OTL logfile created on: 2011-08-27 18:04:43 - Run 1 OTL by OldTimer - Version 3.2.26.6 Folder = C:\Documents and Settings\Aga\Pulpit Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 958,23 Mb Total Physical Memory | 758,89 Mb Available Physical Memory | 79,20% Memory free 1,86 Gb Paging File | 1,79 Gb Available in Paging File | 96,21% Paging File free Paging file location(s): C:\pagefile.sys 1024 1024 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 55,88 Gb Total Space | 21,58 Gb Free Space | 38,61% Space Free | Partition Type: NTFS Computer Name: AGNIESZKA | User Name: Aga | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - File not found -- C:\WINDOWS\1041537727:1080421313.exe PRC - [2011-08-27 17:35:50 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Aga\Pulpit\OTL.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2008-06-20 19:48:53 | 000,246,784 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll MOD - [2008-06-02 13:01:14 | 000,393,728 | ---- | M] () -- C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2010-12-16 19:19:34 | 000,140,608 | ---- | M] (Panda Security, S.L.) [Auto | Stopped] -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain) SRV - [2008-07-17 23:06:21 | 000,126,976 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7) SRV - [2008-05-21 13:42:56 | 000,064,000 | ---- | M] (Creative Technology Ltd) [On_Demand | Stopped] -- C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe -- (CTUPnPSv) SRV - [2008-04-07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Stopped] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-08-27 17:30:20 | 000,004,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Aga\Ustawienia lokalne\Temp\ASFWHide -- (ASFWHide) DRV - [2010-12-16 19:12:59 | 000,113,096 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\PSINProt.sys -- (PSINProt) DRV - [2010-12-16 19:12:51 | 000,111,944 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\PSINProc.sys -- (PSINProc) DRV - [2010-12-16 19:12:42 | 000,130,376 | ---- | M] (Panda Security, S.L.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\PSINKNC.sys -- (PSINKNC) DRV - [2010-12-16 19:12:34 | 000,097,352 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\PSINFile.sys -- (PSINFile) DRV - [2010-12-16 19:12:26 | 000,141,768 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\PSINAflt.sys -- (PSINAflt) DRV - [2009-03-31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2007-09-17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-05-02 12:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm) DRV - [2007-05-02 12:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl) DRV - [2007-05-02 12:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM) DRV - [2006-07-24 17:05:00 | 000,005,632 | ---- | M] () [File_System | System | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2005-10-04 18:39:58 | 003,797,632 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-07-06 05:49:38 | 000,925,572 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial) DRV - [2005-02-11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2005-01-14 17:22:54 | 000,005,504 | ---- | M] (EnE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\EKBfltr.sys -- (EKBfltr) DRV - [2004-08-04 00:29:52 | 000,166,912 | ---- | M] (S3 Graphics, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3gnbm.sys -- (S3SavageNB) DRV - [2003-07-01 21:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2001-10-18 12:00:00 | 000,006,144 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaidexp.sys -- (ViaIde) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb IE - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.bearshare.com/sidebar.html?src=ssb IE - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://wyborcza.biz/biznes/0,0.html?p=005 IE - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\..\URLSearchHook: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - Reg Error: Key error. File not found IE - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultthis.engineName: " " FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://google.pl/" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6 FF - prefs.js..extensions.enabledItems: {8b86149f-01fb-4842-9dd8-4d7eb02fd055}:0.22.0 FF - prefs.js..extensions.enabledItems: autofillForms@blueimp.net:0.9.8.0 FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07074039 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {c36177c0-224a-11da-8cd6-0800200c9a91}:3.9.5 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Oracle) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Aga\Dane aplikacji\Facebook\npfbplugin_1_0_3.dll File not found FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-08-21 17:42:00 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-05-12 21:26:53 | 000,000,000 | ---D | M] [2008-09-12 21:37:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Extensions [2011-08-26 14:33:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Firefox\Profiles\diszdf60.default\extensions [2009-06-06 09:20:53 | 000,000,000 | ---D | M] (IE Tab) -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Firefox\Profiles\diszdf60.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2011-06-30 10:37:55 | 000,000,000 | ---D | M] (All-in-One Gestures) -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Firefox\Profiles\diszdf60.default\extensions\{8b86149f-01fb-4842-9dd8-4d7eb02fd055} [2011-04-30 16:47:05 | 000,000,863 | ---- | M] () -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Firefox\Profiles\diszdf60.default\searchplugins\conduit.xml [2010-03-21 22:50:00 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\Aga\Dane aplikacji\Mozilla\Firefox\Profiles\diszdf60.default\searchplugins\imdb.xml [2011-05-12 21:24:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-07-16 16:51:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} () (No name found) -- C:\DOCUMENTS AND SETTINGS\AGA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\DISZDF60.DEFAULT\EXTENSIONS\{0545B830-F0AA-4D7E-8820-50A4629A56FE}.XPI () (No name found) -- C:\DOCUMENTS AND SETTINGS\AGA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\DISZDF60.DEFAULT\EXTENSIONS\{C36177C0-224A-11DA-8CD6-0800200C9A91}.XPI () (No name found) -- C:\DOCUMENTS AND SETTINGS\AGA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\DISZDF60.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\DOCUMENTS AND SETTINGS\AGA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\DISZDF60.DEFAULT\EXTENSIONS\AUTOFILLFORMS@BLUEIMP.NET.XPI [2010-07-16 16:51:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010-10-05 21:45:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011-08-21 17:42:00 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2010-07-16 16:51:34 | 000,423,656 | ---- | M] (Oracle) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-05-12 21:26:43 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2011-05-12 21:26:43 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-05-12 21:26:43 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-05-12 21:26:43 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2011-05-12 21:26:43 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-05-12 21:26:43 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-03-06 23:30:20 | 000,302,570 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 10430 more lines... O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Oracle) O2 - BHO: (no name) - {F97DA966-F09D-4cab-BF29-75A0026986EA} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found. O3 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\..\Toolbar\WebBrowser: (no name) - {4C4E7CDB-5BFC-4D74-83E2-8AE659B7EDA2} - No CLSID value found. O3 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found. O3 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\..\Toolbar\WebBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found. O3 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found. O4 - HKLM..\Run: [Ashampoo FireWall] C:\Program Files\Ashampoo\Ashampoo FireWall FREE\FireWall.exe () O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [PSUNMain] C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.) O4 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKU\S-1-5-21-3070851135-3017830522-3219832636-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_21.dll (Oracle) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - File not found O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2005-02-21 19:11:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-07-31 20:44:30 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{93613a0f-b596-11dd-94cb-0040cadb88c9}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe O33 - MountPoints2\{93613a0f-b596-11dd-94cb-0040cadb88c9}\Shell\Open(&0)\command - "" = F:\Recycled\ctfmon.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-08-27 17:49:26 | 000,607,288 | ---- | C] (Duplex Secure Ltd.) -- C:\Documents and Settings\Aga\Pulpit\SPTDinst-v178-x86.exe [2011-08-27 17:49:25 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Aga\Pulpit\OTL.exe [2011-08-23 21:34:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Aga\Pulpit\20110806 [2011-08-21 21:40:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Aga\Dane aplikacji\PhotoScape [2011-08-21 21:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\PhotoScape [2011-08-21 21:39:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape [2011-08-18 20:07:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ViewNX [2011-08-18 20:06:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Internet Services [2011-08-18 20:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nikon Transfer [2011-08-18 20:05:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\muvee Technologies [2011-08-18 20:05:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nikon [2011-08-18 20:05:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nikon [2011-08-18 20:05:37 | 000,000,000 | ---D | C] -- C:\Program Files\Nikon [2011-08-18 20:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ultima_T15 [2011-08-18 20:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hybrid Chords [2011-08-18 20:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\EnterNHelp [2011-08-18 20:04:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Link to Nikon [2011-08-11 22:38:02 | 003,580,431 | ---- | C] ( ) -- C:\Documents and Settings\Aga\Pulpit\NapiProjekt_setupH_(programs.pl).exe [2011-08-11 12:56:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\lP00000ChObN00000 [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-08-27 17:57:31 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-08-27 17:57:12 | 000,000,000 | ---- | M] () -- C:\WINDOWS\1041537727 [2011-08-27 17:57:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-08-27 17:54:43 | 009,961,472 | ---- | M] () -- C:\Documents and Settings\Aga\NTUSER.DAT [2011-08-27 17:54:43 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Aga\ntuser.ini [2011-08-27 17:48:40 | 000,607,288 | ---- | M] (Duplex Secure Ltd.) -- C:\Documents and Settings\Aga\Pulpit\SPTDinst-v178-x86.exe [2011-08-27 17:36:56 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Aga\Pulpit\1qsfzhp0.exe [2011-08-27 17:35:50 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Aga\Pulpit\OTL.exe [2011-08-27 17:15:18 | 000,009,173 | ---- | M] () -- C:\Documents and Settings\Aga\Pulpit\tmp.PNG [2011-08-26 14:30:51 | 000,407,422 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0036.JPG [2011-08-26 14:26:43 | 000,000,030 | ---- | M] () -- C:\Documents and Settings\Aga\intlname.ols [2011-08-26 14:15:41 | 000,439,560 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0048.JPG [2011-08-26 14:13:24 | 000,690,582 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0073.JPG [2011-08-26 14:12:38 | 000,793,952 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0043.JPG [2011-08-26 14:12:17 | 000,436,079 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0015.JPG [2011-08-26 14:12:03 | 000,283,340 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0035.JPG [2011-08-26 14:11:44 | 000,779,213 | ---- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0001.JPG [2011-08-21 21:26:42 | 000,131,584 | ---- | M] () -- C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-08-18 20:07:09 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ViewNX.lnk [2011-08-18 20:06:28 | 000,000,268 | RH-- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\PrintsService [2011-08-18 20:06:28 | 000,000,268 | RH-- | M] () -- C:\Documents and Settings\Aga\Dane aplikacji\PreferencePane [2011-08-18 20:06:28 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdw.DAT [2011-08-18 20:05:46 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nikon Transfer.lnk [2011-08-18 20:05:15 | 000,000,268 | RH-- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\Printers [2011-08-18 20:05:15 | 000,000,268 | RH-- | M] () -- C:\Documents and Settings\Aga\Dane aplikacji\Pop Flute [2011-08-18 20:05:15 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdu.DAT [2011-08-18 18:18:37 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-08-11 22:38:08 | 003,580,431 | ---- | M] ( ) -- C:\Documents and Settings\Aga\Pulpit\NapiProjekt_setupH_(programs.pl).exe [2011-08-01 07:50:43 | 000,465,605 | R--- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\Hard_Electric_Guitar.mp3 [2011-08-01 07:48:29 | 000,465,605 | R--- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\Instrumental.mp3 [2011-08-01 07:48:10 | 000,460,172 | R--- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\Spanish_Guitar.mp3 [2011-08-01 07:47:33 | 000,462,679 | R--- | M] () -- C:\Documents and Settings\Aga\Moje dokumenty\Deiva_-_Instrumental.mp3 [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-08-27 17:49:27 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Aga\Pulpit\1qsfzhp0.exe [2011-08-27 17:15:18 | 000,009,173 | ---- | C] () -- C:\Documents and Settings\Aga\Pulpit\tmp.PNG [2011-08-26 14:30:18 | 000,407,422 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0036.JPG [2011-08-26 14:27:56 | 000,779,213 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0001.JPG [2011-08-26 14:27:56 | 000,690,582 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0073.JPG [2011-08-26 14:27:56 | 000,436,079 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0015.JPG [2011-08-26 14:27:56 | 000,283,340 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0035.JPG [2011-08-26 14:27:55 | 000,793,952 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0043.JPG [2011-08-26 14:27:55 | 000,439,560 | ---- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\grzes3DSC_0048.JPG [2011-08-18 20:07:09 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ViewNX.lnk [2011-08-18 20:06:28 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PrintsService [2011-08-18 20:06:28 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Aga\Dane aplikacji\PreferencePane [2011-08-18 20:06:28 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdw.DAT [2011-08-18 20:05:46 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nikon Transfer.lnk [2011-08-18 20:05:15 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Printers [2011-08-18 20:05:15 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Aga\Dane aplikacji\Pop Flute [2011-08-18 20:05:15 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdu.DAT [2011-08-11 13:07:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\1041537727 [2011-08-01 07:50:40 | 000,465,605 | R--- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\Hard_Electric_Guitar.mp3 [2011-08-01 07:48:26 | 000,465,605 | R--- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\Instrumental.mp3 [2011-08-01 07:48:07 | 000,460,172 | R--- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\Spanish_Guitar.mp3 [2011-08-01 07:47:31 | 000,462,679 | R--- | C] () -- C:\Documents and Settings\Aga\Moje dokumenty\Deiva_-_Instrumental.mp3 [2011-03-25 03:37:08 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-03-25 03:37:07 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-03-25 03:37:06 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-03-25 03:37:06 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-03-25 03:37:06 | 000,000,590 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2011-03-25 03:37:05 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-02-25 20:46:18 | 000,000,264 | ---- | C] () -- C:\WINDOWS\System32\PSUNCpl.dat [2009-12-07 22:48:02 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2009-12-07 22:48:02 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2009-12-07 22:47:51 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Aga\Dane aplikacji\$_hpcst$.hpc [2009-05-08 21:09:05 | 000,000,055 | ---- | C] () -- C:\WINDOWS\wininit.ini [2008-07-17 23:06:21 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\UAService7.exe [2008-07-17 23:06:21 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt.dll [2008-04-13 20:45:34 | 000,015,104 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbscan.sys [2007-12-22 00:20:06 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt [2007-12-22 00:16:08 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2007-06-07 23:37:23 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Aga\Dane aplikacji\AVSDVDPlayer.m3u [2007-01-27 20:26:21 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2006-12-17 11:30:04 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\proc-1963933865.bin [2006-09-03 19:08:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll [2006-09-03 19:08:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\WMV9VCM.dll [2006-08-04 20:24:28 | 000,010,747 | ---- | C] () -- C:\WINDOWS\System32\UDBDef.exe [2006-07-05 22:00:48 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache [2006-06-30 06:44:38 | 000,131,584 | ---- | C] () -- C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2006-06-25 16:58:37 | 000,000,707 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2006-06-22 20:51:43 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI [2006-06-22 20:26:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2006-06-22 20:26:16 | 000,003,421 | ---- | C] () -- C:\WINDOWS\mozver.dat [2006-06-10 22:22:39 | 000,028,672 | ---- | C] () -- C:\WINDOWS\kmouse32.dll [2006-06-10 21:57:13 | 000,006,688 | ---- | C] () -- C:\WINDOWS\SvSMaps.ini [2006-06-10 11:59:54 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2006-06-08 19:40:25 | 000,000,014 | ---- | C] () -- C:\WINDOWS\adiras.ini [2006-06-06 19:54:36 | 000,069,616 | ---- | C] () -- C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2006-06-06 19:28:09 | 000,000,556 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006-06-06 19:17:23 | 006,388,896 | -H-- | C] () -- C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\IconCache.db [2006-06-06 19:17:23 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Aga\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2006-01-30 16:25:30 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2006-01-30 16:24:30 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2006-01-30 16:24:27 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56spn.dll [2006-01-30 16:24:27 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56itl.dll [2006-01-30 16:24:27 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56eng.dll [2006-01-30 16:24:27 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56brz.dll [2006-01-30 16:24:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll [2006-01-30 16:24:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\sm56ger.dll [2006-01-30 16:24:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\sm56fra.dll [2006-01-30 16:24:27 | 000,053,248 | ---- | C] () -- C:\WINDOWS\sm56jpn.dll [2006-01-30 16:24:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS\sm56cht.dll [2006-01-30 16:24:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS\sm56chs.dll [2005-02-22 04:26:39 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2005-02-22 04:26:34 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2005-02-22 04:26:34 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2005-02-22 04:26:33 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2005-02-22 04:26:27 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe [2005-02-22 04:26:27 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe [2005-02-22 04:26:26 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2005-02-22 04:26:26 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2005-02-22 04:26:25 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2005-02-22 04:26:24 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe [2005-02-22 04:26:23 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2005-02-22 04:26:23 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2005-02-22 04:26:22 | 001,128,458 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2005-02-22 04:26:22 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2005-02-22 04:26:22 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2005-02-22 04:26:22 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2005-02-22 04:26:22 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2005-02-22 04:26:22 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2005-02-22 04:26:21 | 000,504,670 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2005-02-22 04:26:21 | 000,445,370 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2005-02-22 04:26:21 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2005-02-22 04:26:21 | 000,090,620 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2005-02-22 04:26:21 | 000,072,576 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2005-02-22 04:26:21 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2005-02-22 04:26:21 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2005-02-22 04:26:21 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2005-02-22 04:26:21 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2005-02-22 04:26:20 | 000,004,711 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2005-02-22 04:26:20 | 000,000,976 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2005-02-22 04:26:18 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2005-02-22 04:26:16 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2005-02-22 04:26:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2005-02-22 04:26:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2005-02-22 04:26:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2005-02-22 04:26:16 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2005-02-22 04:26:15 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2005-02-22 04:26:15 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2005-02-22 04:26:15 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2005-02-22 04:26:15 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2005-02-22 04:26:15 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2005-02-22 04:26:15 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe [2005-02-22 04:26:15 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2005-02-22 04:26:10 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2005-02-22 04:26:07 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2005-02-22 04:26:07 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2005-02-22 04:26:06 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2005-02-22 04:26:06 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe [2005-02-22 04:26:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2005-02-22 04:26:04 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2005-02-22 04:26:03 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe [2005-02-22 04:26:02 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com [2005-02-22 04:26:02 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2005-02-22 04:26:01 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2005-02-22 04:26:01 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2005-02-22 04:26:00 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com [2005-02-22 04:25:59 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2005-02-22 04:25:55 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com [2005-02-22 04:25:55 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2005-02-22 04:25:54 | 000,003,619 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2005-02-22 04:25:53 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2005-02-22 04:25:53 | 000,273,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2005-02-22 04:25:53 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe [2005-02-22 04:25:53 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe [2005-02-22 04:25:52 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2005-02-22 04:25:52 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2005-02-22 04:25:51 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com [2005-02-22 04:25:51 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe [2005-02-22 04:25:51 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe [2005-02-22 04:25:50 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2005-02-22 04:25:49 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe [2005-02-22 04:25:47 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe [2005-02-22 04:25:47 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2005-02-22 04:25:45 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2005-02-22 04:25:44 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll [2005-02-22 04:25:44 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com [2005-02-22 04:25:43 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2005-02-22 04:25:39 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2005-02-22 04:25:39 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe [2005-02-22 04:25:39 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2005-02-22 04:22:33 | 000,000,659 | ---- | C] () -- C:\WINDOWS\win.ini [2005-02-22 04:22:33 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2005-02-22 04:22:33 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2005-02-22 04:22:32 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2005-02-22 04:22:30 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2005-02-22 04:22:29 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2005-02-22 04:22:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2005-02-22 04:22:28 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2002-09-18 01:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe [1999-01-22 17:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL [color=#E56717]========== LOP Check ==========[/color] [2008-09-12 21:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Auslogics [2010-08-02 21:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Dropbox [2011-03-06 13:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1 [2007-04-14 08:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\FrostWire [2009-07-31 20:16:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Gadu-Gadu [2011-07-05 20:57:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Gadu-Gadu 10 [2010-04-08 20:00:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\IsolatedStorage [2008-07-17 23:06:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\ldoce4 [2009-03-11 19:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Nowe Gadu-Gadu [2011-02-25 20:47:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Panda Security [2009-12-07 22:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\PC Suite [2011-08-21 21:59:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\PhotoScape [2011-05-01 14:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\PriceGong [2009-09-11 20:00:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\Radmin [2007-07-04 19:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\SPAMfighter [2011-03-22 22:22:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\SuperMemo World [2010-11-11 13:29:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\TeamViewer [2011-08-11 14:31:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Aga\Dane aplikacji\uTorrent [2011-08-18 20:06:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EnterNHelp [2011-07-05 20:57:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2011-08-18 20:05:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hybrid Chords [2011-08-18 20:06:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Internet Services [2011-08-11 12:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\lP00000ChObN00000 [2011-08-18 20:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nikon [2011-02-25 20:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2011-07-10 16:48:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-08-18 20:06:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ultima_T15 [2010-12-23 00:13:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{615DB4DC-B7C1-4125-9858-78EF460B76D2} [2010-12-23 00:12:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4028A14-0B3A-41DD-AE92-71C069AB3246} [2009-10-05 20:06:45 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 816 bytes -> C:\WINDOWS\1041537727:1080421313.exe @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:B755D674 < End of report >