\bh\facemoods.dll (facemoods.com BHO) O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O2 - BHO: (Babylon-English Toolbar) - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\tbBaby.dll File not found O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Fazi\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll File not found O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (Babylon-English Toolbar) - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - C:\Program Files\Babylon-English\tbBaby.dll File not found O3 - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe File not found O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoodssrv.exe (facemoods.com) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [ORAHSSSessionManager] C:\Program Files\Livebox\SessionManager\SessionManager.exe (France Telecom SA) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-1614895754-2025429265-839522115-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1614895754-2025429265-839522115-1003..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1614895754-2025429265-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\Web\related.htm () O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\Web\related.htm () O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0 O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll () O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-10 20:58:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-05-06 16:44:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Gadu-Gadu [2010-05-06 16:42:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Gadu-Gadu [2010-04-25 22:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Pulpit\muza [2010-04-25 13:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia Auto [2010-04-24 18:19:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-04-24 18:19:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\OpenFM [2010-04-17 10:50:11 | 000,000,000 | ---D | C] -- C:\Program Files\PokerStars [2010-04-15 22:56:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\skypePM [2010-04-15 22:51:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Skype [2010-04-15 22:51:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-04-15 22:51:13 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-04-15 22:50:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-04-15 15:06:11 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010-04-15 15:06:10 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010-04-15 15:05:58 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-04-15 15:05:57 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010-04-15 15:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg [2010-04-15 15:05:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar [2010-04-15 15:05:34 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-04-15 15:05:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9 [2010-04-14 21:44:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Pulpit\Downloads [2010-04-14 21:22:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Temp [2010-04-14 21:21:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Google [2010-04-10 16:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2010-04-06 15:56:21 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2010-03-19 23:34:52 | 000,000,000 | ---D | C] -- C:\Program Files\Asprate [2010-03-19 23:33:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\WinRAR [2010-03-19 23:32:24 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-03-18 17:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-03-15 19:56:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-03-15 19:02:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-03-15 18:29:31 | 000,035,200 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\ac97via.sys [2010-03-15 16:11:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474 [2010-03-14 10:18:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak [2010-03-14 00:41:18 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010-03-13 17:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\McAfee [2010-03-13 00:22:49 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010-03-13 00:22:49 | 000,019,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010-03-13 00:22:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-03-13 00:22:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-03-12 22:29:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010-03-12 22:11:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-03-12 17:31:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\cache [2010-03-12 17:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Pulpit\Nowy folder [2010-03-12 17:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee [2010-03-12 17:26:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee Security Scan [2010-03-12 17:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan [2010-03-12 17:17:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Adobe [2010-03-12 17:17:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Adobe [2010-03-12 17:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-03-12 17:07:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-03-12 17:07:49 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-03-12 16:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Nowe Gadu-Gadu [2010-03-11 21:10:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Moje dokumenty\Pobieranie [2010-03-11 20:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-03-11 20:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Mozilla [2010-03-11 20:51:53 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Fazi\UserData [2010-03-11 20:51:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Macromedia [2010-03-11 09:38:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-03-11 09:34:05 | 000,065,536 | ---- | C] (France Telecom SA) -- C:\WINDOWS\System32\Autodial2000.dll [2010-03-11 09:33:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\France Telecom [2010-03-10 22:37:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010-03-10 22:32:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Pulpit\Moja muzyka [2010-03-10 21:29:27 | 000,094,208 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\w32n50.dll [2010-03-10 21:29:27 | 000,034,688 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\pcampr5.sys [2010-03-10 21:29:27 | 000,032,128 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\pcandis5.sys [2010-03-10 21:29:18 | 000,000,000 | ---D | C] -- C:\Program Files\Livebox [2010-03-10 21:28:32 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.dll [2010-03-10 21:28:32 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71.dll [2010-03-10 21:28:32 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCR71.dll [2010-03-10 21:28:32 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atl71.dll [2010-03-10 21:05:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Identities [2010-03-10 21:05:51 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-03-10 21:05:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Moje dokumenty\Moje obrazy [2010-03-10 21:05:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Moje dokumenty\Moja muzyka [2010-03-10 21:05:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Fazi\Dane aplikacji\Microsoft [2010-03-10 21:05:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Fazi\Cookies [2010-03-10 21:05:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Fazi\SendTo [2010-03-10 21:05:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Fazi\Recent [2010-03-10 21:05:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Fazi\Dane aplikacji [2010-03-10 21:05:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Ulubione [2010-03-10 21:05:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Moje dokumenty [2010-03-10 21:05:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fazi\Menu Start [2010-03-10 21:05:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne [2010-03-10 21:05:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Fazi\Szablony [2010-03-10 21:05:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Fazi\PrintHood [2010-03-10 21:05:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Fazi\NetHood [2010-03-10 21:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Pulpit [2010-03-10 21:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fazi\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-10 21:04:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-03-10 21:04:10 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-03-10 21:04:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-03-10 21:04:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-10 21:04:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-03-10 21:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-10 20:59:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-03-10 20:59:01 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-03-10 20:59:00 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-03-10 20:58:14 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010-03-10 20:57:20 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-03-10 20:57:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-03-10 20:57:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-03-10 20:56:54 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-03-10 20:56:50 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-03-10 20:56:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-03-10 20:56:15 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010-03-10 20:56:07 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010-03-10 20:56:05 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010-03-10 20:56:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-03-10 20:56:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010-03-10 20:56:03 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-03-10 20:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-03-10 20:55:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-03-10 20:55:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-03-10 20:55:55 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010-03-10 20:55:55 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010-03-10 20:55:54 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010-03-10 20:55:54 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010-03-10 20:55:54 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010-03-10 20:55:54 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010-03-10 20:55:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010-03-10 20:55:51 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-03-10 20:55:44 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2010-03-10 20:55:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-03-10 20:55:40 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-03-10 20:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-03-10 20:55:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-03-10 20:55:30 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-03-10 20:55:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-03-10 20:54:50 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-03-10 20:54:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-03-10 20:54:37 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-03-10 20:54:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-03-10 20:54:32 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-03-10 20:54:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010-03-10 20:54:29 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-03-10 20:54:22 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010-03-10 20:54:22 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010-03-10 20:54:22 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010-03-10 20:54:22 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010-03-10 20:54:22 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010-03-10 20:54:21 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010-03-10 20:54:16 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010-03-10 20:54:16 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010-03-10 20:54:16 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010-03-10 20:54:15 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010-03-10 20:54:15 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010-03-10 20:54:15 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010-03-10 20:54:15 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010-03-10 20:54:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010-03-10 20:54:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010-03-10 20:54:15 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010-03-10 20:54:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010-03-10 20:54:14 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010-03-10 20:54:14 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010-03-10 20:54:14 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010-03-10 20:54:14 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010-03-10 20:54:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010-03-10 20:54:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010-03-10 20:54:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010-03-10 20:54:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010-03-10 20:54:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010-03-10 20:54:14 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010-03-10 20:54:13 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010-03-10 20:54:13 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010-03-10 20:54:13 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010-03-10 20:54:13 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010-03-10 20:54:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010-03-10 20:54:13 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010-03-10 20:54:13 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010-03-10 20:54:12 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010-03-10 20:54:07 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010-03-10 20:54:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010-03-10 20:54:07 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-03-10 20:54:04 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010-03-10 20:54:04 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010-03-10 20:54:04 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010-03-10 20:54:04 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010-03-10 20:54:04 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010-03-10 20:54:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-03-10 20:54:03 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010-03-10 20:54:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-03-10 20:53:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-03-10 16:17:04 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2010-03-10 16:17:04 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2010-03-10 16:17:03 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2010-03-10 16:17:03 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2010-03-10 16:17:02 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2010-03-10 16:17:02 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2010-03-10 16:14:41 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-03-10 16:14:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-03-10 16:14:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-03-10 16:14:36 | 000,000,000 | R--D | C] -- C:\Program Files [2010-03-10 16:14:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-03-10 16:14:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-03-10 16:14:21 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010-03-10 16:14:21 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010-03-10 16:14:21 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010-03-10 16:14:21 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010-03-10 16:14:21 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010-03-10 16:14:21 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010-03-10 16:14:21 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010-03-10 16:14:20 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010-03-10 16:14:20 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010-03-10 16:14:20 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010-03-10 16:14:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-03-10 16:14:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-03-10 16:14:07 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-03-10 16:14:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-03-10 16:14:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-03-10 16:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-03-10 16:13:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-03-10 16:13:43 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-03-10 16:13:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-03-10 16:13:10 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-03-10 16:13:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-03-10 16:02:36 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-03-10 16:02:36 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-03-10 16:02:36 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-03-10 16:02:36 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-03-10 16:02:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2009-08-06 20:24:12 | 000,015,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui [2009-08-06 20:24:10 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2009-08-06 20:24:10 | 000,023,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui [2009-04-15 11:56:19 | 000,370,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll [2005-06-06 12:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2005-06-06 12:31:51 | 000,023,070 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\RTL8139.sys [2005-06-06 12:29:56 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2005-06-06 12:29:56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-06-28 23:57:33 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\avastSS.scr [2010-06-28 23:57:12 | 000,165,032 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-06-28 23:37:52 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-06-28 23:37:30 | 000,165,456 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-06-28 23:33:13 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-06-28 23:32:45 | 000,100,176 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-06-28 23:32:42 | 000,094,544 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-06-28 23:32:33 | 000,017,744 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-06-28 23:32:16 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-04-17 11:05:07 | 000,000,736 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PokerStars.lnk [2010-04-15 22:56:10 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-04-15 15:28:31 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-04-15 15:06:11 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll [2010-04-15 15:05:58 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-04-10 16:32:21 | 000,000,828 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\Counter Strike 1.6 No Steam.lnk [2010-04-10 16:32:21 | 000,000,820 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\Dedicated Server.lnk [2010-04-03 21:04:54 | 000,077,470 | ---- | M] () -- C:\Documents and Settings\Fazi\Moje dokumenty\ROW_Rybnik_ARENA.jpg [2010-03-21 21:19:30 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\Internet Explorer.lnk [2010-03-19 23:33:12 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\WinRAR.lnk [2010-03-13 17:47:06 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk [2010-03-13 17:47:05 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk [2010-03-11 20:57:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-03-11 20:46:00 | 000,001,130 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Livebox.lnk [2010-03-11 20:46:00 | 000,001,128 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\tp.pl.lnk [2010-03-11 09:33:21 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\Mój komputer.lnk [2010-03-10 21:04:05 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-03-10 20:58:35 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-10 20:58:35 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-10 20:58:35 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-03-10 20:58:35 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-03-10 20:58:25 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-03-07 14:44:12 | 000,010,240 | ---- | M] () -- C:\WINDOWS\System32\sknc.dll [2010-02-26 08:13:59 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll [2010-02-26 07:58:44 | 000,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec [2010-02-26 02:58:44 | 000,370,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll [2010-02-12 12:03:03 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2009-12-17 10:00:45 | 000,345,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2009-10-21 08:03:25 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll [2009-10-21 08:03:25 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll [2009-08-06 20:24:18 | 000,327,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2009-08-06 20:24:12 | 000,015,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui [2009-08-06 20:24:10 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2009-08-06 20:24:10 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2009-08-06 20:24:10 | 000,023,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui [2009-08-06 20:23:54 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2009-05-26 13:43:13 | 000,019,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2009-04-03 13:15:04 | 000,485,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmod.dll [2008-09-24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys [2008-06-20 13:10:34 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\WINDOWS\System32\Autodial2000.dll [2008-06-12 16:19:54 | 000,956,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2008-06-12 16:19:54 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2008-06-12 16:19:54 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2008-06-12 16:19:54 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2008-06-12 16:19:53 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2007-07-27 23:11:38 | 000,026,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2007-04-16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe [2006-12-08 16:20:14 | 010,528,768 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe [2006-11-17 06:40:46 | 018,804,736 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl [2006-10-18 03:53:26 | 000,147,456 | ---- | M] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2006-08-01 16:02:00 | 000,049,152 | ---- | M] () -- C:\WINDOWS\System32\ChCfg.exe [2006-07-31 12:27:30 | 000,217,088 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe [2006-07-31 12:19:00 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe [2006-03-01 20:53:56 | 000,094,208 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\w32n50.dll [2006-03-01 20:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\pcandis5.sys [2005-07-26 06:42:33 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2005-06-16 20:54:05 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-2025429265-839522115-1003UA.job [2005-06-16 20:42:44 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2005-06-16 20:40:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2005-06-16 20:40:41 | 535,285,760 | -HS- | M] () -- C:\hiberfil.sys [2005-06-16 16:35:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2005-06-15 14:54:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-2025429265-839522115-1003Core.job [2005-06-10 18:07:53 | 000,000,646 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk [2005-06-06 12:46:28 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2005-06-06 12:43:29 | 000,025,065 | ---- | M] () -- C:\WINDOWS\System32\wmpscheme.xml [2005-06-06 12:43:15 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2005-06-06 12:43:15 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2005-06-06 12:43:14 | 000,299,552 | ---- | M] () -- C:\WINDOWS\WMSysPrx.prx [2005-06-06 12:42:58 | 000,004,473 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2005-06-06 12:37:53 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2005-06-06 12:37:53 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2005-06-06 12:37:53 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2005-06-06 12:37:53 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2005-06-06 12:37:39 | 000,023,040 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2005-06-06 12:36:53 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2005-06-06 12:12:08 | 535,289,856 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2005-05-23 14:07:09 | 000,000,658 | ---- | M] () -- C:\Documents and Settings\Fazi\Pulpit\Tibia.lnk [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-04-17 10:51:08 | 000,000,736 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PokerStars.lnk [2010-04-15 22:56:10 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-04-15 22:51:21 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-04-15 15:05:57 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm [2010-04-15 15:05:50 | 061,256,026 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-04-14 21:21:58 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-2025429265-839522115-1003UA.job [2010-04-14 21:21:57 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1614895754-2025429265-839522115-1003Core.job [2010-04-10 16:32:21 | 000,000,828 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\Counter Strike 1.6 No Steam.lnk [2010-04-10 16:32:21 | 000,000,820 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\Dedicated Server.lnk [2010-04-03 21:04:26 | 000,077,470 | ---- | C] () -- C:\Documents and Settings\Fazi\Moje dokumenty\ROW_Rybnik_ARENA.jpg [2010-03-21 21:19:16 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\Internet Explorer.lnk [2010-03-19 23:33:12 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\WinRAR.lnk [2010-03-15 16:11:52 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job [2010-03-13 17:47:06 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk [2010-03-13 17:47:05 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk [2010-03-12 17:08:18 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-03-11 20:57:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-03-11 20:46:00 | 000,001,130 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Livebox.lnk [2010-03-11 20:46:00 | 000,001,128 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\tp.pl.lnk [2010-03-11 09:33:21 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\Mój komputer.lnk [2010-03-10 21:04:05 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-03-10 21:02:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-03-10 20:58:35 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-03-10 20:58:35 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-03-10 20:58:35 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-03-10 20:58:35 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-03-10 20:58:35 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-03-10 20:58:24 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-03-10 20:58:24 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-03-10 20:58:22 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-03-10 20:56:12 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-03-10 20:56:12 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-03-10 20:54:59 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-03-10 20:54:17 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-03-10 20:54:17 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-03-10 20:54:17 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-03-10 20:54:17 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-03-10 20:54:17 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-03-10 20:54:17 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-03-10 20:54:17 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-03-10 20:54:17 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-03-10 20:54:17 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-03-10 20:54:17 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-03-10 20:54:17 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-03-10 20:54:15 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-03-10 20:54:14 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-03-10 20:54:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-03-10 20:54:08 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-03-10 16:14:45 | 000,001,917 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010-03-10 16:14:40 | 000,004,473 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-03-10 16:14:19 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-03-10 16:13:43 | 000,309,301 | ---- | C] () -- C:\WINDOWS\setupapi.old [2010-03-10 16:13:09 | 000,098,256 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-03-10 16:12:12 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-03-10 16:12:09 | 000,000,288 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2005-06-10 18:07:53 | 000,000,646 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tibia.lnk [2005-06-06 12:29:46 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2005-06-06 12:29:46 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2005-06-06 12:29:46 | 000,031,161 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2005-06-06 12:29:46 | 000,013,923 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2005-06-06 12:29:46 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2005-06-06 12:29:46 | 000,010,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2005-06-06 12:29:46 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2005-06-06 12:29:46 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2005-06-06 12:29:46 | 000,007,125 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2005-06-06 12:29:45 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2005-06-06 12:29:44 | 001,622,956 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2005-06-06 12:29:44 | 000,609,642 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2005-06-06 12:27:10 | 535,285,760 | -HS- | C] () -- C:\hiberfil.sys [2005-05-26 17:39:09 | 000,000,658 | ---- | C] () -- C:\Documents and Settings\Fazi\Pulpit\Tibia.lnk [2005-03-26 15:25:58 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\sknc.dll [2005-01-12 21:23:01 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2001-07-22 04:41:32 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [color=#E56717]========== LOP Check ==========[/color] [2005-03-26 11:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-04-15 15:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar [2005-03-25 23:36:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9 [2005-04-13 20:00:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2010-03-15 19:56:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2005-04-04 20:53:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-04-24 18:19:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-03-20 11:24:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2005-04-13 20:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Babylon [2005-04-14 01:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\facemoods.com [2010-05-06 16:44:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Gadu-Gadu [2005-04-04 20:53:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Gadu-Gadu 10 [2005-04-08 16:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Nowe Gadu-Gadu [2010-04-24 18:19:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\OpenFM [2005-04-16 14:28:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Opera [2005-04-22 19:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fazi\Dane aplikacji\Tibia [2005-06-16 20:42:44 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 231 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:E41EAF13 < End of report >