OTL.rar

Re: Dziesięć procesów svchost.exe i strasznie wolny komputer.

Nie wiem czy skrypt się dobrze wykonał, raport nie wyskoczył... Daje log z OTL A co z plikami które znalazł Usbfix ? Nie usuwałem ich.

  • OTL.rar
    • OTL.Txt


Pobierz plik - link do postu

OTL.rar > OTL.Txt

OTL logfile created on: 2011-08-02 09:30:18 - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = E:\Downloads
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,09 Gb Available Physical Memory | 54,31% Memory free
3,85 Gb Paging File | 3,02 Gb Available in Paging File | 78,55% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 52,05 Gb Free Space | 53,29% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 22,35 Gb Free Space | 22,89% Space Free | Partition Type: NTFS
Drive E: | 270,44 Gb Total Space | 189,37 Gb Free Space | 70,02% Space Free | Partition Type: NTFS

Computer Name: MUSTANG | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2011-08-01 18:48:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
PRC - [2011-07-09 06:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2011-04-22 12:22:44 | 012,401,968 | ---- | M] (www.BitComet.com) -- C:\Program Files\BitComet\BitComet.exe
PRC - [2011-03-28 15:41:14 | 001,910,152 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2011-03-28 15:41:12 | 001,242,504 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011-03-14 18:46:35 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011-03-14 18:45:18 | 001,053,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgupd.exe
PRC - [2011-01-10 16:24:20 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files\Secunia\PSI\sua.exe
PRC - [2010-12-08 16:07:33 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgfws9.exe
PRC - [2010-12-08 16:07:32 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010-09-20 16:34:39 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010-09-16 20:35:29 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010-09-16 20:35:29 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010-09-16 20:35:24 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010-09-16 20:35:24 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2010-09-16 20:35:24 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010-09-16 20:35:23 | 000,596,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2010-09-16 20:35:22 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010-03-22 22:36:08 | 000,302,928 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010-03-22 22:36:06 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2008-11-13 12:39:30 | 000,140,664 | ---- | M] (FLIR Systems) -- E:\Dom\FLIR Systems\FLIR QuickReport\bin\T3Srv.exe
PRC - [2008-11-13 12:39:28 | 000,275,832 | ---- | M] (FLIR Systems) -- E:\Dom\FLIR Systems\FLIR QuickReport\bin\T3Mon.exe
PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-05-23 02:17:02 | 000,020,539 | ---- | M] (Apache Software Foundation) -- C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe
PRC - [2007-03-02 09:33:50 | 000,930,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2007-02-13 16:20:50 | 001,205,840 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
PRC - [2007-01-04 15:33:48 | 002,117,632 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files\PIXELA\ImageMixer3\HDDCameraMonitor.exe
PRC - [2006-05-23 23:17:00 | 001,806,336 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2011-08-01 18:48:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011-05-30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011-03-28 15:41:12 | 001,242,504 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011-01-10 16:24:20 | 000,993,848 | ---- | M] (Secunia) [On_Demand | Stopped] -- C:\Program Files\Secunia\PSI\PSIA.exe -- (Secunia PSI Agent)
SRV - [2011-01-10 16:24:20 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2010-12-08 16:07:33 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgfws9.exe -- (avgfws9)
SRV - [2010-09-16 20:35:24 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010-09-16 20:35:24 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010-09-16 20:35:22 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010-03-25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010-03-22 22:36:08 | 000,302,928 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2008-11-13 12:39:30 | 000,140,664 | ---- | M] (FLIR Systems) [Auto | Running] -- E:\Dom\FLIR Systems\FLIR QuickReport\bin\T3Srv.exe -- (T3Srv)
SRV - [2007-06-12 20:54:12 | 000,061,440 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe -- (Marvell RAID)
SRV - [2007-05-23 02:17:02 | 000,020,539 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe -- (MRUWebService)
SRV - [2007-03-02 09:33:50 | 000,930,864 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011-05-12 17:34:21 | 000,135,032 | ---- | M] () [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\dwprot.sys -- (DwProt)
DRV - [2011-05-07 18:43:48 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010-11-01 12:29:06 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-11-01 12:29:06 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-09-16 20:35:49 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010-09-16 20:35:49 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\AVGIDSxx.sys -- (AVGIDSErHrxpx)
DRV - [2010-09-16 20:35:45 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010-09-16 20:35:42 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010-09-16 20:35:23 | 000,122,448 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys -- (AVGIDSDriverxpx)
DRV - [2010-09-16 20:35:23 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys -- (AVGIDSFilterxpx)
DRV - [2010-09-16 20:35:23 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys -- (AVGIDSShimxpx)
DRV - [2010-09-16 20:35:13 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2010-09-16 20:35:13 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2010-09-01 10:30:58 | 000,015,544 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2010-07-11 14:21:16 | 000,036,608 | ---- | M] (SafePcTools Software) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\FLGuard.sys -- (FLGuard)
DRV - [2010-03-22 22:36:00 | 000,020,824 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010-03-21 19:38:11 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2007-11-01 10:56:00 | 000,036,864 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l151x86.sys -- (AtcL001)
DRV - [2007-10-20 04:22:02 | 000,143,360 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys -- (mv61xx)
DRV - [2007-03-26 21:21:06 | 004,395,008 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007-03-02 09:33:50 | 000,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007-03-02 09:33:40 | 000,118,064 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007-03-02 09:33:40 | 000,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007-02-07 16:50:32 | 000,118,552 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2007-02-07 16:50:14 | 000,056,088 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ELOADER) General Purpose USB Driver (adildr.sys)
DRV - [2004-12-16 17:41:30 | 000,089,808 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabser.sys -- (slabser)
DRV - [2004-08-13 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004-03-11 17:24:14 | 000,052,384 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slabbus.sys -- (slabbus) CP2101 USB Composite Device driver (WDM)
DRV - [2001-12-18 14:45:04 | 000,003,279 | ---- | M] (VIA Technologies. Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\VIAPFD.SYS -- (VIAPFD)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0



IE - HKU\S-1-5-21-823518204-220523388-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-823518204-220523388-725345543-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-823518204-220523388-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)



O1 HOSTS File: ([2010-08-28 14:36:36 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-823518204-220523388-725345543-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [FS Camera Monitor] E:\Dom\FLIR Systems\FLIR QuickReport\bin\T3Mon.exe (FLIR Systems)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-823518204-220523388-725345543-1003..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-823518204-220523388-725345543-1003..\Run: [BitComet] C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\ImageMixer HDD Camera Monitor.lnk = C:\Program Files\PIXELA\ImageMixer3\HDDCameraMonitor.exe (PIXELA CORPORATION)
O4 - Startup: C:\Documents and Settings\user\Menu Start\Programy\Autostart\Yahoo! Widget Engine.lnk = C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe (Yahoo! Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-823518204-220523388-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-823518204-220523388-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-823518204-220523388-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O8 - Extra context menu item: & P & obierz & za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: E & ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Wyślij & do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij & do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: & Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : & Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O15 - HKU\S-1-5-21-823518204-220523388-725345543-1003\..Trusted Ranges: Marvell ([http] in Local intranet)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1285569967390 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.4.0/jinstall-1_4_0_03-windows-i586.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-01-20 18:49:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-05-15 20:55:26 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-05-15 20:55:26 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-05-15 20:55:26 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011-08-01 18:34:23 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011-08-01 18:00:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\AgerWebEdytor
[2011-08-01 13:41:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2011-08-01 13:02:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla ActiveX Control v1.5
[2011-08-01 11:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Yahoo
[2011-08-01 11:20:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\user\Moje dokumenty\My Widgets
[2011-08-01 11:19:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Yahoo! Widgets
[2011-08-01 11:19:45 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2011-08-01 10:15:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\BitComet
[2011-07-29 09:44:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011-07-26 11:19:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\G3
[2011-07-25 11:18:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\vlc
[2011-07-24 17:20:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN
[2011-07-20 12:18:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\mobile
[2011-07-19 21:13:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype
[2011-07-15 11:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\Praca icencjacka
[2011-07-13 16:16:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\My Games
[2011-07-12 11:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SharePoint
[2011-07-12 11:30:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
[2011-07-12 11:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2011-07-12 11:28:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011-07-12 11:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011-07-12 11:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2011-07-12 11:27:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011-07-12 11:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Microsoft
[2011-07-12 11:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2011-07-12 11:23:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2011-07-12 11:23:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft Help
[2011-07-12 11:23:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
[2011-07-12 11:22:34 | 000,000,000 | RH-D | C] -- C:\MSOCache

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011-08-02 09:31:05 | 000,658,896 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavifw.avm
[2011-08-02 09:31:04 | 082,919,717 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011-08-02 09:27:36 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-08-02 09:26:07 | 000,168,501 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011-08-02 09:25:33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-08-01 21:11:01 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-220523388-725345543-1003UA.job
[2011-08-01 19:04:42 | 000,017,925 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Logi.rar
[2011-08-01 12:11:00 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-220523388-725345543-1003Core.job
[2011-08-01 11:20:25 | 000,000,826 | ---- | M] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Yahoo! Widget Engine.lnk
[2011-08-01 11:19:52 | 000,000,896 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Yahoo! Widget Engine.lnk
[2011-08-01 10:44:24 | 001,561,702 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Urszula Szymborska 2.jpg
[2011-08-01 10:43:10 | 000,722,703 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Urszula Szymborska 1.jpg
[2011-08-01 10:41:58 | 000,709,403 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Alicja Czertoryjska 2.jpg
[2011-08-01 10:40:31 | 001,550,891 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Alicja Czertoryjska 1.jpg
[2011-08-01 10:38:51 | 001,532,427 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Przemysław Łapiński 2.jpg
[2011-08-01 10:18:27 | 000,701,616 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Przemysław Łapiński 1.jpg
[2011-08-01 10:15:02 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk
[2011-07-31 21:40:25 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
[2011-07-30 17:04:14 | 000,059,297 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\oferta_LESNY_DWOR_18-30.08.11.pdf
[2011-07-29 11:00:06 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-07-24 17:20:27 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2011-07-24 16:26:49 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Crysis.bmp
[2011-07-24 13:28:28 | 000,049,746 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\podreczniki-2011-2012.pdf
[2011-07-20 16:33:25 | 000,191,711 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\działka 2.jpg
[2011-07-20 16:32:26 | 000,118,678 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\działka 1.jpg
[2011-07-19 15:56:05 | 000,048,337 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\1703862336.jpg
[2011-07-15 11:55:35 | 001,534,557 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Dorota Miannik regulamin.jpg
[2011-07-15 11:54:17 | 000,700,679 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Dorota Miannik umowa.jpg
[2011-07-15 11:52:58 | 001,542,372 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Kamil Uździło regulamin.jpg
[2011-07-15 11:50:56 | 000,712,848 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Kamil Uździło umowa.jpg
[2011-07-14 16:37:51 | 000,282,128 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-07-12 23:12:30 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-07-12 23:12:00 | 000,000,945 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Crysis Warhead.lnk
[2011-07-12 13:57:53 | 005,292,054 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\xdxd.bmp
[2011-07-08 09:59:07 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-07-06 09:26:30 | 000,152,064 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-07-04 19:52:42 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-08-01 19:04:42 | 000,017,925 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Logi.rar
[2011-08-01 11:20:25 | 000,000,826 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Yahoo! Widget Engine.lnk
[2011-08-01 11:19:51 | 000,000,896 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Yahoo! Widget Engine.lnk
[2011-08-01 10:43:47 | 001,561,702 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Urszula Szymborska 2.jpg
[2011-08-01 10:42:34 | 000,722,703 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Urszula Szymborska 1.jpg
[2011-08-01 10:41:22 | 000,709,403 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Alicja Czertoryjska 2.jpg
[2011-08-01 10:39:54 | 001,550,891 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Alicja Czertoryjska 1.jpg
[2011-08-01 10:38:14 | 001,532,427 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Przemysław Łapiński 2.jpg
[2011-08-01 10:17:51 | 000,701,616 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Przemysław Łapiński 1.jpg
[2011-08-01 10:15:02 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk
[2011-07-30 17:04:18 | 000,059,297 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\oferta_LESNY_DWOR_18-30.08.11.pdf
[2011-07-24 17:20:27 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2011-07-24 16:24:43 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Crysis.bmp
[2011-07-24 13:28:37 | 000,049,746 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\podreczniki-2011-2012.pdf
[2011-07-20 16:32:49 | 000,191,711 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\działka 2.jpg
[2011-07-20 16:31:27 | 000,118,678 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\działka 1.jpg
[2011-07-19 21:13:49 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-07-19 15:56:09 | 000,048,337 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\1703862336.jpg
[2011-07-15 11:54:58 | 001,534,557 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Dorota Miannik regulamin.jpg
[2011-07-15 11:53:40 | 000,700,679 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Dorota Miannik umowa.jpg
[2011-07-15 11:52:22 | 001,542,372 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Kamil Uździło regulamin.jpg
[2011-07-15 11:50:01 | 000,712,848 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Kamil Uździło umowa.jpg
[2011-07-13 21:58:54 | 000,000,945 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Crysis Warhead.lnk
[2011-07-12 13:57:52 | 005,292,054 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\xdxd.bmp
[2011-06-12 15:57:47 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2011-05-12 17:34:21 | 000,135,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\dwprot.sys
[2011-01-16 13:48:36 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2011-01-16 13:47:12 | 000,000,024 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010-11-03 14:05:14 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-11-01 12:29:06 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-11-01 12:29:06 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-10-22 17:45:38 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini
[2010-10-19 17:22:43 | 000,000,169 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2010-10-19 17:22:43 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2010-10-19 17:22:37 | 000,253,008 | ---- | C] () -- C:\WINDOWS\adirasx64.exe
[2010-10-19 17:22:37 | 000,194,128 | ---- | C] () -- C:\WINDOWS\adiras.exe
[2010-10-19 17:22:36 | 000,127,456 | ---- | C] () -- C:\WINDOWS\System32\IPDETECT.EXE
[2010-10-19 17:22:35 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P2.BIN
[2010-10-19 17:22:35 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I2.BIN
[2010-10-19 17:22:33 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2010-10-19 17:22:33 | 000,176,128 | ---- | C] () -- C:\WINDOWS\autoclk.exe
[2010-10-19 17:22:33 | 000,024,576 | ---- | C] () -- C:\WINDOWS\enddisk32.exe
[2010-10-19 17:22:32 | 000,152,308 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I2.BIN
[2010-10-19 17:22:32 | 000,152,306 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I1.BIN
[2010-10-19 17:22:32 | 000,152,306 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I0.BIN
[2010-10-19 17:22:32 | 000,152,146 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P2.BIN
[2010-10-19 17:22:32 | 000,152,145 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P1.BIN
[2010-10-19 17:22:32 | 000,152,145 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P0.BIN
[2010-10-19 17:22:32 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P1.BIN
[2010-10-19 17:22:32 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P0.BIN
[2010-10-19 17:22:32 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I1.BIN
[2010-10-19 17:22:32 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I0.BIN
[2010-10-19 17:22:32 | 000,152,036 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D2.BIN
[2010-10-19 17:22:32 | 000,152,034 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D1.BIN
[2010-10-19 17:22:32 | 000,152,034 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D0.BIN
[2010-10-19 17:22:32 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL
[2010-10-19 17:22:32 | 000,022,395 | ---- | C] () -- C:\WINDOWS\System32\drivers\fpga.bin
[2010-10-18 21:46:34 | 000,000,990 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2010-10-18 16:09:33 | 000,028,672 | R--- | C] () -- C:\WINDOWS\System32\adinst32.dll
[2010-10-04 20:52:48 | 000,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-10-03 11:08:46 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010-09-24 19:44:40 | 000,000,278 | ---- | C] () -- C:\WINDOWS\game.ini
[2010-07-12 12:39:56 | 000,002,596 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Config.nt.bak
[2010-07-12 12:39:56 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Autoexec.nt.bak
[2010-07-12 12:39:56 | 000,000,027 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\hosts.bak
[2010-07-11 14:35:12 | 000,003,077 | ---- | C] () -- C:\WINDOWS\FileGuard.bin
[2010-05-02 12:46:54 | 000,138,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-05-02 12:46:54 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys
[2010-05-02 12:46:35 | 000,682,280 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2010-05-02 12:46:35 | 000,111,928 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010-05-02 12:46:35 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010-03-12 14:57:00 | 000,245,845 | ---- | C] () -- C:\WINDOWS\System32\SPR_P5.DLL
[2010-03-12 14:57:00 | 000,180,309 | ---- | C] () -- C:\WINDOWS\System32\SPR_P6.DLL
[2010-03-12 14:57:00 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\CM6_800x16.dll
[2010-03-12 14:57:00 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\CM6_640x16.dll
[2010-03-12 14:57:00 | 000,142,336 | ---- | C] () -- C:\WINDOWS\System32\CM6_512x16.dll
[2010-03-12 14:57:00 | 000,142,336 | ---- | C] () -- C:\WINDOWS\System32\CM6_1024x16.dll
[2010-02-13 20:32:52 | 000,000,604 | ---- | C] () -- C:\WINDOWS\Sof2.INI
[2009-12-26 12:06:33 | 000,000,167 | ---- | C] () -- C:\WINDOWS\disney.ini
[2009-08-29 17:11:07 | 000,047,104 | ---- | C] () -- C:\WINDOWS\System32\KMVIDC32.DLL
[2009-07-01 08:02:06 | 000,000,038 | ---- | C] () -- C:\WINDOWS\TTRAILS.INI
[2009-06-07 18:40:51 | 000,001,217 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2009-05-22 18:36:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2009-03-03 12:05:29 | 000,155,221 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2009-03-03 12:05:29 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2009-02-04 17:08:01 | 000,000,048 | ---- | C] () -- C:\WINDOWS\EL0105.dat
[2009-02-02 19:57:17 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS66.DLL
[2009-01-30 14:22:31 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2009-01-30 11:58:22 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-01-27 19:28:05 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-01-27 19:05:29 | 000,152,064 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-01-25 13:50:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009-01-21 02:40:13 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-01-21 02:37:27 | 000,282,128 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-01-20 19:41:19 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2009-01-20 19:34:39 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009-01-20 19:23:35 | 000,000,009 | ---- | C] () -- C:\WINDOWS\mvraidver.dat
[2009-01-20 19:05:00 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009-01-20 19:04:58 | 000,014,388 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009-01-20 19:04:49 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009-01-20 18:52:06 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009-01-20 18:47:30 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-03-11 10:25:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-03-11 10:25:00 | 001,626,112 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2008-03-11 10:25:00 | 001,482,752 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-03-11 10:25:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2008-03-11 10:25:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-03-11 10:25:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-03-11 10:25:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2008-03-11 10:25:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2008-03-11 10:25:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007-05-23 02:17:30 | 000,047,395 | ---- | C] () -- C:\WINDOWS\php.ini
[2007-04-26 03:21:36 | 000,000,236 | ---- | C] () -- C:\WINDOWS\zraidtray.ini
[2004-08-04 02:56:48 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-08-02 16:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004-03-15 15:29:12 | 000,000,061 | ---- | C] () -- C:\WINDOWS\System32\uninstall.ini
[2001-10-26 18:15:16 | 000,490,628 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2001-10-26 18:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2001-10-26 18:15:16 | 000,083,880 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2001-10-26 18:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2001-08-23 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001-08-23 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001-08-17 23:30:24 | 000,432,492 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001-08-17 23:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001-08-17 23:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001-08-17 23:30:22 | 000,067,448 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001-08-17 23:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001-07-22 00:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001-07-22 00:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001-07-22 00:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[color=#E56717]========== LOP Check ==========[/color]

[2011-05-12 20:07:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar
[2011-02-23 15:08:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9
[2011-03-14 18:46:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2010-08-31 13:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\G DATA
[2010-10-17 14:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-10-17 14:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-10-31 19:38:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NFS Underground
[2011-05-22 19:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2009-02-01 16:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PIXELA
[2010-09-06 18:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2011-06-02 14:46:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\.minecraft
[2011-08-01 18:01:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\AgerWebEdytor
[2010-07-19 11:46:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ArcticLine
[2010-09-16 21:00:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\AVG9
[2010-09-01 10:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BESTplayer
[2011-08-02 09:37:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BitComet
[2011-03-08 21:03:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Dev-Cpp
[2009-12-26 12:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Disney Interactive Studios
[2010-10-18 11:19:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Draco Organizer
[2010-10-06 20:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\FileZilla
[2011-04-07 16:09:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu 10
[2011-05-15 14:48:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\GetRightToGo
[2010-07-11 18:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gili Privacy Protector
[2011-01-23 16:49:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\gretl
[2011-01-23 16:49:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\gtk-2.0
[2010-10-18 21:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\InterTrust
[2010-11-08 20:33:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ipla
[2011-06-19 10:41:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\IVONA ControlCenter
[2011-05-22 19:27:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenFM
[2011-01-05 08:59:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\PriceGong
[2010-05-20 18:41:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ThermaCAM Connect 3
[2010-09-06 18:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ubisoft

[color=#E56717]========== Purity Check ==========[/color]



& lt; End of report & gt;