
od kilku dni w w trayu wyswietla mi sie napis "your computer is infected" mam noda, skanowalem dyski ale nic nie wykrylo wiec zwracam sie do was z proźba o pomoc.
log z otl
- Kod: Zaznacz wszystko
- OTL logfile created on: 2009-09-08 23:13:32 - Run 1
 OTL by OldTimer - Version 3.0.10.7 Folder = E:\sciagniete
 Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
 Internet Explorer (Version = 8.0.6001.18702)
 Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
 2,00 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 61,95% Memory free
 3,85 Gb Paging File | 2,96 Gb Available in Paging File | 77,06% Paging File free
 Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
 Drive C: | 39,07 Gb Total Space | 8,89 Gb Free Space | 22,75% Space Free | Partition Type: NTFS
 Drive D: | 56,10 Gb Total Space | 33,14 Gb Free Space | 59,07% Space Free | Partition Type: NTFS
 Drive E: | 35,46 Gb Total Space | 10,79 Gb Free Space | 30,43% Space Free | Partition Type: NTFS
 Drive F: | 55,66 Gb Total Space | 26,96 Gb Free Space | 48,44% Space Free | Partition Type: FAT32
 G: Drive not present or media not loaded
 H: Drive not present or media not loaded
 I: Drive not present or media not loaded
 
 Computer Name: JOA
 Current User Name: prezes
 Logged in as Administrator.
 
 Current Boot Mode: Normal
 Scan Mode: Current user
 Company Name Whitelist: Off
 Skip Microsoft Files: Off
 File Age = 30 Days
 Output = Standard
 
 [color=#E56717]========== Processes (SafeList) ==========[/color]
 
 PRC - [2009-01-14 06:34:00 | 00,598,016 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
 PRC - [2009-01-14 06:34:00 | 00,598,016 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
 PRC - [2009-02-10 12:02:28 | 00,385,240 | R--- | M] (cFos Software GmbH) -- C:\Program Files\cFosSpeed\spd.exe
 PRC - [2009-02-06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET Smart Security\ekrn.exe
 PRC - [2009-07-13 02:51:03 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
 PRC - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
 PRC - [2008-04-14 22:51:18 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
 PRC - [2009-07-23 02:46:15 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe
 PRC - [2009-02-06 14:23:12 | 02,021,400 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET Smart Security\egui.exe
 PRC - [2006-01-11 09:08:00 | 00,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
 PRC - [2009-04-22 17:38:50 | 00,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
 PRC - [2007-09-07 15:54:54 | 00,159,744 | ---- | M] () -- D:\Program Files\Razer\DeathAdder\razerhid.exe
 PRC - [2009-03-09 17:49:18 | 00,037,888 | ---- | M] () -- D:\Program Files\Winamp\winampa.exe
 PRC - [2009-07-25 05:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
 PRC - [2009-04-22 17:37:16 | 00,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
 PRC - [2006-11-24 15:24:16 | 00,143,360 | ---- | M] () -- D:\Program Files\Razer\DeathAdder\razertra.exe
 PRC - [2008-11-24 20:44:18 | 00,869,888 | ---- | M] () -- D:\Program Files\ALLPlayer\ALLUpdate.exe
 PRC - [2009-09-01 16:50:12 | 05,360,640 | ---- | M] (Creative Team S.A.) -- D:\Program Files\WapSter\WapSter AQQ\AQQ.exe
 PRC - [2007-05-07 15:35:14 | 00,163,840 | ---- | M] (Razer Inc.) -- D:\Program Files\Razer\DeathAdder\razerofa.exe
 PRC - [2007-09-06 15:08:02 | 00,136,136 | ---- | M] (DT Soft Ltd.) -- D:\Program Files\DAEMON Tools Pro\DTProAgent.exe
 PRC - [2009-06-25 15:12:42 | 01,414,144 | ---- | M] (Nokia) -- D:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
 PRC - [2009-02-06 18:51:28 | 03,885,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 PRC - [2008-04-14 22:51:32 | 01,695,232 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
 PRC - [2009-01-03 13:28:20 | 01,203,880 | ---- | M] (Beepa P/L) -- D:\FRAPS\FRAPS.EXE
 PRC - [2009-02-06 17:07:48 | 00,027,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
 PRC - [2005-07-20 17:44:18 | 00,598,016 | ---- | M] (Ralink Technology, Corp.) -- C:\WINDOWS\RaUI.exe
 PRC - [2009-08-06 20:27:03 | 00,625,952 | ---- | M] (LogMeIn Inc.) -- D:\Program Files\Hamachi\hamachi.exe
 PRC - [2009-08-13 21:53:50 | 03,109,264 | ---- | M] (Xfire Inc.) -- D:\Program Files\Xfire\xfire.exe
 PRC - [2009-06-02 10:10:08 | 00,637,952 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
 PRC - [2009-03-09 17:50:48 | 01,433,952 | ---- | M] (Nullsoft) -- D:\Program Files\Winamp\winamp.exe
 PRC - [2009-02-04 17:35:50 | 01,015,296 | ---- | M] () -- F:\GTASA\GTA San Andreas\samp.exe
 PRC - [2003-12-22 16:36:14 | 00,581,632 | ---- | M] () -- D:\Program Files\Ventrilo Mix\data\Programs\Ventrilo 2.1.4.exe
 PRC - [2009-02-10 12:02:24 | 00,876,760 | R--- | M] (cFos Software GmbH) -- C:\Program Files\cFosSpeed\cFosSpeed.exe
 PRC - [2009-05-28 13:45:00 | 00,132,096 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
 PRC - [2009-03-30 10:06:58 | 00,090,112 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe
 PRC - [2009-03-30 10:11:14 | 00,120,320 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
 PRC - [2009-07-03 16:49:06 | 01,029,456 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
 PRC - [2001-10-26 21:30:04 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\unsecapp.exe
 PRC - [2009-02-06 12:10:02 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe
 PRC - [2009-07-03 16:49:06 | 00,520,024 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
 PRC - [2009-08-04 20:41:21 | 00,908,280 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
 PRC - [2009-09-08 23:13:11 | 00,514,048 | ---- | M] (OldTimer Tools) -- E:\sciagniete\OTL.exe
 
 [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
 SRV - [2008-07-25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
 SRV - [2009-01-14 06:34:00 | 00,598,016 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
 SRV - [2009-01-13 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\System32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
 SRV - [2009-02-10 12:02:28 | 00,385,240 | R--- | M] (cFos Software GmbH) -- C:\Program Files\cFosSpeed\spd.exe -- (cFosSpeedS [Auto | Running])
 SRV - [2008-07-25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
 SRV - [2009-02-06 14:27:06 | 00,020,680 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
 SRV - [2009-02-06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn [Auto | Running])
 SRV - [2008-07-29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
 SRV - [2009-07-13 02:51:02 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate [Auto | Stopped])
 SRV - [2008-04-14 22:50:46 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
 SRV - [2005-04-04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
 SRV - [2008-07-29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
 SRV - [2008-04-15 00:50:34 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\irmon.dll -- (Irmon [Auto | Running])
 SRV - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
 SRV - [2009-07-03 16:49:06 | 01,029,456 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service [Auto | Running])
 SRV - [2008-07-29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
 SRV - [2009-07-23 02:46:15 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
 SRV - [2009-06-02 10:10:08 | 00,637,952 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Running])
 
 [color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
 DRV - [2009-06-27 15:20:31 | 00,020,747 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\DRIVERS\AegisP.sys -- (AegisP [Auto | Running])
 DRV - [2006-01-13 07:39:00 | 03,844,288 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])
 DRV - [2006-06-27 14:24:16 | 00,031,744 | ---- | M] (AMD, Inc.) -- C:\WINDOWS\System32\DRIVERS\AmdTools.sys -- (AmdTools [On_Demand | Running])
 DRV - [2009-01-14 09:14:01 | 03,455,488 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
 DRV - [2009-09-02 14:36:13 | 00,029,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\beep.sys -- (Beep [System | Running])
 DRV - [2009-02-10 12:02:34 | 00,787,672 | ---- | M] (cFos Software GmbH) -- C:\WINDOWS\System32\DRIVERS\cfosspeed.sys -- (cFosSpeed [On_Demand | Running])
 DRV - [2007-08-02 17:32:26 | 00,022,784 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) -- C:\WINDOWS\System32\drivers\dadder.sys -- (DAdderFltr [On_Demand | Running])
 DRV - [2009-02-06 14:19:52 | 00,113,448 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
 DRV - [2009-02-06 14:23:18 | 00,106,208 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\ehdrv.sys -- (ehdrv [System | Running])
 DRV - [2009-02-06 14:24:18 | 00,130,952 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfw.sys -- (epfw [Auto | Running])
 DRV - [2009-02-06 14:24:22 | 00,033,096 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\Epfwndis.sys -- (Epfwndis [On_Demand | Running])
 DRV - [2009-02-06 14:24:22 | 00,056,280 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfwtdi.sys -- (epfwtdi [System | Running])
 DRV - [2009-08-06 20:27:05 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
 DRV - [2008-04-13 22:06:06 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
 DRV - [2001-08-17 23:51:32 | 00,018,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\irsir.sys -- (irsir [On_Demand | Running])
 DRV - [2009-07-03 16:49:08 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd [Boot | Running])
 DRV - [2009-02-09 08:37:46 | 00,017,664 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd [On_Demand | Stopped])
 DRV - [2009-02-09 08:37:46 | 00,022,016 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc [On_Demand | Stopped])
 DRV - [2009-03-19 14:48:18 | 00,136,704 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu [On_Demand | Stopped])
 DRV - [2009-03-19 14:48:12 | 00,008,320 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc [On_Demand | Stopped])
 DRV - [2005-06-28 07:25:44 | 00,088,960 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus [Boot | Running])
 DRV - [2005-04-05 21:22:28 | 00,033,536 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
 DRV - [2005-04-05 21:22:30 | 00,012,928 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
 DRV - [2008-08-26 10:26:12 | 00,018,816 | ---- | M] (Nokia) -- C:\WINDOWS\System32\DRIVERS\pccsmcfd.sys -- (pccsmcfd [On_Demand | Stopped])
 DRV - [2001-08-18 01:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
 DRV - [2008-08-20 19:58:58 | 00,044,944 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
 DRV - [2005-07-01 12:22:00 | 00,339,072 | ---- | M] (Ralink Technology Inc.) -- C:\WINDOWS\System32\DRIVERS\RT61.sys -- (RT61 [On_Demand | Running])
 DRV - [2008-04-13 22:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
 DRV - [2009-06-27 15:18:36 | 00,685,816 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
 DRV - [2009-02-09 08:37:48 | 00,007,808 | ---- | M] (Nokia) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev [On_Demand | Stopped])
 DRV - [2008-04-14 00:15:38 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbser.sys -- (usbser [On_Demand | Stopped])
 DRV - [2009-02-09 08:37:56 | 00,007,808 | ---- | M] (Nokia) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt [On_Demand | Stopped])
 
 [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
 [color=#E56717]========== Internet Explorer ==========[/color]
 
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
 
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 [color=#E56717]========== FireFox ==========[/color]
 
 FF - prefs.js..extensions.enabledItems: {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.32.0
 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
 FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
 FF - prefs.js..extensions.enabledItems: NPDyyno@dyyno.com:1.0.0.26
 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2
 
 FF - HKLM\software\mozilla\Firefox\extensions\\bkmrksync@nokia.com: D:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009-07-03 18:28:31 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-09-01 08:41:17 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-06-27 16:36:09 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Firefox\extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2009-09-08 21:56:54 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2009-08-04 20:41:24 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2009-08-04 20:41:24 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
 
 [2009-06-27 15:23:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Extensions
 [2009-06-27 15:23:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
 [2009-09-08 16:44:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Firefox\Profiles\6zqdxs8c.default\extensions
 [2009-09-01 11:45:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Firefox\Profiles\6zqdxs8c.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
 [2009-07-16 20:20:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Firefox\Profiles\6zqdxs8c.default\extensions\ChoiceGuard@Microsoft
 [2009-07-24 05:01:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\prezes\Dane aplikacji\mozilla\Firefox\Profiles\6zqdxs8c.default\extensions\NPDyyno@dyyno.com
 
 O1 HOSTS File: (412 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
 O1 - Hosts: 127.0.0.1 localhost
 O1 - Hosts: 5.224.200.46 pes6gate-ec.winning-eleven.net
 O1 - Hosts: 210.249.144.166 we9stun.winning-eleven.net
 O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - d:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
 O4 - HKLM..\Run: [amd_dc_opt] D:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe ()
 O4 - HKLM..\Run: [braviax] File not found
 O4 - HKLM..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe (cFos Software GmbH)
 O4 - HKLM..\Run: [DeathAdder] d:\Program Files\Razer\DeathAdder\razerhid.exe ()
 O4 - HKLM..\Run: [egui] D:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
 O4 - HKLM..\Run: [Regedit32] C:\WINDOWS\System32\regedit.exe File not found
 O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
 O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
 O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
 O4 - HKLM..\Run: [sys32_nov] C:\WINDOWS\System32\sys32_nov.exe File not found
 O4 - HKLM..\Run: [WinampAgent] d:\Program Files\Winamp\winampa.exe ()
 O4 - HKCU..\Run: [ALLUpdate] d:\Program Files\ALLPlayer\ALLUpdate.exe ()
 O4 - HKCU..\Run: [AQQ] D:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.)
 O4 - HKCU..\Run: [DAEMON Tools Pro Agent] D:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd.)
 O4 - HKCU..\Run: [Fraps] D:\FRAPS\FRAPS.EXE (Beepa P/L)
 O4 - HKCU..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
 O4 - HKCU..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
 O4 - HKCU..\Run: [msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
 O4 - HKCU..\Run: [PC Suite Tray] D:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
 O4 - HKCU..\Run: [RayV] C:\Program Files\RayV\RayV\RayV.exe (RayV)
 O4 - HKCU..\Run: [RGSC] D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe File not found
 O4 - HKCU..\Run: [SpybotSD TeaTimer] d:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
 O4 - HKCU..\Run: [sys32_nov] C:\Documents and Settings\prezes\sys32_nov.exe File not found
 O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
 O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\WINDOWS\RaUI.exe (Ralink Technology, Corp.)
 O4 - Startup: C:\Documents and Settings\prezes\Menu Start\Programy\Autostart\hamachi.lnk = D:\Program Files\Hamachi\hamachi.exe (LogMeIn Inc.)
 O4 - Startup: C:\Documents and Settings\prezes\Menu Start\Programy\Autostart\Xfire.lnk = D:\Program Files\Xfire\xfire.exe (Xfire Inc.)
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
 O9 - Extra 'Tools' menuitem : Ustawienia wtyczki &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.32.0\gears.dll (Google Inc.)
 O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - d:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
 O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
 O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
 O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
 O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
 O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
 O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
 O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
 O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/Default/uno1/GAME_UNO1.cab (UnoCtrl Class)
 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
 O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
 O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
 O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 81.15.252.15 81.15.252.14 213.172.186.4
 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\ipp - No CLSID value found
 O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp - No CLSID value found
 O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
 O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
 O20 - AppInit_DLLs: (cru629.datCorporatio) - C:\WINDOWS\System32\cru629.dat ()
 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
 O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - C:\WINDOWS\System32\antiwpa.dll ()
 O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.dll (ATI Technologies Inc.)
 O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
 O31 - SafeBoot: AlternateShell - cmd.exe
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2009-06-27 15:08:53 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
 O34 - HKLM BootExecute: (autocheck) - File not found
 O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
 O34 - HKLM BootExecute: (*) - File not found
 O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
 
 [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
 [41 C:\WINDOWS\System32\*.tmp files]
 [3 C:\WINDOWS\*.tmp files]
 [2009-09-07 03:02:58 | 00,216,474 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\plan lekcji.JPG
 [2009-09-07 00:34:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Pulpit\Nowy folder (4)
 [2009-09-06 23:12:12 | 00,000,483 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\GoalServer6.exe.lnk
 [2009-09-05 15:54:48 | 00,006,144 | ---- | C] () -- C:\WINDOWS\System32\cru629.dat
 [2009-09-05 15:54:48 | 00,006,144 | ---- | C] () -- C:\WINDOWS\cru629.dat
 [2009-09-05 15:09:14 | 00,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
 [2009-09-02 18:52:43 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
 [2009-09-02 18:52:43 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
 [2009-09-02 17:41:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage
 [2009-09-02 15:44:45 | 00,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
 [2009-09-02 15:44:28 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
 [2009-09-01 12:26:50 | 00,015,688 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
 [2009-09-01 12:09:11 | 00,000,797 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\Spybot - Search & Destroy.lnk
 [2009-09-01 12:09:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
 [2009-09-01 11:32:29 | 00,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
 [2009-09-01 11:32:05 | 00,064,160 | ---- | C] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
 [2009-09-01 11:30:49 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{EF63305C-BAD7-4144-9208-D65528260864}
 [2009-09-01 11:30:48 | 00,000,867 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ad-Aware.lnk
 [2009-09-01 11:30:39 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft
 [2009-09-01 11:30:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft
 [2009-08-30 23:52:10 | 00,118,472 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\kukiuku.JPG
 [2009-08-30 23:51:57 | 00,031,875 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\kkekekk.JPG
 [2009-08-30 23:51:54 | 00,220,784 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\koliazas22.jpg
 [2009-08-30 15:23:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Pulpit\Nowy folder (3)
 [2009-08-30 14:55:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Pulpit\Nowy folder (2)
 [2009-08-30 14:15:56 | 00,000,540 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\mIRC.lnk
 [2009-08-30 14:15:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Dane aplikacji\mIRC
 [2009-08-29 13:51:13 | 00,002,280 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\deagle-1.sfk
 [2009-08-29 13:51:11 | 00,283,585 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\deagle-1.wav
 [2009-08-29 13:43:04 | 07,365,239 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\Surce - Boulevard of memories (Drum And Bass) .mp4
 [2009-08-29 13:29:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Dane aplikacji\AdobeUM
 [2009-08-29 03:09:57 | 05,392,415 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\Pendulum & Freestylers - Painkiller [Clip].mp3
 [2009-08-28 16:06:40 | 07,778,542 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\The_Qemists-On_The_Run_(feat._Jenna_G).mp3
 [2009-08-28 15:34:07 | 08,362,199 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\11-the_qemists-the_perfect_high.mp3
 [2009-08-26 18:13:25 | 04,046,294 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\GrubSon - Sila z PokOju.mp3
 [2009-08-26 11:27:03 | 10,965,417 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\01-the_qemists_feat_devlin_love-s_w_a_g_(interface_remix).mp3
 [2009-08-26 10:49:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
 [2009-08-26 10:44:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Pulpit\Listy
 [2009-08-26 08:29:55 | 10,965,417 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\01-the_qemists_feat_devlin_love-s_w_a_g_(interface_remix).mp3
 [2009-08-26 08:25:35 | 13,291,392 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\Zen & Killabeatz ft. Gry - Your shout.mp3
 [2009-08-26 08:14:54 | 09,852,928 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\Inside_Info-Perfect_Crime_ft._Ruth_S_(Subsonik_Remix).mp3
 [2009-08-26 07:10:33 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
 [2009-08-26 07:10:33 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
 [2009-08-26 07:10:33 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
 [2009-08-25 02:13:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
 [2009-08-17 19:36:41 | 03,627,916 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\donguralesko - dzi dzi dziwko.mp3
 [2009-08-17 15:31:50 | 04,165,413 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\mast - bylem, jestem, pozostan_io_na%11.mp3
 [2009-08-17 12:37:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Pulpit\z aaparata
 [2009-08-15 04:39:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
 [2009-08-15 01:12:45 | 00,000,486 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\PSL Host GS6.exe.lnk
 [2009-08-14 19:29:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\prezes\Dane aplikacji\RayV
 [2009-08-14 19:29:30 | 00,000,000 | ---D | C] -- C:\Program Files\RayV
 [2009-08-14 11:41:35 | 00,000,458 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\pes6 czysty.exe.lnk
 [2009-08-14 11:39:57 | 00,000,474 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\Settings.lnk
 [2009-08-14 00:41:14 | 00,000,528 | ---- | C] () -- C:\Documents and Settings\prezes\Pulpit\Audacity.lnk
 [2009-08-13 21:53:54 | 00,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
 [2009-08-11 21:11:41 | 04,431,529 | ---- | C] () -- C:\Documents and Settings\prezes\Moje dokumenty\rudenko - everybody.mp3
 [2009-08-05 22:17:16 | 00,001,684 | ---- | C] () -- C:\WINDOWS\kaillera.ini
 [2009-07-23 02:14:42 | 00,139,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
 [2009-07-14 04:34:31 | 00,000,055 | ---- | C] () -- C:\WINDOWS\SpeedGear.INI
 [2009-07-05 14:19:41 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
 [2009-06-27 15:33:14 | 00,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
 [2009-06-27 15:25:53 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
 [2009-06-27 15:25:52 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
 [2009-06-27 15:25:44 | 02,041,363 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
 [2009-06-27 15:25:43 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
 [2009-06-27 15:25:43 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
 [2009-06-27 15:25:42 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
 [2009-06-27 15:25:32 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
 [2009-06-27 15:25:32 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
 [2009-06-27 15:24:20 | 00,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dllBAD51
 [2009-06-27 15:24:20 | 00,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dll
 [2009-06-27 15:20:52 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\Install6x.dll
 [2009-06-27 15:18:36 | 00,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
 [2009-04-22 00:19:06 | 00,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
 [2005-04-26 02:05:50 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbZlib.dll
 [2005-04-26 02:05:50 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbaZlib.dll
 [2001-08-18 01:47:36 | 00,029,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\beep.sys
 [2001-07-22 02:16:20 | 00,000,507 | ---- | C] () -- C:\WINDOWS\win.ini
 [2001-07-22 02:15:52 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
 [1997-06-14 02:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
 
 [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
 [41 C:\WINDOWS\System32\*.tmp files]
 [3 C:\WINDOWS\*.tmp files]
 [2009-09-08 22:56:00 | 00,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
 [2009-09-08 22:52:28 | 00,079,008 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
 [2009-09-08 22:39:32 | 00,000,244 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\keybinds.ini
 [2009-09-08 22:37:57 | 00,000,412 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
 [2009-09-08 22:17:14 | 00,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
 [2009-09-08 21:43:31 | 00,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
 [2009-09-08 21:43:29 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
 [2009-09-08 21:43:27 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
 [2009-09-08 21:43:22 | 00,006,144 | ---- | M] () -- C:\WINDOWS\System32\cru629.dat
 [2009-09-08 21:43:22 | 00,006,144 | ---- | M] () -- C:\WINDOWS\cru629.dat
 [2009-09-07 03:02:58 | 00,216,474 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\plan lekcji.JPG
 [2009-09-07 00:34:47 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts_backup
 [2009-09-06 23:12:12 | 00,000,483 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\GoalServer6.exe.lnk
 [2009-09-06 00:43:15 | 00,187,392 | ---- | M] () -- C:\Documents and Settings\prezes\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 [2009-09-02 18:52:47 | 00,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
 [2009-09-02 18:52:43 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
 [2009-09-02 18:52:43 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
 [2009-09-02 17:41:12 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
 [2009-09-02 17:38:49 | 00,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
 [2009-09-02 15:31:01 | 00,000,658 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\AQQ.lnk
 [2009-09-02 14:36:13 | 00,029,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\beep.sys
 [2009-09-01 12:09:11 | 00,000,797 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\Spybot - Search & Destroy.lnk
 [2009-09-01 11:32:30 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
 [2009-09-01 11:30:48 | 00,000,867 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ad-Aware.lnk
 [2009-08-30 23:52:22 | 00,118,472 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\kukiuku.JPG
 [2009-08-30 23:52:08 | 00,220,784 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\koliazas22.jpg
 [2009-08-30 23:52:08 | 00,031,875 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\kkekekk.JPG
 [2009-08-30 14:15:56 | 00,000,540 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\mIRC.lnk
 [2009-08-29 13:51:51 | 00,002,280 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\deagle-1.sfk
 [2009-08-29 13:46:40 | 07,365,239 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\Surce - Boulevard of memories (Drum And Bass) .mp4
 [2009-08-29 03:10:25 | 05,392,415 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\Pendulum & Freestylers - Painkiller [Clip].mp3
 [2009-08-28 16:08:49 | 07,778,542 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\The_Qemists-On_The_Run_(feat._Jenna_G).mp3
 [2009-08-28 15:39:09 | 08,362,199 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\11-the_qemists-the_perfect_high.mp3
 [2009-08-26 08:26:32 | 13,291,392 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\Zen & Killabeatz ft. Gry - Your shout.mp3
 [2009-08-26 08:16:31 | 09,852,928 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\Inside_Info-Perfect_Crime_ft._Ruth_S_(Subsonik_Remix).mp3
 [2009-08-24 12:12:39 | 00,000,817 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\Play MTA San Andreas.lnk
 [2009-08-17 19:39:37 | 03,627,916 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\donguralesko - dzi dzi dziwko.mp3
 [2009-08-17 15:35:17 | 04,165,413 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\mast - bylem, jestem, pozostan_io_na%11.mp3
 [2009-08-15 15:42:07 | 00,032,424 | ---- | M] () -- C:\Documents and Settings\prezes\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
 [2009-08-15 15:41:39 | 00,148,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
 [2009-08-15 04:43:57 | 01,042,454 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
 [2009-08-15 04:43:57 | 00,490,284 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
 [2009-08-15 04:43:57 | 00,432,356 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
 [2009-08-15 04:43:57 | 00,083,660 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
 [2009-08-15 04:43:57 | 00,067,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
 [2009-08-15 01:12:45 | 00,000,486 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\PSL Host GS6.exe.lnk
 [2009-08-14 18:32:01 | 00,000,474 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\Settings.lnk
 [2009-08-14 11:41:35 | 00,000,458 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\pes6 czysty.exe.lnk
 [2009-08-14 10:26:11 | 00,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
 [2009-08-14 00:41:14 | 00,000,528 | ---- | M] () -- C:\Documents and Settings\prezes\Pulpit\Audacity.lnk
 [2009-08-13 21:53:54 | 00,041,872 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll
 [2009-08-13 17:59:59 | 00,189,104 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
 [2009-08-13 17:59:59 | 00,189,104 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
 [2009-08-13 17:58:34 | 00,139,584 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
 [2009-08-11 21:12:58 | 04,431,529 | ---- | M] () -- C:\Documents and Settings\prezes\Moje dokumenty\rudenko - everybody.mp3
 
 [color=#E56717]========== Alternate Data Streams ==========[/color]
 
 @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
 < End of report >

 
	
