[PROBLEM]

fdkamil · 20 Stycznia 2013

Witam mam taki mały problem a mianowicie:

- gdy coś pobieram nie mogę tego uruchomić 2 raz

- czasami zatrzymuje się przy końcowym pobieraniu ( 99,9% ) i stop

- Nie da się zainstalować Avast'a ( gdy zaczyna się instalacja odrazu gaśnie )

Proszę o pilną pomoc

A właśnie zrobiło się tak jak podłączyłem pod komputer starą Mp3 -.-

Przepraszam jeżeli nie ten temat ale bardzo mi zależy

Fr3shMak3r · 20 Stycznia 2013

Na poczatek proponuje zebys wrzucil loga OTL.

Miyoshi · 20 Stycznia 2013

A właśnie zrobiło się tak jak podłączyłem pod komputer starą Mp3

Czyli wcześniej nie było tego problemu? Może miałeś jakiegoś wirusa na tej MP3 i niechcący zainfekowałeś nim kompa?

Jeżeli tak to musisz jakoś usunąć niechciane oprogramowanie z peceta, ale ja nie powiem Ci jak nie wiedząc nawet co to.

fdkamil · 20 Stycznia 2013

OTL logfile created on: 2013-01-20 20:09:45 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\tak\Moje dokumenty\Pobieranie

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,50 Gb Total Physical Memory | 2,78 Gb Available Physical Memory | 79,51% Memory free

5,34 Gb Paging File | 4,80 Gb Available in Paging File | 89,92% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 931,50 Gb Total Space | 788,78 Gb Free Space | 84,68% Space Free | Partition Type: NTFS

Drive E: | 3,82 Gb Total Space | 2,74 Gb Free Space | 71,77% Space Free | Partition Type: FAT32

Computer Name: KAMIL-C25672FE8 | User Name: tak | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013-01-20 20:07:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tak\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2013-01-20 19:48:26 | 000,012,970 | ---- | M] () -- C:\Documents and Settings\tak\Ustawienia lokalne\Temp\phdkj.exe

PRC - [2013-01-19 10:25:55 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2012-12-30 20:52:51 | 000,170,408 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe

PRC - [2012-10-02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe

PRC - [2010-07-22 00:25:04 | 000,610,912 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\open-fm.exe

PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

MOD - [2013-01-20 19:48:26 | 000,012,970 | ---- | M] () -- C:\Documents and Settings\tak\Ustawienia lokalne\Temp\phdkj.exe

MOD - [2013-01-19 10:25:54 | 003,022,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll

MOD - [2013-01-09 17:01:48 | 014,586,888 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll

MOD - [2010-07-22 00:25:24 | 000,270,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggwebkit.dll

MOD - [2010-07-22 00:25:24 | 000,152,160 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggzip.dll

MOD - [2010-07-22 00:25:20 | 000,111,200 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggradiocore.dll

MOD - [2010-07-22 00:25:18 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll

MOD - [2010-07-22 00:25:18 | 000,111,200 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggradio.dll

MOD - [2010-07-22 00:25:14 | 000,127,584 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcimproxy.dll

MOD - [2010-07-22 00:25:14 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll

MOD - [2010-07-22 00:25:12 | 000,086,624 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gghttp.dll

MOD - [2010-07-22 00:25:10 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll

MOD - [2010-07-22 00:25:08 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll

MOD - [2010-07-22 00:25:06 | 002,302,560 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggaac.dll

MOD - [2010-07-22 00:25:04 | 000,610,912 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\open-fm.exe

MOD - [2010-03-30 07:13:54 | 000,045,056 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstneon.dll

MOD - [2010-03-30 07:13:54 | 000,032,256 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstwavparse.dll

MOD - [2010-03-30 07:13:54 | 000,014,336 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgsticydemux.dll

MOD - [2010-03-30 07:13:52 | 000,335,872 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstdirectsound.dll

MOD - [2010-03-30 07:13:52 | 000,069,632 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstaacdec.dll

MOD - [2010-03-23 11:01:00 | 008,806,400 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll

MOD - [2010-03-19 08:34:20 | 013,545,472 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll

MOD - [2010-03-19 08:34:20 | 003,334,144 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXmlPatterns4.dll

MOD - [2010-03-19 08:34:20 | 002,400,256 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll

MOD - [2010-03-19 08:34:20 | 001,036,288 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll

MOD - [2010-03-19 08:34:20 | 000,323,584 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll

MOD - [2010-03-19 08:33:46 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll

MOD - [2010-03-19 08:33:46 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll

MOD - [2010-03-19 08:33:46 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll

MOD - [2010-03-19 08:33:46 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll

MOD - [2010-03-19 08:33:46 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll

MOD - [2010-03-19 08:33:44 | 000,946,688 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libxml2.dll

MOD - [2010-03-19 08:33:44 | 000,438,272 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgstreamer-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,159,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstcoreelements.dll

MOD - [2010-03-19 08:33:44 | 000,155,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgstbase-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,081,920 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgstaudio-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,049,152 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgsttypefindfunctions.dll

MOD - [2010-03-19 08:33:44 | 000,049,152 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgsttag-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,036,864 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgstriff-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,036,864 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\libgstinterfaces-0.10.dll

MOD - [2010-03-19 08:33:44 | 000,033,098 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\iconv.dll

MOD - [2010-03-19 08:33:44 | 000,024,576 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gstplugins\libgstaudiorate.dll

MOD - [2010-03-19 08:33:38 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll

MOD - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe -- (navapsvc)

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)

SRV - [2013-01-19 11:17:20 | 000,541,608 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2013-01-19 10:25:54 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2013-01-09 17:01:51 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2012-12-30 20:52:51 | 000,170,408 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)

SRV - [2012-12-29 11:31:25 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)

SRV - [2012-11-09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2012-10-02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)

SRV - [2005-09-24 08:10:00 | 000,749,696 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE -- (NSCService)

SRV - [2005-09-19 03:24:00 | 000,214,672 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)

SRV - [2005-09-16 16:27:00 | 000,192,112 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)

SRV - [2005-09-16 16:27:00 | 000,169,584 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)

SRV - [2005-09-15 08:21:00 | 001,160,800 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | Auto | Stopped] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS -- (SAVRTPEL)

DRV - File not found [Kernel | On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS -- (SAVRT)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTIOLib.sys -- (NTIOLib_1_0_C)

DRV - File not found [Kernel | On_Demand | Stopped] -- D:\CDriver.sys -- (MSICDSetup)

DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\tak\USTAWI~1\Temp\mbr.sys -- (mbr)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - File not found [Kernel | On_Demand | Running] -- C:\ComboFix\catchme.sys -- (catchme)

DRV - [2013-01-16 18:58:03 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV - [2012-12-18 10:06:00 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)

DRV - [2012-07-03 16:25:19 | 000,124,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)

DRV - [2012-06-12 11:10:44 | 006,138,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)

DRV - [2012-02-22 13:18:10 | 000,329,960 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)

DRV - [2010-11-28 21:50:36 | 000,035,712 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbfilter.sys -- (usbfilter)

DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)

DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)

DRV - [2008-04-14 00:10:52 | 000,149,376 | ---- | M] (M-Systems) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tffsport.sys -- (tffsport)

DRV - [2005-09-16 16:20:00 | 000,108,168 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent)

DRV - [2005-09-15 08:21:00 | 000,389,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)

DRV - [2005-09-11 17:00:00 | 000,665,816 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20050912.024\NAVEX15.SYS -- (NAVEX15)

DRV - [2005-09-11 17:00:00 | 000,077,816 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20050912.024\NAVENG.SYS -- (NAVENG)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "https://www.google.pl/"

FF - prefs.js..extensions.enabledAddons: battlefieldplay4free%40ea.com:1.0.80.2

FF - prefs.js..extensions.enabledAddons: %7B5ddeb737-082c-48fb-8c06-aa4b38d61e5f%7D:1.0

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-01-19 10:25:56 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012-12-25 11:47:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tak\Dane aplikacji\Mozilla\Extensions

[2013-01-12 11:53:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\tak\Dane aplikacji\Mozilla\Firefox\Profiles\4kr3c7az.default\extensions

[2013-01-12 11:53:32 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Documents and Settings\tak\Dane aplikacji\Mozilla\Firefox\Profiles\4kr3c7az.default\extensions\[email protected]

[2013-01-19 10:25:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2013-01-19 10:25:46 | 000,000,000 | ---D | M] ("BitAccelerator") -- C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}

[2013-01-19 10:25:47 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

[2013-01-19 10:25:55 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2013-01-19 10:25:52 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2013-01-19 10:25:52 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2013-01-19 10:25:52 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2013-01-19 10:25:52 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2013-01-19 10:25:52 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2013-01-19 10:25:52 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll

CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.52\pdf.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll

CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll

CHR - plugin: Java™ Platform SE 7 U10 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll

CHR - plugin: Java Deployment Toolkit 7.0.100.18 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll

CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

CHR - Extension: Docs = C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\

CHR - Extension: Dysk Google = C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\

CHR - Extension: YouTube = C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\

CHR - Extension: Szukaj w Google = C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\

CHR - Extension: Gmail = C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013-01-20 19:44:42 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)

O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()

O4 - HKLM..\Run: [sSC_UserPrompt] c:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe (Symantec Corporation)

O4 - HKCU..\Run: [EADM] C:\Program Files\Origin\Origin.exe (Electronic Arts)

O4 - HKCU..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)

O4 - HKCU..\Run: [steam] C:\Program Files\Steam\steam.exe (Valve Corporation)

O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE1D4EEB-BC79-438B-9A8A-B62EC5C37DD7}: DhcpNameServer = 192.168.1.1 192.168.1.1

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - about:Home

O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp

O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2012-12-25 18:26:38 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2013-01-20 19:45:50 | 000,000,238 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]

O32 - AutoRun File - [2012-03-26 20:24:46 | 000,000,251 | RHS- | M] () - E:\autorun.inf -- [ FAT32 ]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = ComFile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013-01-20 19:51:07 | 000,000,000 | -HSD | C] -- C:\RECYCLER

[2013-01-20 19:38:22 | 000,000,000 | RHSD | C] -- C:\cmdcons

[2013-01-20 19:37:27 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2013-01-20 19:37:27 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2013-01-20 19:37:27 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2013-01-20 19:37:27 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2013-01-20 19:37:07 | 000,000,000 | ---D | C] -- C:\dupa

[2013-01-20 19:37:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Menu Start\Programy\Narzędzia administracyjne

[2013-01-20 19:37:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Moje dokumenty\Moje wideo

[2013-01-20 19:37:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt

[2013-01-20 19:35:30 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software

[2013-01-20 19:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software

[2013-01-20 19:09:55 | 000,108,168 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS

[2013-01-20 19:09:55 | 000,087,768 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL

[2013-01-20 19:09:26 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec

[2013-01-20 19:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec

[2013-01-20 19:09:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared

[2013-01-20 14:31:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Battlefield 1942

[2013-01-20 14:31:17 | 000,000,000 | -H-D | C] -- C:\Program Files\Common Files\EAInstaller

[2013-01-19 18:51:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\TeknoGods

[2013-01-19 12:14:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome

[2013-01-19 11:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\Google

[2013-01-19 11:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Google

[2013-01-19 10:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2013-01-17 16:50:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\CrashRpt

[2013-01-16 18:55:14 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2013-01-16 18:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\DAEMON Tools Lite

[2013-01-16 18:53:09 | 000,466,008 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys

[2013-01-16 18:53:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\DAEMON Tools Lite

[2013-01-16 18:53:01 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite

[2013-01-16 18:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2013-01-16 18:42:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PopCap Games

[2013-01-16 18:42:22 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games

[2013-01-12 23:36:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\CrashDump

[2013-01-12 23:35:49 | 000,010,344 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ssadwh.sys

[2013-01-12 23:34:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Samsung

[2013-01-12 23:34:13 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\WINDOWS\System32\dgderapi.dll

[2013-01-12 23:34:13 | 000,020,032 | ---- | C] (Devguru Co., Ltd) -- C:\WINDOWS\System32\drivers\dgderdrv.sys

[2013-01-12 23:24:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers

[2013-01-12 22:58:06 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\drivers\tffsport.sys

[2013-01-12 22:58:06 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys

[2013-01-12 22:44:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\NativeFus_Log

[2013-01-12 22:43:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Samsung

[2013-01-12 22:43:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Samsung

[2013-01-12 22:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Moje dokumenty\samsung

[2013-01-12 22:40:58 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\WINDOWS\System32\Redemption.dll

[2013-01-12 22:40:20 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung

[2013-01-12 22:40:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung

[2013-01-12 22:39:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf

[2013-01-12 22:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Pulpit\Muzyka

[2013-01-12 22:33:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET

[2013-01-12 22:31:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Downloaded Installations

[2013-01-09 11:37:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Xfire

[2013-01-09 11:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Xfire

[2013-01-09 11:36:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Xfire

[2013-01-09 11:36:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Xfire

[2013-01-09 11:36:36 | 000,000,000 | ---D | C] -- C:\Program Files\Xfire

[2013-01-07 15:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies

[2013-01-07 15:28:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups

[2013-01-07 15:27:36 | 000,000,000 | ---D | C] -- C:\NVIDIA

[2013-01-06 20:57:27 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache

[2013-01-06 20:56:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Activision

[2013-01-06 20:51:19 | 000,000,000 | ---D | C] -- C:\Program Files\Activision

[2013-01-06 15:15:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\TS3Client

[2013-01-06 15:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TeamSpeak 3 Client

[2013-01-06 15:15:04 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client

[2013-01-06 11:32:28 | 000,000,000 | ---D | C] -- C:\Program Files\Optimizer Pro

[2013-01-06 11:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\DirectDownloader

[2013-01-04 21:21:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\.gstreamer-0.10

[2013-01-04 21:21:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM

[2013-01-04 21:21:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\OpenFM

[2013-01-04 21:18:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\cache

[2013-01-04 21:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Gadu-Gadu 10

[2013-01-04 21:18:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10

[2013-01-04 21:18:05 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10

[2013-01-04 17:43:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher

[2013-01-03 14:01:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tak\PrivacIE

[2013-01-01 13:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2013-01-01 13:25:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\PunkBuster

[2012-12-31 21:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Sun

[2012-12-30 20:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun

[2012-12-30 20:53:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java

[2012-12-30 20:52:46 | 000,000,000 | ---D | C] -- C:\Program Files\Java

[2012-12-30 20:51:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Sun

[2012-12-30 20:50:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Minecraft

[2012-12-30 20:50:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\.minecraft

[2012-12-30 18:01:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt

[2012-12-30 17:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Skype

[2012-12-30 17:24:07 | 000,000,000 | R--D | C] -- C:\Program Files\Skype

[2012-12-30 17:24:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2012-12-30 17:24:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype

[2012-12-30 17:23:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype

[2012-12-29 20:03:09 | 000,000,000 | ---D | C] -- C:\Program Files\The Elder Scrolls V Skyrim

[2012-12-29 16:45:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Razor 1911

[2012-12-28 22:42:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2012-12-28 20:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\BioWare

[2012-12-28 20:39:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard

[2012-12-28 19:22:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Origin

[2012-12-28 19:22:45 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games

[2012-12-28 19:22:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Origin

[2012-12-28 19:19:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin

[2012-12-28 19:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Origin

[2012-12-28 19:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts

[2012-12-28 19:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Origin

[2012-12-28 16:33:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\InstallShield

[2012-12-28 14:27:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\NVIDIA

[2012-12-28 14:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Menu Start\Programy\Steam

[2012-12-27 22:27:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Identities

[2012-12-27 16:57:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tak\IETldCache

[2012-12-27 11:37:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages

[2012-12-27 11:29:08 | 000,000,000 | ---D | C] -- C:\Program Files\EA GAMES

[2012-12-27 09:29:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates

[2012-12-27 09:29:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM

[2012-12-27 09:28:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2012-12-27 09:23:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474

[2012-12-26 19:46:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Moje dokumenty\gothic3

[2012-12-26 19:13:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ubisoft

[2012-12-26 19:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft

[2012-12-26 18:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall

[2012-12-26 18:08:22 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$

[2012-12-25 19:19:21 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer

[2012-12-25 19:19:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC

[2012-12-25 19:19:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines

[2012-12-25 19:19:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared

[2012-12-25 19:19:17 | 000,000,000 | R--D | C] -- C:\Program Files

[2012-12-25 19:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files

[2012-12-25 19:18:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start

[2012-12-25 19:18:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty

[2012-12-25 19:18:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart

[2012-12-25 19:18:58 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony

[2012-12-25 19:18:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione

[2012-12-25 19:18:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit

[2012-12-25 19:18:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2012-12-25 19:18:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot

[2012-12-25 19:18:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft

[2012-12-25 19:18:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji

[2012-12-25 19:17:50 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[2012-12-25 19:17:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings

[2012-12-25 19:06:25 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts

[2012-12-25 19:06:25 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache

[2012-12-25 19:06:25 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web

[2012-12-25 19:06:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\system

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\security

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\java

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028

[2012-12-25 19:06:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

[2012-12-25 18:39:04 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP

[2012-12-25 18:38:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2012-12-25 18:37:35 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies

[2012-12-25 18:37:32 | 000,000,000 | ---D | C] -- C:\Program Files\ATI

[2012-12-25 18:36:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM

[2012-12-25 18:36:11 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe

[2012-12-25 18:36:08 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe

[2012-12-25 18:35:52 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE

[2012-12-25 18:35:52 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys

[2012-12-25 18:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2012-12-25 18:35:50 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information

[2012-12-25 18:35:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield

[2012-12-25 18:34:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild

[2012-12-25 18:34:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer

[2012-12-25 18:34:34 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies

[2012-12-25 18:34:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us

[2012-12-25 18:33:30 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly

[2012-12-25 18:33:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET

[2012-12-25 18:31:32 | 000,000,000 | ---D | C] -- C:\MSI

[2012-12-25 18:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Identities

[2012-12-25 18:30:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information

[2012-12-25 18:30:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Moje dokumenty\Moje obrazy

[2012-12-25 18:30:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Moje dokumenty\Moja muzyka

[2012-12-25 18:30:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\tak\Dane aplikacji\Microsoft

[2012-12-25 18:30:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tak\SendTo

[2012-12-25 18:30:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tak\Recent

[2012-12-25 18:30:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tak\Dane aplikacji

[2012-12-25 18:30:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Ulubione

[2012-12-25 18:30:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Moje dokumenty

[2012-12-25 18:30:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Menu Start

[2012-12-25 18:30:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Menu Start\Programy\Autostart

[2012-12-25 18:30:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\tak\Menu Start\Programy\Akcesoria

[2012-12-25 18:30:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tak\Cookies

[2012-12-25 18:30:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne

[2012-12-25 18:30:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tak\Szablony

[2012-12-25 18:30:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tak\PrintHood

[2012-12-25 18:30:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tak\NetHood

[2012-12-25 18:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Pulpit

[2012-12-25 18:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Microsoft

[2012-12-25 18:30:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution

[2012-12-25 18:30:03 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft

[2012-12-25 18:30:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2012-12-25 18:30:02 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[2012-12-25 18:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2012-12-25 18:29:49 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft

[2012-12-25 18:29:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2012-12-25 18:27:57 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll

[2012-12-25 18:27:57 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll

[2012-12-25 18:27:57 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll

[2012-12-25 18:27:12 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys

[2012-12-25 18:26:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom

[2012-12-25 18:26:52 | 000,000,000 | ---D | C] -- C:\Program Files\xerox

[2012-12-25 18:26:52 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage

[2012-12-25 18:25:54 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM

[2012-12-25 18:25:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files

[2012-12-25 18:25:47 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages

[2012-12-25 18:25:39 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate

[2012-12-25 18:25:36 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online

[2012-12-25 18:25:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX

[2012-12-25 18:25:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services

[2012-12-25 18:25:06 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks

[2012-12-25 18:25:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap

[2012-12-25 18:25:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst

[2012-12-25 18:25:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed

[2012-12-25 18:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker

[2012-12-25 18:24:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore

[2012-12-25 18:24:32 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting

[2012-12-25 18:24:29 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express

[2012-12-25 18:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System

[2012-12-25 18:24:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy

[2012-12-25 18:24:23 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer

[2012-12-25 18:24:03 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry

[2012-12-25 18:23:54 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications

[2012-12-25 18:23:48 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne

[2012-12-25 18:23:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration

[2012-12-25 18:23:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka

[2012-12-25 18:23:42 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player

[2012-12-25 18:23:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger

[2012-12-25 18:23:33 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming MPCforum

[2012-12-25 18:23:13 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe

[2012-12-25 18:23:12 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT

[2012-12-25 18:23:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc

[2012-12-25 18:23:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com

[2012-12-25 18:22:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo

[2012-12-25 18:22:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria

[2012-12-25 17:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Skyrim

[2012-12-25 17:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Moje dokumenty\My Games

[2012-12-25 17:44:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam

[2012-12-25 17:44:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Steam

[2012-12-25 17:44:39 | 000,000,000 | ---D | C] -- C:\Program Files\Steam

[2012-12-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Menu Start\Programy\WinRAR

[2012-12-25 17:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR

[2012-12-25 16:29:06 | 000,000,000 | --SD | C] -- C:\Documents and Settings\tak\GG dysk

[2012-12-25 16:28:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\GG

[2012-12-25 16:28:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\GG

[2012-12-25 16:28:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\GG

[2012-12-25 13:57:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Wargaming.net

[2012-12-25 11:59:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Moje dokumenty\Downloads

[2012-12-25 11:58:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\WinRAR

[2012-12-25 11:58:42 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2012-12-25 11:57:52 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent

[2012-12-25 11:57:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\uTorrent

[2012-12-25 11:51:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Macromedia

[2012-12-25 11:51:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Adobe

[2012-12-25 11:51:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\World of Tanks

[2012-12-25 11:51:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs

[2012-12-25 11:51:44 | 000,000,000 | ---D | C] -- C:\Games

[2012-12-25 11:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Moje dokumenty\Pobieranie

[2012-12-25 11:47:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Ustawienia lokalne\Dane aplikacji\Mozilla

[2012-12-25 11:47:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tak\Dane aplikacji\Mozilla

[2012-12-25 11:47:54 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service

[2012-12-25 11:47:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla

[2012-12-25 11:45:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2012-12-25 11:43:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA

[2012-12-25 11:43:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation

[2012-12-25 11:41:57 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation

[2012-12-25 11:41:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution

[2010-11-03 11:33:35 | 000,769,024 | ---- | C] (AnjoCaido) -- C:\Documents and Settings\tak\Dane aplikacji\MinecraftSP.exe

[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-01-20 20:01:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2013-01-20 19:48:57 | 000,555,118 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2013-01-20 19:48:57 | 000,104,274 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2013-01-20 19:48:56 | 000,493,054 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013-01-20 19:48:56 | 000,083,598 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013-01-20 19:45:50 | 000,103,140 | RHS- | M] () -- C:\lyfq.exe

[2013-01-20 19:45:50 | 000,000,238 | RHS- | M] () -- C:\autorun.inf

[2013-01-20 19:44:46 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job

[2013-01-20 19:44:42 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2013-01-20 19:44:39 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2013-01-20 19:44:38 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013-01-20 19:44:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013-01-20 19:38:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini

[2013-01-20 19:13:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2013-01-20 18:31:17 | 000,000,663 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\World of Tanks.lnk

[2013-01-20 14:31:18 | 000,000,863 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Battlefield 1942.lnk

[2013-01-19 12:14:02 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk

[2013-01-18 19:26:50 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk

[2013-01-17 18:24:37 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\tak\Dane aplikacji\steam_md5.dat

[2013-01-16 19:43:24 | 000,000,842 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty Modern Warfare 2 SP.lnk

[2013-01-16 19:43:24 | 000,000,842 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty Modern Warfare 2 MP.lnk

[2013-01-16 18:58:03 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2013-01-16 18:53:10 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk

[2013-01-16 18:48:34 | 000,000,025 | ---- | M] () -- C:\WINDOWS\popcinfot.dat

[2013-01-15 17:02:48 | 001,074,608 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin

[2013-01-15 17:02:48 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin

[2013-01-15 16:57:32 | 001,074,608 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin

[2013-01-14 18:10:39 | 000,022,328 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2013-01-14 16:11:17 | 000,103,736 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0

[2013-01-13 20:58:05 | 000,103,140 | RHS- | M] () -- C:\kvface.exe

[2013-01-13 18:56:15 | 000,103,140 | RHS- | M] () -- C:\hmunf.exe

[2013-01-13 13:00:28 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2013-01-12 22:51:11 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013-01-12 22:40:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf

[2013-01-12 22:39:48 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2013-01-12 15:35:57 | 000,281,152 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr

[2013-01-12 12:39:07 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\tak\Dane aplikacji\PnkBstrK.sys

[2013-01-06 20:56:53 | 000,001,691 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty® 4 - Modern Warfare™ Wielu graczy.lnk

[2013-01-06 20:56:53 | 000,001,691 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty® 4 - Modern Warfare™ Jeden gracz.lnk

[2013-01-06 20:56:09 | 000,000,319 | ---- | M] () -- C:\WINDOWS\game.ini

[2013-01-04 21:21:17 | 000,000,635 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\open-fm.lnk

[2013-01-03 15:17:28 | 000,000,213 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\Counter-Strike Global Offensive.url

[2012-12-30 20:50:53 | 000,000,838 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Minecraft.lnk

[2012-12-29 11:31:25 | 002,284,064 | ---- | M] () -- C:\WINDOWS\System32\nvdata.data

[2012-12-29 11:31:25 | 000,016,032 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb

[2012-12-28 19:19:23 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Origin.lnk

[2012-12-28 14:34:48 | 000,000,212 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\Counter-Strike.url

[2012-12-28 14:14:56 | 000,000,212 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\Day of Defeat.url

[2012-12-28 14:14:13 | 000,000,213 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\Team Fortress 2.url

[2012-12-27 16:57:24 | 000,096,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2012-12-25 19:21:43 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF

[2012-12-25 18:30:57 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\tak\Pulpit\Mój komputer.lnk

[2012-12-25 18:29:51 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD

[2012-12-25 18:28:16 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf

[2012-12-25 18:26:38 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2012-12-25 18:26:38 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2012-12-25 18:26:38 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2012-12-25 18:26:38 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2012-12-25 18:26:38 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2012-12-25 18:26:35 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb

[2012-12-25 18:26:35 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb

[2012-12-25 18:26:26 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI

[2012-12-25 18:24:02 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat

[2012-12-25 17:44:43 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2012-12-25 11:57:52 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk

[2012-12-25 11:47:55 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2012-12-25 11:45:55 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak

[2012-12-25 11:45:37 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2012-12-25 11:45:37 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2012-12-25 11:42:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk

[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-01-20 19:45:50 | 000,103,140 | RHS- | C] () -- C:\lyfq.exe

[2013-01-20 19:45:25 | 000,000,238 | RHS- | C] () -- C:\autorun.inf

[2013-01-20 19:38:24 | 000,262,400 | RHS- | C] () -- C:\cmldr

[2013-01-20 19:37:27 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2013-01-20 19:37:27 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe

[2013-01-20 19:37:27 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2013-01-20 19:37:27 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2013-01-20 19:37:27 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2013-01-20 19:07:54 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2013-01-20 14:31:18 | 000,000,863 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Battlefield 1942.lnk

[2013-01-19 12:14:02 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk

[2013-01-19 11:08:57 | 000,001,030 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2013-01-19 11:08:57 | 000,001,026 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2013-01-17 18:24:37 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\tak\Dane aplikacji\steam_md5.dat

[2013-01-16 19:43:24 | 000,000,842 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty Modern Warfare 2 SP.lnk

[2013-01-16 19:43:24 | 000,000,842 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty Modern Warfare 2 MP.lnk

[2013-01-16 18:53:10 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk

[2013-01-16 18:43:10 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat

[2013-01-13 20:58:05 | 000,103,140 | RHS- | C] () -- C:\kvface.exe

[2013-01-13 18:56:15 | 000,103,140 | RHS- | C] () -- C:\hmunf.exe

[2013-01-12 23:52:22 | 000,508,340 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-682003330-436374069-2147183463-1003-0.dat

[2013-01-12 23:52:22 | 000,080,138 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat

[2013-01-12 22:51:11 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013-01-12 22:40:08 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf

[2013-01-06 20:56:53 | 000,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty® 4 - Modern Warfare™ Wielu graczy.lnk

[2013-01-06 20:56:53 | 000,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty® 4 - Modern Warfare™ Jeden gracz.lnk

[2013-01-06 20:56:32 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\tak\Dane aplikacji\PnkBstrK.sys

[2013-01-06 20:56:09 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini

[2013-01-04 21:21:17 | 000,000,635 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\open-fm.lnk

[2013-01-04 21:18:10 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Gadu-Gadu 10.lnk

[2013-01-03 15:17:28 | 000,000,213 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\Counter-Strike Global Offensive.url

[2013-01-01 13:25:48 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2013-01-01 13:25:43 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe

[2013-01-01 13:25:43 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.ex0

[2013-01-01 13:25:41 | 000,281,152 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.xtr

[2013-01-01 13:25:35 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe

[2012-12-30 20:50:53 | 000,000,838 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Minecraft.lnk

[2012-12-30 17:24:07 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk

[2012-12-28 19:19:23 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Origin.lnk

[2012-12-28 14:34:48 | 000,000,212 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\Counter-Strike.url

[2012-12-28 14:14:56 | 000,000,212 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\Day of Defeat.url

[2012-12-28 14:14:13 | 000,000,213 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\Team Fortress 2.url

[2012-12-27 11:37:26 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll

[2012-12-27 11:37:26 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll

[2012-12-27 11:37:26 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax

[2012-12-27 11:37:26 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax

[2012-12-27 11:37:26 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax

[2012-12-27 11:37:26 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax

[2012-12-27 09:23:37 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job

[2012-12-26 18:12:50 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll

[2012-12-26 18:12:50 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll

[2012-12-25 19:21:43 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF

[2012-12-25 19:19:24 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2012-12-25 19:19:21 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2012-12-25 19:19:19 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd

[2012-12-25 19:19:19 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa

[2012-12-25 19:19:19 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf

[2012-12-25 19:19:18 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa

[2012-12-25 19:19:05 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

[2012-12-25 19:18:58 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT

[2012-12-25 19:18:58 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat

[2012-12-25 19:18:58 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat

[2012-12-25 19:18:58 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT

[2012-12-25 19:18:58 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat

[2012-12-25 19:18:58 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT

[2012-12-25 19:18:58 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT

[2012-12-25 19:18:58 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT

[2012-12-25 19:18:58 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT

[2012-12-25 19:18:58 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT

[2012-12-25 19:18:58 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT

[2012-12-25 19:18:58 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT

[2012-12-25 19:18:58 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat

[2012-12-25 19:18:57 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT

[2012-12-25 19:18:57 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT

[2012-12-25 19:18:57 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT

[2012-12-25 19:18:57 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT

[2012-12-25 19:17:50 | 000,096,664 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2012-12-25 19:12:02 | 000,000,327 | RHS- | C] () -- C:\boot.ini

[2012-12-25 19:11:59 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[2012-12-25 18:36:01 | 000,025,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT

[2012-12-25 18:34:51 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2012-12-25 18:30:57 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\tak\Pulpit\Mój komputer.lnk

[2012-12-25 18:30:43 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\tak\Menu Start\Programy\Outlook Express.lnk

[2012-12-25 18:30:41 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\tak\Menu Start\Programy\Internet Explorer.lnk

[2012-12-25 18:30:38 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\tak\Menu Start\Programy\Pomoc zdalna.lnk

[2012-12-25 18:30:38 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\tak\Menu Start\Programy\Windows Media Player.lnk

[2012-12-25 18:29:51 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

[2012-12-25 18:28:16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2012-12-25 18:27:54 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll

[2012-12-25 18:27:44 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2012-12-25 18:27:40 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe

[2012-12-25 18:27:39 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe

[2012-12-25 18:27:37 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2012-12-25 18:27:27 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll

[2012-12-25 18:27:22 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2012-12-25 18:27:20 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll

[2012-12-25 18:27:13 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll

[2012-12-25 18:26:38 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT

[2012-12-25 18:26:38 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS

[2012-12-25 18:26:38 | 000,000,000 | RHS- | C] () -- C:\IO.SYS

[2012-12-25 18:26:38 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS

[2012-12-25 18:26:38 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT

[2012-12-25 18:26:35 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb

[2012-12-25 18:26:35 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb

[2012-12-25 18:26:34 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx

[2012-12-25 18:25:38 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk

[2012-12-25 18:25:28 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex

[2012-12-25 18:25:16 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp

[2012-12-25 18:25:15 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp

[2012-12-25 18:25:10 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf

[2012-12-25 18:24:37 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll

[2012-12-25 18:24:03 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk

[2012-12-25 18:24:02 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2012-12-25 18:23:22 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp

[2012-12-25 18:23:22 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp

[2012-12-25 18:23:22 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp

[2012-12-25 18:23:22 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp

[2012-12-25 18:23:22 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp

[2012-12-25 18:23:22 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp

[2012-12-25 18:23:22 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp

[2012-12-25 18:23:22 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp

[2012-12-25 18:23:22 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp

[2012-12-25 18:23:21 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp

[2012-12-25 18:23:21 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp

[2012-12-25 18:23:19 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h

[2012-12-25 18:23:19 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd

[2012-12-25 18:23:18 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h

[2012-12-25 18:23:14 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[2012-12-25 17:44:43 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2012-12-25 11:57:52 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk

[2012-12-25 11:51:46 | 000,000,663 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\World of Tanks.lnk

[2012-12-25 11:51:26 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012-12-25 11:47:55 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk

[2012-12-25 11:47:55 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2012-12-25 11:45:56 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak

[2012-12-25 11:45:37 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2012-12-25 11:45:37 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2012-12-25 11:42:31 | 001,074,608 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin

[2012-12-25 11:42:31 | 001,074,608 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin

[2012-12-25 11:42:31 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin

[2012-12-25 11:42:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk

[2012-12-25 11:42:30 | 002,284,064 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data

[2012-12-25 11:42:30 | 000,016,032 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb

[2012-12-18 10:06:10 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe

[2012-12-18 10:06:06 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll

[2012-12-18 10:06:06 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll

[2012-12-18 10:06:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll

[2012-12-18 10:06:06 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll

[2012-12-07 21:40:40 | 000,042,440 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll

[2012-05-04 15:37:46 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll

========== ZeroAccess Check ==========

[2012-12-25 18:33:30 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-15 13:00:00 | 001,499,136 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = %systemroot%\system32\wbem\wbemess.dll -- [2008-04-15 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== LOP Check ==========

[2013-01-20 19:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software

[2013-01-07 16:17:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BioWare

[2013-01-16 19:06:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2012-12-28 19:19:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts

[2013-01-04 21:18:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10

[2012-12-25 16:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GG

[2013-01-13 17:14:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM

[2012-12-28 19:23:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin

[2013-01-16 18:42:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PopCap Games

[2013-01-12 23:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung

[2012-12-30 20:53:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\.minecraft

[2013-01-16 18:55:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\DAEMON Tools Lite

[2013-01-04 21:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\Gadu-Gadu 10

[2013-01-04 14:07:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\GG

[2013-01-04 21:21:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\OpenFM

[2012-12-29 11:23:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\Origin

[2013-01-12 23:12:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\Samsung

[2013-01-06 15:15:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\TS3Client

[2013-01-20 19:45:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\uTorrent

[2012-12-25 13:57:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tak\Dane aplikacji\Wargaming.net

========== Purity Check ==========

< End of report >

A właśnie tutaj podobno wykryło Nortona ale na kompie go nie mam -.-

Instalowałem go ale był Error i tyle

Fr3shMak3r · 20 Stycznia 2013

Wez ten log w zalaczniku daj bo tego sie sprawdzac nie da .

fdkamil · 20 Stycznia 2013

Sorki Już dodaje

OTL.Txt

Fr3shMak3r · 20 Stycznia 2013

Sytuacja jest niepokojaca .

Generuja sie podejrzane pliki :

[2013-01-20 19:45:50 | 000,103,140 | RHS- | C] () -- C:\lyfq.exe
[2013-01-20 19:45:25 | 000,000,238 | RHS- | C] () -- C:\autorun.inf
[2013-01-20 19:38:24 | 000,262,400 | RHS- | C] () -- C:\cmldr.exe

A czy ty przypadkiem nie masz Sality ?

Chociaz nie widze jej uslugi ale widac charakterystyczny proces pracujacy w TEMP.

Do tego widac ze Combofix byl uzywany

Nie uzywaj go na przyszlosc.

Widac jeszcze slady po rootkicie MBR.

Zabraklo 2 loga Extras bo nie zaznaczyles Rejestr skan dodatkowy na uzyj filtrowania.

Dostarcz go .

fdkamil · 20 Stycznia 2013

Proszę. Będzie dało się coś z tym zrobić?

Extras.Txt

Fr3shMak3r · 20 Stycznia 2013

Moje przypuszczenia sie potwierdzily .

W systemie siedzi okropny wirus Sality ktory zaraza i niszczy wszystkie pliki wykonywalne na wszystkich dyskach .

Ta infekcja ma silne kwalifikacje na format calego dysku .

Mozemy z tym powalczyc .

Wybieraj :

- walczymy

- format.

fdkamil · 20 Stycznia 2013

Ta pierwsza ;D

Fr3shMak3r · 20 Stycznia 2013

To podstawa .

Nie poddawaj sie

1. Wylacz przywracanie systemu na wszystkich dyskach .

PPM na moj komputer ---wlasciwosci--- zakladka przywracanie systemu i wylacz.

2. Pobierz SalityKiller i skan az do skutku az bedzie 0 wykrytych.

3. Pokazujesz nowy log OTL.

fdkamil · 20 Stycznia 2013

A własnie ja ciołek na Xp jade i tam nie ma nic z przywracaniem systemu...

Dobra mam sorki

Fr3shMak3r · 20 Stycznia 2013

Jest napewno .

Zobacz dobrze .

fdkamil · 20 Stycznia 2013

A ile to średnio trwa?

Tak około?

Fr3shMak3r · 20 Stycznia 2013

To zalezy ile masz plikow .exe i .dll

fdkamil · 20 Stycznia 2013

To chyba tego troche jest

Fr3shMak3r · 20 Stycznia 2013

Nie no mysle ze do 3-4 godz to powinno sie robic .

fdkamil · 20 Stycznia 2013

Ja Ci to jutro wstawie bo to jeszcze z 60 skanów po 50 min

fdkamil · 21 Stycznia 2013

Dobra temat do zamknięcia już nie ma tego shitu D:

natan1234 · 21 Stycznia 2013

daj log otl freshowi zęby mógł zobaczyć czy nic nie zostało po nim

Fr3shMak3r · 22 Stycznia 2013

Już do zamknięcia ?

Jeszcze musisz pokazać log USBFix z opcji Listing .

Skoro mówisz że to ci się zrobiło po MP3 .

Muszę sprawdzić czy tak rzeczywiście było .

fdkamil · 22 Stycznia 2013

Już nic nie zostało zainstalowałem Kasperskiego i nic nie wykrywa Sprawdzałem jeszcze Nod'em i też nic nie było

Wielkie dzięki za pomoc

Zaloguj się

👋 Witaj na MPCForum!

[PROBLEM]

Rekomendowane odpowiedzi

Zarchiwizowany