20.08.2011, 19:55
złapałem wirusa z facebooka, przeskanowalem i usunąłem wykryte szkodniki programem Anti-Malware. niestety nie moge wejsc na faceebok. bardzo prosze o sprawdzenie loga z OTL i ewentualnie z instukcją jak to naprawić.
OTL logfile created on: 2011-08-20 19:30:56 - Run 1
OTL by OldTimer - Version 3.2.26.5 Folder = D:\Nowy folder (2)
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
767,48 Mb Total Physical Memory | 209,13 Mb Available Physical Memory | 27,25% Memory free
1,46 Gb Paging File | 0,93 Gb Available in Paging File | 64,03% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 4,65 Gb Free Space | 23,81% Space Free | Partition Type: NTFS
Drive D: | 92,27 Gb Total Space | 15,57 Gb Free Space | 16,88% Space Free | Partition Type: NTFS
Drive E: | 3,79 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: GABINET | User Name: Mistrz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011-08-20 19:30:43 | 000,580,096 | ---- | M] (OldTimer Tools) -- D:\Nowy folder (2)\OTL.exe
PRC - [2011-08-18 16:01:42 | 000,924,632 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-07-06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-12-16 18:38:20 | 000,375,296 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe
PRC - [2009-12-05 00:00:11 | 000,604,416 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009-09-19 08:31:01 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009-05-15 07:35:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- d:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
========== Modules (No Company Name) ==========
MOD - [2011-08-18 16:01:41 | 001,846,232 | ---- | M] () -- D:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010-11-15 22:02:34 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
MOD - [2010-07-22 01:25:18 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll
MOD - [2010-07-22 01:25:16 | 000,123,488 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll
MOD - [2010-07-22 01:25:14 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll
MOD - [2010-07-22 01:25:10 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll
MOD - [2010-07-22 01:25:08 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll
MOD - [2010-03-23 12:01:00 | 008,806,400 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll
MOD - [2010-03-19 09:34:20 | 013,545,472 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
MOD - [2010-03-19 09:34:20 | 003,334,144 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXmlPatterns4.dll
MOD - [2010-03-19 09:34:20 | 002,400,256 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll
MOD - [2010-03-19 09:34:20 | 001,511,424 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtScript4.dll
MOD - [2010-03-19 09:34:20 | 001,036,288 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll
MOD - [2010-03-19 09:34:20 | 000,389,120 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXml4.dll
MOD - [2010-03-19 09:34:20 | 000,323,584 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll
MOD - [2010-03-19 09:33:46 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll
MOD - [2010-03-19 09:33:46 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll
MOD - [2010-03-19 09:33:46 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll
MOD - [2010-03-19 09:33:46 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll
MOD - [2010-03-19 09:33:46 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll
MOD - [2010-03-19 09:33:38 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll
MOD - [2009-07-18 05:21:00 | 003,883,424 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2008-04-14 23:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008-03-29 16:42:20 | 000,159,744 | ---- | M] () -- d:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll
MOD - [2008-03-29 16:41:52 | 000,023,552 | ---- | M] () -- d:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-06-08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009-12-16 18:38:20 | 000,375,296 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2009-12-05 00:00:11 | 000,604,416 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009-12-05 00:00:10 | 000,361,216 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009-05-15 07:35:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-04-27 15:21:36 | 000,028,928 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- d:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007-03-23 17:52:12 | 000,056,552 | ---- | M] (Eng. Usama El-Mokadem) [Auto | Stopped] -- C:\WINDOWS\System32\SUSTUR.EXE -- (SRVStarter_Nerov2)
SRV - [2007-03-23 17:52:12 | 000,056,552 | ---- | M] (Eng. Usama El-Mokadem) [Auto | Stopped] -- C:\WINDOWS\System32\SUSTUR.EXE -- (SRVStarter_Nero)
========== Driver Services (SafeList) ==========
DRV - [2011-07-06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011-07-06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-05-18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-05-18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-05-18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-05-18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-08-24 10:38:36 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-08-11 14:55:39 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010-08-11 14:55:39 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010-08-11 14:39:55 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2009-09-29 09:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009-09-29 09:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009-09-29 09:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtbus.sys -- (lgbusenum)
DRV - [2009-08-21 03:08:00 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2009-08-21 03:08:00 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2009-08-21 03:08:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-04-14 01:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2007-05-02 12:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007-05-02 12:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007-05-02 12:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2006-07-24 17:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2004-12-01 14:40:08 | 002,300,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004-10-21 05:39:44 | 000,035,840 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-07-16 08:19:52 | 000,070,400 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004-06-03 04:40:46 | 000,079,360 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004-05-17 08:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004-05-17 08:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2003-10-29 07:02:00 | 000,021,120 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedir...ct=&gc=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=616163"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: plugin3@gameplaylabs.com:3.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.2
FF - prefs.js..keyword.URL: "http://start.facemoods.com/results.php?f=5&a=ddr&q="
FF - prefs.js..network.proxy.backup.ftp: "174.142.24.201"
FF - prefs.js..network.proxy.backup.ftp_port: 3128
FF - prefs.js..network.proxy.backup.gopher: "174.142.24.201"
FF - prefs.js..network.proxy.backup.gopher_port: 3128
FF - prefs.js..network.proxy.backup.socks: "174.142.24.201"
FF - prefs.js..network.proxy.backup.socks_port: 3128
FF - prefs.js..network.proxy.backup.ssl: "174.142.24.201"
FF - prefs.js..network.proxy.backup.ssl_port: 3128
FF - prefs.js..network.proxy.ftp: "174.142.24.201"
FF - prefs.js..network.proxy.ftp_port: 3128
FF - prefs.js..network.proxy.gopher: "174.142.24.201"
FF - prefs.js..network.proxy.gopher_port: 3128
FF - prefs.js..network.proxy.http: "174.142.24.201"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "174.142.24.201"
FF - prefs.js..network.proxy.socks_port: 3128
FF - prefs.js..network.proxy.ssl: "174.142.24.201"
FF - prefs.js..network.proxy.ssl_port: 3128
FF - prefs.js..network.proxy.type: 4
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: d:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: d:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: d:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2011-08-18 16:01:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2011-06-23 10:16:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-07-20 17:10:25 | 000,000,000 | ---D | M]
[2009-09-23 18:13:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Extensions
[2011-08-19 12:50:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions
[2011-07-01 13:32:14 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\cacaoweb@cacaoweb.org
[2009-12-17 21:38:10 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\firefox@tvunetworks.com
[2011-05-02 22:13:07 | 000,000,000 | ---D | M] (Media Plugin) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\plugin3@gameplaylabs.com
[2010-07-03 17:58:07 | 000,000,000 | ---D | M] (Zrzuta.eu) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\zrzuta.eu@gmail.com
[2009-11-01 13:12:56 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\daemon-search.xml
[2009-10-08 14:11:16 | 000,001,832 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\translaticapl---angielsko-polski.xml
[2009-10-08 14:11:18 | 000,001,827 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\translaticapl---polsko-angielski.xml
[2011-03-05 21:16:30 | 000,001,592 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\web-search.xml
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\MISTRZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HMFLI6SS.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\MISTRZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HMFLI6SS.DEFAULT\EXTENSIONS\TINYURL.ADDON@FAST-CHAT.CO.UK.XPI
[2010-01-02 16:14:28 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-01-01 16:54:17 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2009-09-16 10:00:26 | 000,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
[2010-12-13 14:36:54 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchddr.xml
O1 HOSTS File: ([2011-08-19 12:49:12 | 000,202,984 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 facebook.com
O1 - Hosts: 127.0.0.1 www.facebook.com
O1 - Hosts: 127.0.0.1 af-za.facebook.com
O1 - Hosts: 127.0.0.1 az-az.facebook.com
O1 - Hosts: 127.0.0.1 id-id.facebook.com
O1 - Hosts: 127.0.0.1 ms-my.facebook.com
O1 - Hosts: 127.0.0.1 bs-ba.facebook.com
O1 - Hosts: 127.0.0.1 ca-es.facebook.com
O1 - Hosts: 127.0.0.1 cs-cz.facebook.com
O1 - Hosts: 127.0.0.1 cy-gb.facebook.com
O1 - Hosts: 127.0.0.1 da-dk.facebook.com
O1 - Hosts: 127.0.0.1 de-de.facebook.com
O1 - Hosts: 127.0.0.1 et-ee.facebook.com
O1 - Hosts: 127.0.0.1 en-gb.facebook.com
O1 - Hosts: 127.0.0.1 es-la.facebook.com
O1 - Hosts: 127.0.0.1 eo-eo.facebook.com
O1 - Hosts: 127.0.0.1 eu-es.facebook.com
O1 - Hosts: 127.0.0.1 tl-ph.facebook.com
O1 - Hosts: 127.0.0.1 fo-fo.facebook.com
O1 - Hosts: 127.0.0.1 fr-fr.facebook.com
O1 - Hosts: 127.0.0.1 fy-nl.facebook.com
O1 - Hosts: 127.0.0.1 ga-ie.facebook.com
O1 - Hosts: 127.0.0.1 gl-es.facebook.com
O1 - Hosts: 127.0.0.1 ko-kr.facebook.com
O1 - Hosts: 50053 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (BrowserPlugin) - {8C196D55-1F72-9FA4-D57B-3E46D0F8DCC0} - C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\GamePlayLabs Plugin\BHO.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: AlternateShell - services32.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-09-07 14:28:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{02d30aea-eb59-11df-87d9-001109d2fab2}\Shell\AutoRun\command - "" = H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe
O33 - MountPoints2\{02d30aea-eb59-11df-87d9-001109d2fab2}\Shell\open\command - "" = H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe
O33 - MountPoints2\{57884a42-bff7-11df-86f7-001109d2fab2}\Shell\AutoRun\command - "" = H:\autorun.exe
O33 - MountPoints2\{9fc9b840-90c1-11e0-be10-001109d2fab2}\Shell\AutoRun\command - "" = H:\setupSNK.exe
O33 - MountPoints2\{a8bfeada-224b-11e0-88ed-001109d2fab2}\Shell - "" = AutoRun
O33 - MountPoints2\{a8bfeada-224b-11e0-88ed-001109d2fab2}\Shell\AutoRun\command - "" = H:\USBAutoRun.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\AutoRun\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\Explore\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\Open\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{d7efc0fd-c820-11e0-bf07-001109d2fab2}\Shell\AutoRun\command - "" = H:\b9v.exe
O33 - MountPoints2\{d7efc0fd-c820-11e0-bf07-001109d2fab2}\Shell\open\Command - "" = H:\b9v.exe
O33 - MountPoints2\{d7efc0fe-c820-11e0-bf07-001109d2fab2}\Shell\AutoRun\command - "" = I:\l10.exe
O33 - MountPoints2\{d7efc0fe-c820-11e0-bf07-001109d2fab2}\Shell\open\Command - "" = I:\l10.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\AutoRun\command - "" = G:\3o.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\explore\Command - "" = G:\3o.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\open\Command - "" = G:\3o.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011-08-19 13:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mistrz\Dane aplikacji\Malwarebytes
[2011-08-19 13:04:31 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011-08-19 13:04:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2011-08-19 13:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2011-08-19 13:04:27 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011-08-19 13:04:27 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011-08-19 12:48:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
[2011-08-19 12:46:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0-lnk
[2011-08-19 12:46:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0
[2011-08-19 12:44:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2011-08-19 12:44:18 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-08-19 12:44:18 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-08-19 12:44:18 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-08-19 12:44:18 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-08-19 12:44:17 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-08-19 12:44:17 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-08-19 12:44:17 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-08-19 12:44:17 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-08-19 12:43:51 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-08-19 12:43:51 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-08-19 12:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
[2011-08-19 12:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
[2011-08-19 12:17:03 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
[2011-08-19 12:15:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
[2011-08-19 12:11:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\WinRAR
[2011-08-19 12:10:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
[2011-08-09 17:17:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Grupa IMAGE
========== Files - Modified Within 30 Days ==========
[2011-08-20 19:24:00 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-1004UA.job
[2011-08-20 19:02:05 | 000,000,532 | ---- | M] () -- C:\WINDOWS\tasks\Konserwacja 1 kliknięciem.job
[2011-08-20 19:02:04 | 000,000,431 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2011-08-20 19:01:56 | 000,002,140 | ---- | M] () -- C:\WINDOWS\System32\proy.xml
[2011-08-20 19:01:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-08-19 13:13:19 | 000,001,698 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2011-08-19 13:11:40 | 000,000,285 | ---- | M] () -- C:\boot.ini
[2011-08-19 13:04:31 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-08-19 12:49:12 | 000,202,984 | -H-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-08-19 12:49:12 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts
[2011-08-19 12:44:17 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-08-19 12:34:43 | 000,000,155 | ---- | M] () -- C:\WINDOWS\info1
[2011-08-19 12:20:26 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar
[2011-08-19 12:20:26 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe
[2011-08-19 12:20:26 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar
[2011-08-19 12:20:24 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar
[2011-08-19 12:11:38 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar
[2011-08-19 12:11:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
[2011-08-18 23:24:01 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-1004Core.job
[2011-08-16 18:17:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01007.Wdf
[2011-08-16 18:17:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01007.Wdf
[2011-08-15 15:56:08 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-08-15 12:57:40 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-08-11 15:52:21 | 000,007,183 | ---- | M] () -- C:\Documents and Settings\Mistrz\.recently-used.xbel
[2011-08-11 15:52:21 | 000,004,852 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.jpg
[2011-08-11 15:50:53 | 000,071,135 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.xcf
[2011-08-11 15:43:34 | 000,016,330 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\2 x 2,5 300 dpi.JPG
[2011-08-11 15:08:26 | 000,000,490 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrót do pietra1.lnk
[2011-08-11 15:05:26 | 000,004,965 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\pietra.jpg
[2011-08-11 14:59:24 | 000,014,641 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\piotrek1.JPG
[2011-08-10 00:34:07 | 000,002,311 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Google Chrome.lnk
[2011-08-10 00:13:18 | 000,199,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-08-09 17:19:00 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrzyżowania.lnk
[2011-08-09 17:17:34 | 000,000,545 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\start2.bat
[2011-08-09 17:17:13 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Prawo Jazdy ABCDT - egzamin wewnętrzny.lnk
[2011-08-09 17:16:16 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\start1.bat
[2011-08-05 17:57:51 | 002,236,276 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bad Boy Bill feat. Alex Peace- Fast Life (Tocadisco Remix) [zapiska.pl].mp3
[2011-08-05 13:19:38 | 005,134,241 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers- CALIFORNICATION [zapiska.pl].mp3
[2011-08-05 13:08:13 | 004,096,448 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers - Otherside [zapiska.pl].mp3
[2011-07-28 14:17:54 | 000,060,296 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\369899f1-2cfa-4bfb-9f55-9174b263aeee.560.jpg
========== Files Created - No Company Name ==========
[2011-08-19 13:04:31 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-08-19 12:44:19 | 000,001,698 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2011-08-19 12:20:26 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar
[2011-08-19 12:20:26 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar
[2011-08-19 12:20:24 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar
[2011-08-19 12:15:07 | 000,000,155 | ---- | C] () -- C:\WINDOWS\info1
[2011-08-19 12:11:39 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist
[2011-08-19 12:11:38 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar
[2011-08-19 12:11:38 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
[2011-08-19 12:10:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok
[2011-08-16 18:17:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01007.Wdf
[2011-08-16 18:17:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01007.Wdf
[2011-08-11 15:52:21 | 000,007,183 | ---- | C] () -- C:\Documents and Settings\Mistrz\.recently-used.xbel
[2011-08-11 15:52:21 | 000,004,852 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.jpg
[2011-08-11 15:50:53 | 000,071,135 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.xcf
[2011-08-11 15:27:46 | 000,016,330 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\2 x 2,5 300 dpi.JPG
[2011-08-11 15:08:26 | 000,000,490 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrót do pietra1.lnk
[2011-08-11 15:06:03 | 000,004,965 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\pietra.jpg
[2011-08-11 14:59:24 | 000,014,641 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\piotrek1.JPG
[2011-08-09 17:19:00 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrzyżowania.lnk
[2011-08-09 17:17:33 | 000,000,545 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\start2.bat
[2011-08-09 17:17:13 | 000,000,819 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Prawo Jazdy ABCDT - egzamin wewnętrzny.lnk
[2011-08-09 17:16:14 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\start1.bat
[2011-08-05 17:56:00 | 002,236,276 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bad Boy Bill feat. Alex Peace- Fast Life (Tocadisco Remix) [zapiska.pl].mp3
[2011-08-05 13:10:24 | 005,134,241 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers- CALIFORNICATION [zapiska.pl].mp3
[2011-08-05 11:42:22 | 004,096,448 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers - Otherside [zapiska.pl].mp3
[2011-07-30 14:50:01 | 066,289,664 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Wideo0002.3gp
[2011-07-28 14:17:53 | 000,060,296 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\369899f1-2cfa-4bfb-9f55-9174b263aeee.560.jpg
[2011-06-27 17:56:34 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-03-08 14:07:02 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-12-02 21:43:28 | 000,116,000 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-10-29 12:57:07 | 000,240,688 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-29 12:57:05 | 000,240,688 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-29 12:57:05 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-29 12:56:48 | 002,293,194 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-29 10:22:12 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db
[2010-09-20 18:04:32 | 000,884,736 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2010-09-20 18:04:32 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2010-09-20 18:04:31 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2010-09-20 18:04:30 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\ia32math.dll
[2010-09-20 18:04:30 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\mp3lib.dll
[2010-09-20 18:04:30 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\libvorbis.dll
[2010-09-20 18:04:30 | 000,147,522 | ---- | C] () -- C:\WINDOWS\System32\language.ini
[2010-09-20 18:04:30 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\LameEncShim.dll
[2010-09-20 18:04:28 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2010-09-20 17:46:18 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
[2010-09-20 15:44:34 | 000,000,116 | ---- | C] () -- C:\WINDOWS\ConverterCore.INI
[2010-09-20 15:41:19 | 000,027,456 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll
[2010-09-20 15:41:19 | 000,018,752 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll
[2010-08-24 10:58:59 | 000,000,766 | ---- | C] () -- C:\WINDOWS\COD.INI
[2010-07-07 17:06:21 | 000,000,092 | ---- | C] () -- C:\WINDOWS\mp3wavcon.ini
[2010-07-07 16:49:26 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySmp3con.dat
[2010-05-23 12:15:34 | 000,000,528 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2010-05-19 18:10:02 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\kcpp.dll
[2010-02-22 14:14:39 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-02-22 14:14:39 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-02-22 14:14:39 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-02-22 14:14:39 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-02-22 14:14:39 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-01-26 13:38:26 | 000,197,632 | ---- | C] () -- C:\WINDOWS\System32\secuxo.exe
[2010-01-26 13:38:26 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\reotspnwyo.dll
[2010-01-26 13:38:26 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\NE15.COM
[2009-12-13 15:16:52 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-11-13 16:37:25 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2009-11-13 16:36:20 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009-11-11 16:26:56 | 000,000,534 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009-10-08 18:16:02 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009-09-13 12:15:27 | 000,000,026 | ---- | C] () -- C:\WINDOWS\neosetup.INI
[2009-09-07 22:50:13 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-09-07 22:50:13 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2009-09-07 22:34:37 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-09-07 17:29:44 | 004,455,865 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2009-09-07 16:19:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-09-07 16:18:37 | 000,199,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-09-07 14:48:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009-09-07 14:44:18 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009-09-07 14:44:18 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009-09-07 14:36:22 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2009-09-07 14:30:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009-09-07 14:25:47 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009-09-06 16:52:04 | 000,828,611 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2009-09-02 22:23:04 | 000,183,296 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2009-09-02 22:22:58 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2009-09-02 22:22:40 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2009-09-02 22:22:18 | 000,146,944 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2009-09-02 22:22:10 | 000,257,024 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2009-09-02 22:22:06 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2009-09-02 22:22:00 | 000,484,864 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2009-09-02 18:45:34 | 000,829,781 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-09-02 18:38:44 | 000,425,040 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2009-09-02 18:35:12 | 000,557,003 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2009-09-02 18:01:48 | 000,146,098 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2009-08-25 20:07:36 | 000,328,334 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll
[2009-08-11 22:21:26 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\ac3config.exe
[2009-06-02 19:11:26 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2009-06-02 19:11:16 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-01-11 00:17:32 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ts.dll
[2009-01-11 00:16:56 | 000,148,480 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll
[2009-01-11 00:16:50 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\avi.dll
[2009-01-11 00:16:14 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll
[2009-01-11 00:16:04 | 000,335,872 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe
[2009-01-11 00:15:54 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll
[2009-01-11 00:15:44 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll
[2009-01-11 00:15:36 | 000,103,424 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe
[2009-01-11 00:15:32 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\avss.dll
[2009-01-11 00:15:28 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll
[2009-01-11 00:15:12 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\avs.dll
[2009-01-11 00:15:06 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe
[2009-01-11 00:14:08 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2009-01-11 00:14:06 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2008-12-04 00:11:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-11-06 18:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007-10-13 11:30:20 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\Registration.ini
[2004-08-04 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004-08-04 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004-08-04 14:00:00 | 000,496,550 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2004-08-04 14:00:00 | 000,438,078 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004-08-04 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2004-08-04 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004-08-04 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004-08-04 14:00:00 | 000,086,626 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2004-08-04 14:00:00 | 000,069,542 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004-08-04 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004-08-04 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2004-08-04 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004-08-04 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004-08-04 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004-08-04 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-08-04 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== Alternate Data Streams ==========
@Alternate Data Stream - 24 bytes -> C:\WINDOWS:0D2FFEC79810F571
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4B7BEAFF
< End of report >
OTL logfile created on: 2011-08-20 19:30:56 - Run 1
OTL by OldTimer - Version 3.2.26.5 Folder = D:\Nowy folder (2)
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
767,48 Mb Total Physical Memory | 209,13 Mb Available Physical Memory | 27,25% Memory free
1,46 Gb Paging File | 0,93 Gb Available in Paging File | 64,03% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 4,65 Gb Free Space | 23,81% Space Free | Partition Type: NTFS
Drive D: | 92,27 Gb Total Space | 15,57 Gb Free Space | 16,88% Space Free | Partition Type: NTFS
Drive E: | 3,79 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: GABINET | User Name: Mistrz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011-08-20 19:30:43 | 000,580,096 | ---- | M] (OldTimer Tools) -- D:\Nowy folder (2)\OTL.exe
PRC - [2011-08-18 16:01:42 | 000,924,632 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-07-06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-12-16 18:38:20 | 000,375,296 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe
PRC - [2009-12-05 00:00:11 | 000,604,416 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009-09-19 08:31:01 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009-05-15 07:35:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- d:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
========== Modules (No Company Name) ==========
MOD - [2011-08-18 16:01:41 | 001,846,232 | ---- | M] () -- D:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010-11-15 22:02:34 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
MOD - [2010-07-22 01:25:18 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll
MOD - [2010-07-22 01:25:16 | 000,123,488 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll
MOD - [2010-07-22 01:25:14 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll
MOD - [2010-07-22 01:25:10 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll
MOD - [2010-07-22 01:25:08 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll
MOD - [2010-03-23 12:01:00 | 008,806,400 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll
MOD - [2010-03-19 09:34:20 | 013,545,472 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
MOD - [2010-03-19 09:34:20 | 003,334,144 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXmlPatterns4.dll
MOD - [2010-03-19 09:34:20 | 002,400,256 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll
MOD - [2010-03-19 09:34:20 | 001,511,424 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtScript4.dll
MOD - [2010-03-19 09:34:20 | 001,036,288 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll
MOD - [2010-03-19 09:34:20 | 000,389,120 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXml4.dll
MOD - [2010-03-19 09:34:20 | 000,323,584 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll
MOD - [2010-03-19 09:33:46 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll
MOD - [2010-03-19 09:33:46 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll
MOD - [2010-03-19 09:33:46 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll
MOD - [2010-03-19 09:33:46 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll
MOD - [2010-03-19 09:33:46 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll
MOD - [2010-03-19 09:33:38 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll
MOD - [2009-07-18 05:21:00 | 003,883,424 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2008-04-14 23:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008-03-29 16:42:20 | 000,159,744 | ---- | M] () -- d:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll
MOD - [2008-03-29 16:41:52 | 000,023,552 | ---- | M] () -- d:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-06-08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009-12-16 18:38:20 | 000,375,296 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2009-12-05 00:00:11 | 000,604,416 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009-12-05 00:00:10 | 000,361,216 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009-05-15 07:35:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-04-27 15:21:36 | 000,028,928 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- d:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007-03-23 17:52:12 | 000,056,552 | ---- | M] (Eng. Usama El-Mokadem) [Auto | Stopped] -- C:\WINDOWS\System32\SUSTUR.EXE -- (SRVStarter_Nerov2)
SRV - [2007-03-23 17:52:12 | 000,056,552 | ---- | M] (Eng. Usama El-Mokadem) [Auto | Stopped] -- C:\WINDOWS\System32\SUSTUR.EXE -- (SRVStarter_Nero)
========== Driver Services (SafeList) ==========
DRV - [2011-07-06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011-07-06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-05-18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-05-18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-05-18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-05-18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-08-24 10:38:36 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-08-11 14:55:39 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010-08-11 14:55:39 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010-08-11 14:39:55 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2009-09-29 09:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009-09-29 09:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009-09-29 09:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtbus.sys -- (lgbusenum)
DRV - [2009-08-21 03:08:00 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2009-08-21 03:08:00 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2009-08-21 03:08:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-04-14 01:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2007-05-02 12:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007-05-02 12:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007-05-02 12:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2006-07-24 17:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2004-12-01 14:40:08 | 002,300,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004-10-21 05:39:44 | 000,035,840 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-07-16 08:19:52 | 000,070,400 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004-06-03 04:40:46 | 000,079,360 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004-05-17 08:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004-05-17 08:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2003-10-29 07:02:00 | 000,021,120 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedir...ct=&gc=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=616163"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: plugin3@gameplaylabs.com:3.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.2
FF - prefs.js..keyword.URL: "http://start.facemoods.com/results.php?f=5&a=ddr&q="
FF - prefs.js..network.proxy.backup.ftp: "174.142.24.201"
FF - prefs.js..network.proxy.backup.ftp_port: 3128
FF - prefs.js..network.proxy.backup.gopher: "174.142.24.201"
FF - prefs.js..network.proxy.backup.gopher_port: 3128
FF - prefs.js..network.proxy.backup.socks: "174.142.24.201"
FF - prefs.js..network.proxy.backup.socks_port: 3128
FF - prefs.js..network.proxy.backup.ssl: "174.142.24.201"
FF - prefs.js..network.proxy.backup.ssl_port: 3128
FF - prefs.js..network.proxy.ftp: "174.142.24.201"
FF - prefs.js..network.proxy.ftp_port: 3128
FF - prefs.js..network.proxy.gopher: "174.142.24.201"
FF - prefs.js..network.proxy.gopher_port: 3128
FF - prefs.js..network.proxy.http: "174.142.24.201"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "174.142.24.201"
FF - prefs.js..network.proxy.socks_port: 3128
FF - prefs.js..network.proxy.ssl: "174.142.24.201"
FF - prefs.js..network.proxy.ssl_port: 3128
FF - prefs.js..network.proxy.type: 4
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: d:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: d:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: d:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2011-08-18 16:01:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2011-06-23 10:16:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-07-20 17:10:25 | 000,000,000 | ---D | M]
[2009-09-23 18:13:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Extensions
[2011-08-19 12:50:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions
[2011-07-01 13:32:14 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\cacaoweb@cacaoweb.org
[2009-12-17 21:38:10 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\firefox@tvunetworks.com
[2011-05-02 22:13:07 | 000,000,000 | ---D | M] (Media Plugin) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\plugin3@gameplaylabs.com
[2010-07-03 17:58:07 | 000,000,000 | ---D | M] (Zrzuta.eu) -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\extensions\zrzuta.eu@gmail.com
[2009-11-01 13:12:56 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\daemon-search.xml
[2009-10-08 14:11:16 | 000,001,832 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\translaticapl---angielsko-polski.xml
[2009-10-08 14:11:18 | 000,001,827 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\translaticapl---polsko-angielski.xml
[2011-03-05 21:16:30 | 000,001,592 | ---- | M] () -- C:\Documents and Settings\Mistrz\Dane aplikacji\Mozilla\Firefox\Profiles\hmfli6ss.default\searchplugins\web-search.xml
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\MISTRZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HMFLI6SS.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\MISTRZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HMFLI6SS.DEFAULT\EXTENSIONS\TINYURL.ADDON@FAST-CHAT.CO.UK.XPI
[2010-01-02 16:14:28 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-01-01 16:54:17 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2009-09-16 10:00:26 | 000,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
[2010-12-13 14:36:54 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchddr.xml
O1 HOSTS File: ([2011-08-19 12:49:12 | 000,202,984 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 facebook.com
O1 - Hosts: 127.0.0.1 www.facebook.com
O1 - Hosts: 127.0.0.1 af-za.facebook.com
O1 - Hosts: 127.0.0.1 az-az.facebook.com
O1 - Hosts: 127.0.0.1 id-id.facebook.com
O1 - Hosts: 127.0.0.1 ms-my.facebook.com
O1 - Hosts: 127.0.0.1 bs-ba.facebook.com
O1 - Hosts: 127.0.0.1 ca-es.facebook.com
O1 - Hosts: 127.0.0.1 cs-cz.facebook.com
O1 - Hosts: 127.0.0.1 cy-gb.facebook.com
O1 - Hosts: 127.0.0.1 da-dk.facebook.com
O1 - Hosts: 127.0.0.1 de-de.facebook.com
O1 - Hosts: 127.0.0.1 et-ee.facebook.com
O1 - Hosts: 127.0.0.1 en-gb.facebook.com
O1 - Hosts: 127.0.0.1 es-la.facebook.com
O1 - Hosts: 127.0.0.1 eo-eo.facebook.com
O1 - Hosts: 127.0.0.1 eu-es.facebook.com
O1 - Hosts: 127.0.0.1 tl-ph.facebook.com
O1 - Hosts: 127.0.0.1 fo-fo.facebook.com
O1 - Hosts: 127.0.0.1 fr-fr.facebook.com
O1 - Hosts: 127.0.0.1 fy-nl.facebook.com
O1 - Hosts: 127.0.0.1 ga-ie.facebook.com
O1 - Hosts: 127.0.0.1 gl-es.facebook.com
O1 - Hosts: 127.0.0.1 ko-kr.facebook.com
O1 - Hosts: 50053 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (BrowserPlugin) - {8C196D55-1F72-9FA4-D57B-3E46D0F8DCC0} - C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\GamePlayLabs Plugin\BHO.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstal...s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: AlternateShell - services32.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-09-07 14:28:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{02d30aea-eb59-11df-87d9-001109d2fab2}\Shell\AutoRun\command - "" = H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe
O33 - MountPoints2\{02d30aea-eb59-11df-87d9-001109d2fab2}\Shell\open\command - "" = H:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\keygen.exe
O33 - MountPoints2\{57884a42-bff7-11df-86f7-001109d2fab2}\Shell\AutoRun\command - "" = H:\autorun.exe
O33 - MountPoints2\{9fc9b840-90c1-11e0-be10-001109d2fab2}\Shell\AutoRun\command - "" = H:\setupSNK.exe
O33 - MountPoints2\{a8bfeada-224b-11e0-88ed-001109d2fab2}\Shell - "" = AutoRun
O33 - MountPoints2\{a8bfeada-224b-11e0-88ed-001109d2fab2}\Shell\AutoRun\command - "" = H:\USBAutoRun.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\AutoRun\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\Explore\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{aad80808-77f4-11e0-bd97-001109d2fab2}\Shell\Open\command - "" = H:\dasmo/zajedno.exe
O33 - MountPoints2\{d7efc0fd-c820-11e0-bf07-001109d2fab2}\Shell\AutoRun\command - "" = H:\b9v.exe
O33 - MountPoints2\{d7efc0fd-c820-11e0-bf07-001109d2fab2}\Shell\open\Command - "" = H:\b9v.exe
O33 - MountPoints2\{d7efc0fe-c820-11e0-bf07-001109d2fab2}\Shell\AutoRun\command - "" = I:\l10.exe
O33 - MountPoints2\{d7efc0fe-c820-11e0-bf07-001109d2fab2}\Shell\open\Command - "" = I:\l10.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\AutoRun\command - "" = G:\3o.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\explore\Command - "" = G:\3o.exe
O33 - MountPoints2\{f9e1d07a-7174-11df-856e-001109d2fab2}\Shell\open\Command - "" = G:\3o.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011-08-19 13:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mistrz\Dane aplikacji\Malwarebytes
[2011-08-19 13:04:31 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011-08-19 13:04:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2011-08-19 13:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2011-08-19 13:04:27 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011-08-19 13:04:27 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011-08-19 12:48:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
[2011-08-19 12:46:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0-lnk
[2011-08-19 12:46:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0
[2011-08-19 12:44:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2011-08-19 12:44:18 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-08-19 12:44:18 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-08-19 12:44:18 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-08-19 12:44:18 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-08-19 12:44:17 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-08-19 12:44:17 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-08-19 12:44:17 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-08-19 12:44:17 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-08-19 12:43:51 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-08-19 12:43:51 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-08-19 12:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
[2011-08-19 12:20:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
[2011-08-19 12:17:03 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
[2011-08-19 12:15:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
[2011-08-19 12:11:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\WinRAR
[2011-08-19 12:10:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
[2011-08-09 17:17:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Grupa IMAGE
========== Files - Modified Within 30 Days ==========
[2011-08-20 19:24:00 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-1004UA.job
[2011-08-20 19:02:05 | 000,000,532 | ---- | M] () -- C:\WINDOWS\tasks\Konserwacja 1 kliknięciem.job
[2011-08-20 19:02:04 | 000,000,431 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2011-08-20 19:01:56 | 000,002,140 | ---- | M] () -- C:\WINDOWS\System32\proy.xml
[2011-08-20 19:01:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-08-19 13:13:19 | 000,001,698 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2011-08-19 13:11:40 | 000,000,285 | ---- | M] () -- C:\boot.ini
[2011-08-19 13:04:31 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-08-19 12:49:12 | 000,202,984 | -H-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-08-19 12:49:12 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts
[2011-08-19 12:44:17 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-08-19 12:34:43 | 000,000,155 | ---- | M] () -- C:\WINDOWS\info1
[2011-08-19 12:20:26 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar
[2011-08-19 12:20:26 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe
[2011-08-19 12:20:26 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar
[2011-08-19 12:20:24 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar
[2011-08-19 12:11:38 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar
[2011-08-19 12:11:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
[2011-08-18 23:24:01 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-1004Core.job
[2011-08-16 18:17:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01007.Wdf
[2011-08-16 18:17:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01007.Wdf
[2011-08-15 15:56:08 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-08-15 12:57:40 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-08-11 15:52:21 | 000,007,183 | ---- | M] () -- C:\Documents and Settings\Mistrz\.recently-used.xbel
[2011-08-11 15:52:21 | 000,004,852 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.jpg
[2011-08-11 15:50:53 | 000,071,135 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.xcf
[2011-08-11 15:43:34 | 000,016,330 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\2 x 2,5 300 dpi.JPG
[2011-08-11 15:08:26 | 000,000,490 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrót do pietra1.lnk
[2011-08-11 15:05:26 | 000,004,965 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\pietra.jpg
[2011-08-11 14:59:24 | 000,014,641 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\piotrek1.JPG
[2011-08-10 00:34:07 | 000,002,311 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Google Chrome.lnk
[2011-08-10 00:13:18 | 000,199,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-08-09 17:19:00 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrzyżowania.lnk
[2011-08-09 17:17:34 | 000,000,545 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\start2.bat
[2011-08-09 17:17:13 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Prawo Jazdy ABCDT - egzamin wewnętrzny.lnk
[2011-08-09 17:16:16 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\start1.bat
[2011-08-05 17:57:51 | 002,236,276 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Bad Boy Bill feat. Alex Peace- Fast Life (Tocadisco Remix) [zapiska.pl].mp3
[2011-08-05 13:19:38 | 005,134,241 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers- CALIFORNICATION [zapiska.pl].mp3
[2011-08-05 13:08:13 | 004,096,448 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers - Otherside [zapiska.pl].mp3
[2011-07-28 14:17:54 | 000,060,296 | ---- | M] () -- C:\Documents and Settings\Mistrz\Pulpit\369899f1-2cfa-4bfb-9f55-9174b263aeee.560.jpg
========== Files Created - No Company Name ==========
[2011-08-19 13:04:31 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-08-19 12:44:19 | 000,001,698 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2011-08-19 12:20:26 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar
[2011-08-19 12:20:26 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar
[2011-08-19 12:20:24 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar
[2011-08-19 12:15:07 | 000,000,155 | ---- | C] () -- C:\WINDOWS\info1
[2011-08-19 12:11:39 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist
[2011-08-19 12:11:38 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar
[2011-08-19 12:11:38 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
[2011-08-19 12:10:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok
[2011-08-16 18:17:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01007.Wdf
[2011-08-16 18:17:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01007.Wdf
[2011-08-11 15:52:21 | 000,007,183 | ---- | C] () -- C:\Documents and Settings\Mistrz\.recently-used.xbel
[2011-08-11 15:52:21 | 000,004,852 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.jpg
[2011-08-11 15:50:53 | 000,071,135 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bez nazwy.xcf
[2011-08-11 15:27:46 | 000,016,330 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\2 x 2,5 300 dpi.JPG
[2011-08-11 15:08:26 | 000,000,490 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrót do pietra1.lnk
[2011-08-11 15:06:03 | 000,004,965 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\pietra.jpg
[2011-08-11 14:59:24 | 000,014,641 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\piotrek1.JPG
[2011-08-09 17:19:00 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Skrzyżowania.lnk
[2011-08-09 17:17:33 | 000,000,545 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\start2.bat
[2011-08-09 17:17:13 | 000,000,819 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Prawo Jazdy ABCDT - egzamin wewnętrzny.lnk
[2011-08-09 17:16:14 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\start1.bat
[2011-08-05 17:56:00 | 002,236,276 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Bad Boy Bill feat. Alex Peace- Fast Life (Tocadisco Remix) [zapiska.pl].mp3
[2011-08-05 13:10:24 | 005,134,241 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers- CALIFORNICATION [zapiska.pl].mp3
[2011-08-05 11:42:22 | 004,096,448 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Red Hot Chili Peppers - Otherside [zapiska.pl].mp3
[2011-07-30 14:50:01 | 066,289,664 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\Wideo0002.3gp
[2011-07-28 14:17:53 | 000,060,296 | ---- | C] () -- C:\Documents and Settings\Mistrz\Pulpit\369899f1-2cfa-4bfb-9f55-9174b263aeee.560.jpg
[2011-06-27 17:56:34 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-03-08 14:07:02 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-12-02 21:43:28 | 000,116,000 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-10-29 12:57:07 | 000,240,688 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-29 12:57:05 | 000,240,688 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-29 12:57:05 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-29 12:56:48 | 002,293,194 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-29 10:22:12 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db
[2010-09-20 18:04:32 | 000,884,736 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2010-09-20 18:04:32 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2010-09-20 18:04:31 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2010-09-20 18:04:30 | 000,688,128 | ---- | C] () -- C:\WINDOWS\System32\ia32math.dll
[2010-09-20 18:04:30 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\mp3lib.dll
[2010-09-20 18:04:30 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\libvorbis.dll
[2010-09-20 18:04:30 | 000,147,522 | ---- | C] () -- C:\WINDOWS\System32\language.ini
[2010-09-20 18:04:30 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\LameEncShim.dll
[2010-09-20 18:04:28 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2010-09-20 17:46:18 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
[2010-09-20 15:44:34 | 000,000,116 | ---- | C] () -- C:\WINDOWS\ConverterCore.INI
[2010-09-20 15:41:19 | 000,027,456 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll
[2010-09-20 15:41:19 | 000,018,752 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll
[2010-08-24 10:58:59 | 000,000,766 | ---- | C] () -- C:\WINDOWS\COD.INI
[2010-07-07 17:06:21 | 000,000,092 | ---- | C] () -- C:\WINDOWS\mp3wavcon.ini
[2010-07-07 16:49:26 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySmp3con.dat
[2010-05-23 12:15:34 | 000,000,528 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2010-05-19 18:10:02 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\kcpp.dll
[2010-02-22 14:14:39 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-02-22 14:14:39 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-02-22 14:14:39 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-02-22 14:14:39 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-02-22 14:14:39 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-01-26 13:38:26 | 000,197,632 | ---- | C] () -- C:\WINDOWS\System32\secuxo.exe
[2010-01-26 13:38:26 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\reotspnwyo.dll
[2010-01-26 13:38:26 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\NE15.COM
[2009-12-13 15:16:52 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-11-13 16:37:25 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2009-11-13 16:36:20 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009-11-11 16:26:56 | 000,000,534 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009-10-08 18:16:02 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009-09-13 12:15:27 | 000,000,026 | ---- | C] () -- C:\WINDOWS\neosetup.INI
[2009-09-07 22:50:13 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-09-07 22:50:13 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2009-09-07 22:34:37 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\Mistrz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-09-07 17:29:44 | 004,455,865 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2009-09-07 16:19:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-09-07 16:18:37 | 000,199,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-09-07 14:48:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009-09-07 14:44:18 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009-09-07 14:44:18 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009-09-07 14:36:22 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2009-09-07 14:30:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009-09-07 14:25:47 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009-09-06 16:52:04 | 000,828,611 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2009-09-02 22:23:04 | 000,183,296 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2009-09-02 22:22:58 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2009-09-02 22:22:40 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2009-09-02 22:22:18 | 000,146,944 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2009-09-02 22:22:10 | 000,257,024 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2009-09-02 22:22:06 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2009-09-02 22:22:00 | 000,484,864 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2009-09-02 18:45:34 | 000,829,781 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-09-02 18:38:44 | 000,425,040 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2009-09-02 18:35:12 | 000,557,003 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2009-09-02 18:01:48 | 000,146,098 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2009-08-25 20:07:36 | 000,328,334 | ---- | C] () -- C:\WINDOWS\System32\ff_kernelDeint.dll
[2009-08-11 22:21:26 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\ac3config.exe
[2009-06-02 19:11:26 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2009-06-02 19:11:16 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-01-11 00:17:32 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ts.dll
[2009-01-11 00:16:56 | 000,148,480 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll
[2009-01-11 00:16:50 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\avi.dll
[2009-01-11 00:16:14 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll
[2009-01-11 00:16:04 | 000,335,872 | ---- | C] () -- C:\WINDOWS\System32\gdsmux.exe
[2009-01-11 00:15:54 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll
[2009-01-11 00:15:44 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll
[2009-01-11 00:15:36 | 000,103,424 | ---- | C] () -- C:\WINDOWS\System32\dsmux.exe
[2009-01-11 00:15:32 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\avss.dll
[2009-01-11 00:15:28 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll
[2009-01-11 00:15:12 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\avs.dll
[2009-01-11 00:15:06 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\mkv2vfr.exe
[2009-01-11 00:14:08 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2009-01-11 00:14:06 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2008-12-04 00:11:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-11-06 18:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007-10-13 11:30:20 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\Registration.ini
[2004-08-04 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004-08-04 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004-08-04 14:00:00 | 000,496,550 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2004-08-04 14:00:00 | 000,438,078 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004-08-04 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2004-08-04 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004-08-04 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004-08-04 14:00:00 | 000,086,626 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2004-08-04 14:00:00 | 000,069,542 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004-08-04 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004-08-04 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2004-08-04 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004-08-04 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004-08-04 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004-08-04 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-08-04 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== Alternate Data Streams ==========
@Alternate Data Stream - 24 bytes -> C:\WINDOWS:0D2FFEC79810F571
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4B7BEAFF
< End of report >