OTL logfile created on: 2011-09-08 17:11:26 - Run 1
OTL by OldTimer - Version 3.2.27.0     Folder = C:\Documents and Settings\Beker-Quake\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,25 Gb Total Physical Memory | 2,01 Gb Available Physical Memory | 61,94% Memory free
5,09 Gb Paging File | 3,99 Gb Available in Paging File | 78,44% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 37,88 Gb Free Space | 38,79% Space Free | Partition Type: NTFS
Drive E: | 195,31 Gb Total Space | 8,88 Gb Free Space | 4,55% Space Free | Partition Type: NTFS
Drive F: | 172,79 Gb Total Space | 138,83 Gb Free Space | 80,35% Space Free | Partition Type: NTFS
Drive G: | 19,53 Gb Total Space | 2,04 Gb Free Space | 10,43% Space Free | Partition Type: NTFS
Drive H: | 45,90 Gb Total Space | 6,21 Gb Free Space | 13,53% Space Free | Partition Type: NTFS
Drive I: | 46,34 Gb Total Space | 10,72 Gb Free Space | 23,14% Space Free | Partition Type: FAT32
Drive N: | 3,85 Gb Total Space | 3,77 Gb Free Space | 97,83% Space Free | Partition Type: FAT32
 
Computer Name: MASTER | User Name: Beker-Quake | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-09-08 17:04:05 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2011-09-07 16:02:57 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011-05-18 11:46:30 | 000,123,392 | ---- | M] (Saitek) -- C:\Program Files\SmartTechnology\Software\SaiMfd.exe
PRC - [2011-05-18 11:46:10 | 000,228,352 | ---- | M] (Saitek) -- C:\Program Files\SmartTechnology\Software\ProfilerU.exe
PRC - [2010-04-01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ccsvchst.exe
PRC - [2008-10-20 22:18:26 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2008-05-16 12:33:48 | 020,336,640 | ---- | M] () -- C:\Program Files\Orange\Orange.exe
PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-12-16 01:06:00 | 000,176,128 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
PRC - [2004-09-29 12:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2000-01-01 02:00:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-09-07 16:02:55 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011-07-31 19:50:04 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\{b5fb4c8d-8220-4a63-8e0f-708cdd0f4c3d}\components\RadioWMPCoreGecko6.dll
MOD - [2011-06-15 21:05:41 | 006,271,136 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011-02-24 02:57:18 | 000,555,112 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2008-10-20 22:18:26 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
MOD - [2008-05-16 12:33:48 | 020,336,640 | ---- | M] () -- C:\Program Files\Orange\Orange.exe
MOD - [2007-01-31 11:33:24 | 000,032,768 | ---- | M] () -- C:\Program Files\Vtune\TBPanelExt.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] --  -- (AppMgmt)
SRV - [2011-07-06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-06-08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ccSvcHst.exe -- (NAV)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2008-10-20 22:18:26 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2004-09-29 12:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2000-01-01 02:00:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-09-02 02:04:13 | 000,815,736 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\Definitions\BASHDefs\20110901.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2011-08-23 00:17:32 | 000,356,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\Definitions\IPSDefs\20110907.030\IDSXpx86.sys -- (IDSxpx86)
DRV - [2011-08-04 10:51:20 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\Definitions\VirusDefs\20110907.024\NAVEX15.SYS -- (NAVEX15)
DRV - [2011-08-04 10:51:20 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\Definitions\VirusDefs\20110907.024\NAVENG.SYS -- (NAVENG)
DRV - [2011-07-28 11:31:29 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011-07-28 11:31:29 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011-07-06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-05-18 16:27:16 | 000,043,656 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SaiBus.sys -- (SaiNtBus)
DRV - [2011-05-18 16:27:16 | 000,020,744 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SaiMini.sys -- (SaiMini)
DRV - [2011-05-18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-05-18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-05-18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-05-18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011-03-23 15:20:46 | 000,142,344 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SaiK0CC3.sys -- (SaiK0CC3)
DRV - [2011-03-23 15:20:46 | 000,035,208 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SaiU0CC3.sys -- (SaiU0CC3)
DRV - [2011-02-20 23:52:14 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010-07-12 20:47:46 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-07-12 20:46:14 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-07-12 20:46:13 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-05-06 06:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NAV\1108000.005\SYMTDI.SYS -- (SYMTDI)
DRV - [2010-04-29 07:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1108000.005\Ironx86.SYS -- (SymIRON)
DRV - [2010-04-22 05:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1108000.005\SYMEFA.SYS -- (SymEFA)
DRV - [2010-04-22 04:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NAV\1108000.005\SRTSP.SYS -- (SRTSP)
DRV - [2010-04-22 04:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1108000.005\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010-02-26 02:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1108000.005\ccHPx86.sys -- (ccHP)
DRV - [2009-10-15 05:50:05 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1108000.005\SYMDS.SYS -- (SymDS)
DRV - [2009-09-04 07:46:08 | 000,045,056 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-04-23 10:30:12 | 000,688,864 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\torususb.sys -- (TaurusUsb)
DRV - [2008-04-23 10:30:12 | 000,060,533 | ---- | M] (STMicroelectronics              ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stmatm.sys -- (Stmatm)
DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2004-08-13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004-03-03 09:50:00 | 000,014,095 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LCcfltr.sys -- (LCcfltr)
DRV - [2000-01-01 02:00:00 | 006,388,328 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2000-01-01 02:00:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2000-01-01 02:00:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2000-01-01 02:00:00 | 000,119,272 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-484763869-2077806209-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-484763869-2077806209-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.defaultthis.engineName: "DeGoTB Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2910324&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: mil@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {b5fb4c8d-8220-4a63-8e0f-708cdd0f4c3d}:3.3.3.2
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2910324&q=&SearchSource=2"
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\IPSFFPlgn\ [2011-07-24 10:13:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-09-07 16:02:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-09-08 16:29:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-08-20 14:57:13 | 000,000,000 | ---D | M]
 
[2010-07-13 10:59:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Extensions
[2011-09-08 16:24:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions
[2011-08-19 14:41:43 | 000,000,000 | ---D | M] (XfireXO Community Toolbar) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010-08-29 15:29:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash
[2011-08-02 06:55:13 | 000,000,000 | ---D | M] (DeGoTB Community Toolbar) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\{b5fb4c8d-8220-4a63-8e0f-708cdd0f4c3d}
[2011-08-18 17:10:20 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010-08-29 15:29:29 | 000,000,000 | ---D | M] (MakeItLive) -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\extensions\mil@toolbar
[2011-07-11 20:04:02 | 000,000,633 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\searchplugins\startsear.xml
[2011-08-23 12:33:33 | 000,001,978 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\searchplugins\wrzutapl.xml
[2011-05-22 11:23:34 | 000,004,140 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mozilla\Firefox\Profiles\qbn5b0jb.default\searchplugins\youtube.xml
[2011-07-01 20:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-08-28 11:38:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-11-02 11:53:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011-01-08 13:49:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-02-24 12:07:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011-07-01 20:44:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011-08-30 15:19:58 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de
[2011-07-24 10:13:08 | 000,000,000 | ---D | M] (Norton IPS) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.5.0.127\IPSFFPLGN
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BEKER-QUAKE\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\QBN5B0JB.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BEKER-QUAKE\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\QBN5B0JB.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BEKER-QUAKE\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\QBN5B0JB.DEFAULT\EXTENSIONS\IPLEXTOALL@ALLPLAYER.ORG.XPI
[2010-07-07 23:37:17 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-08-28 15:16:22 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011-09-07 16:02:57 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-02-21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009-07-31 14:06:48 | 001,654,784 | ---- | M] (LizardTech) -- C:\Program Files\mozilla firefox\plugins\npdjvu.dll
[2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2011-09-06 23:58:15 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\17.8.0.5\ipsbho.dll (Symantec Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O3 - HKU\S-1-5-21-484763869-2077806209-839522115-1004\..\Toolbar\WebBrowser: (no name) - {56361A71-4E9F-401D-9E12-8AEAA3D7A672} - No CLSID value found.
O3 - HKU\S-1-5-21-484763869-2077806209-839522115-1004\..\Toolbar\WebBrowser: (no name) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - No CLSID value found.
O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (STMicroelectronics              )
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe (HP)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MP10_EnsureFileVer] C:\WINDOWS\inf\unregmp2.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [OrangeDeamon] C:\Program Files\Orange\Orange.exe ()
O4 - HKLM..\Run: [ProfilerU] C:\Program Files\SmartTechnology\Software\ProfilerU.exe (Saitek)
O4 - HKLM..\Run: [SaiMfd] C:\Program Files\SmartTechnology\Software\SaiMfd.exe (Saitek)
O4 - HKU\S-1-5-21-484763869-2077806209-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-484763869-2077806209-839522115-1004..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil10t_Plugin.exe (Adobe Systems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-484763869-2077806209-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-484763869-2077806209-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-484763869-2077806209-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O7 - HKU\S-1-5-21-484763869-2077806209-839522115-1007\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-484763869-2077806209-839522115-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7B7FA382-5302-491C-99BE-765CA4F21AE5}: NameServer = 79.163.127.70 217.116.100.65
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\Userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-07-06 21:34:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:29 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:33 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:34 | 000,000,000 | RHSD | M] - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:35 | 000,000,000 | RHSD | M] - G:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:35 | 000,000,000 | RHSD | M] - H:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-09-07 00:18:38 | 000,000,000 | RHSD | M] - I:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2011-09-06 11:08:38 | 000,000,000 | ---D | M] - N:\Autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk /r \??\N:) -  File not found
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-09-07 21:31:54 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011-09-07 00:18:29 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2011-09-07 00:15:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011-09-06 23:54:13 | 000,000,000 | ---D | C] -- C:\cmdcons
[2011-09-06 23:52:25 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011-09-06 23:52:25 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011-09-06 23:52:25 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011-09-06 23:52:25 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011-09-06 23:51:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011-09-06 23:51:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-09-06 23:51:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Beker-Quake\Menu Start\Programy\Narzędzia administracyjne
[2011-09-06 23:51:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2011-09-06 23:07:14 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011-09-06 23:07:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
[2011-09-06 10:52:33 | 000,000,000 | ---D | C] -- C:\totalcmd
[2011-09-06 10:52:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Menu Start\Programy\Total Commander
[2011-09-06 10:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA
[2011-09-06 10:40:40 | 000,837,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdagenco322040.dll
[2011-09-06 10:40:40 | 000,119,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvhda32.sys
[2011-09-06 10:40:40 | 000,026,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdap32.dll
[2011-09-06 10:40:39 | 000,855,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco322060.dll
[2011-09-06 10:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SlimDrivers
[2011-09-06 10:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\eSupport.com
[2011-09-03 12:17:23 | 000,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[2011-08-31 14:57:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\vlc
[2011-08-31 14:57:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN
[2011-08-31 14:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011-08-31 14:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\XMedia Recode
[2011-08-31 13:49:59 | 000,000,000 | ---D | C] -- C:\Program Files\XMedia Recode
[2011-08-31 13:49:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\XMedia Recode
[2011-08-30 15:24:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\LockHunter
[2011-08-30 15:23:34 | 000,000,000 | ---D | C] -- C:\Program Files\LockHunter
[2011-08-30 15:16:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Beker-Quake\Recent
[2011-08-30 15:06:58 | 000,000,000 | ---D | C] -- C:\Program Files\Pothos
[2011-08-30 14:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011-08-30 14:28:09 | 000,278,584 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZidr12.dll
[2011-08-30 14:28:09 | 000,204,800 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipr12.dll
[2011-08-30 14:28:09 | 000,094,208 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipt12.dll
[2011-08-30 14:28:09 | 000,069,632 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipm12.exe
[2011-08-30 14:28:09 | 000,061,440 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZinw12.exe
[2011-08-30 14:28:09 | 000,057,344 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZisn12.dll
[2011-08-30 14:27:57 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011-08-30 14:27:29 | 000,581,632 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl.dll
[2011-08-30 14:27:29 | 000,274,432 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\HPZc3212.dll
[2011-08-30 14:27:29 | 000,229,376 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst08.dll
[2011-08-30 14:27:28 | 000,278,528 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpgwiamd.dll
[2011-08-30 14:27:27 | 000,180,315 | ---- | C] (HP) -- C:\WINDOWS\System32\hpzsnt12.dll
[2011-08-30 14:27:26 | 000,393,216 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzcon12.dll
[2011-08-30 14:27:26 | 000,196,608 | ---- | C] (HP) -- C:\WINDOWS\System32\hpzcoi12.dll
[2011-08-21 00:01:11 | 000,019,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011-08-20 15:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
[2011-08-20 15:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\NokiaAccount
[2011-08-20 14:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Nokia
[2011-08-20 14:58:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nokia
[2011-08-20 14:57:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2011-08-20 14:56:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011-08-20 14:54:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
[2011-08-20 14:36:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Video mp3 Extractor
[2011-08-20 14:36:31 | 000,000,000 | ---D | C] -- C:\Program Files\Video mp3 Extractor
[2011-08-20 14:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Pulpit\nokia
[2011-08-20 14:33:32 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2011-08-20 14:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\PC Suite
[2011-08-20 14:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Nokia
[2011-08-20 14:31:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2011-08-20 14:31:11 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011-08-20 14:31:10 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2011-08-20 14:31:04 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2011-08-20 14:30:56 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2011-08-20 14:30:56 | 000,008,192 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2011-08-20 14:30:55 | 000,023,168 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2011-08-20 14:30:53 | 000,605,696 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2011-08-20 14:30:53 | 000,123,904 | ---- | C] (Nokia) -- C:\WINDOWS\System32\ccdcmbwu.dll
[2011-08-20 14:30:53 | 000,018,176 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2011-08-20 14:30:52 | 000,075,264 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2011-08-20 14:30:52 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2011-08-19 15:10:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SmartTechnology
[2011-08-19 15:10:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Smart Technology
[2011-08-19 15:10:06 | 000,000,000 | ---D | C] -- C:\Program Files\SmartTechnology
[2011-08-17 12:47:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\GameTracker
[2011-08-14 03:19:09 | 000,000,000 | ---D | C] -- C:\Program Files\XviD
[2011-08-14 03:19:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\XviD
[2011-08-13 12:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-08-13 00:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
[2011-08-12 22:53:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Blackberry Desktop
[2011-08-12 22:51:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\BlackBerry
[2011-08-12 22:47:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Research In Motion
[2011-08-12 22:46:57 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2011-08-12 22:07:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Pulpit\8520
[2011-08-12 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Research In Motion
[2011-08-12 21:30:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallShield
[2011-08-12 21:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sonic
[2011-08-12 21:28:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Roxio
[2011-08-12 21:26:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2011-08-12 21:24:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\BlackBerry
[2011-08-12 21:24:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Research In Motion
[2011-08-12 21:24:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Research In Motion
[2011-08-12 21:24:34 | 000,000,000 | ---D | C] -- C:\Program Files\Research In Motion
[2011-08-10 08:14:25 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2011-08-10 08:13:30 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-09-08 16:52:00 | 000,001,046 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-09-08 08:06:11 | 000,001,042 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-09-08 08:06:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-09-07 21:41:47 | 000,107,520 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-09-07 20:36:23 | 000,138,160 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011-09-07 20:36:18 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011-09-07 18:29:51 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011-09-06 23:58:15 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-09-06 23:54:18 | 000,000,327 | ---- | M] () -- C:\boot.ini
[2011-09-06 23:41:38 | 000,001,590 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2011-09-06 23:38:00 | 004,997,120 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\FM
[2011-09-06 16:16:31 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2011-09-06 13:36:54 | 000,000,521 | ---- | M] () -- C:\hpfr3320.xml
[2011-09-06 12:42:06 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2011-09-06 10:47:20 | 000,002,231 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\SlimDrivers.lnk
[2011-09-06 10:40:59 | 000,259,604 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-09-06 10:40:59 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-09-06 10:40:57 | 000,259,604 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-09-06 10:40:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011-09-06 07:01:27 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011-09-05 10:35:16 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-09-03 12:17:23 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[2011-09-02 06:34:05 | 002,769,503 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\zdjęcie.jpg
[2011-08-31 14:57:28 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2011-08-31 13:50:00 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\XMedia Recode.lnk
[2011-08-30 15:13:00 | 000,150,528 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\deletedr.exe
[2011-08-30 14:55:11 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-08-30 14:30:07 | 000,068,903 | ---- | M] () -- C:\WINDOWS\hpoins05.dat
[2011-08-22 10:37:37 | 000,220,941 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\downloadDocument.pdf
[2011-08-21 19:33:22 | 000,722,274 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\IMG_0004.pdf
[2011-08-20 15:29:01 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\Audacity.lnk
[2011-08-20 14:58:40 | 000,001,788 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nokia Ovi Suite.lnk
[2011-08-20 14:56:50 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011-08-20 14:56:09 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-08-20 14:36:32 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\Video mp3 Extractor.lnk
[2011-08-20 14:33:05 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2011-08-19 14:58:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SaiK0CC3_01009.Wdf
[2011-08-19 14:41:39 | 000,328,026 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\cc_20110819_144134.reg
[2011-08-17 12:31:29 | 000,021,869 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Pulpit\b_560x95.png
[2011-08-13 00:17:09 | 000,750,998 | ---- | M] () -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\LoaderBackup-(2011-08-13).ipd
[2011-08-12 22:47:26 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_RimUsb_01009.Wdf
[2011-08-12 22:47:25 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011-08-12 22:45:18 | 003,599,272 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-08-12 22:36:08 | 000,001,956 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BlackBerry Desktop Software.lnk
[2011-08-12 22:31:09 | 000,000,256 | ---- | M] () -- C:\WINDOWS\System32\pool.bin
[2011-08-10 14:02:22 | 000,520,210 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-08-10 14:02:22 | 000,459,184 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-08-10 14:02:22 | 000,098,994 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-08-10 14:02:22 | 000,078,380 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[10 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-09-06 23:54:18 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011-09-06 23:54:17 | 000,262,400 | ---- | C] () -- C:\cmldr
[2011-09-06 23:52:25 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011-09-06 23:52:25 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011-09-06 23:52:25 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011-09-06 23:52:25 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011-09-06 23:52:25 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011-09-06 23:37:59 | 004,997,120 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\FM
[2011-09-06 22:49:03 | 000,002,751 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\dellater.asm
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2011-09-06 10:52:33 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2011-09-06 10:40:57 | 000,259,604 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-09-06 10:40:57 | 000,259,604 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-09-06 10:40:57 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-09-06 10:40:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011-09-06 10:32:26 | 000,002,231 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\SlimDrivers.lnk
[2011-09-02 06:33:55 | 002,769,503 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\zdjęcie.jpg
[2011-09-02 06:31:53 | 000,722,274 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\IMG_0004.pdf
[2011-08-31 14:57:28 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2011-08-31 13:50:00 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\XMedia Recode.lnk
[2011-08-30 15:12:57 | 000,150,528 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\deletedr.exe
[2011-08-30 14:27:31 | 000,068,903 | ---- | C] () -- C:\WINDOWS\hpoins05.dat
[2011-08-30 14:27:31 | 000,019,696 | ---- | C] () -- C:\WINDOWS\hpomdl05.dat
[2011-08-22 10:37:37 | 000,220,941 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\downloadDocument.pdf
[2011-08-20 15:29:01 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Audacity.lnk
[2011-08-20 15:29:01 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\Audacity.lnk
[2011-08-20 14:58:40 | 000,001,788 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nokia Ovi Suite.lnk
[2011-08-20 14:56:09 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-08-20 14:36:32 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\Video mp3 Extractor.lnk
[2011-08-20 14:33:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2011-08-19 14:58:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_SaiK0CC3_01009.Wdf
[2011-08-19 14:41:36 | 000,328,026 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\cc_20110819_144134.reg
[2011-08-17 12:31:29 | 000,021,869 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Pulpit\b_560x95.png
[2011-08-13 00:17:09 | 000,750,998 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Moje dokumenty\LoaderBackup-(2011-08-13).ipd
[2011-08-12 22:47:26 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_RimUsb_01009.Wdf
[2011-08-12 22:47:25 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2011-08-12 22:36:08 | 000,001,956 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BlackBerry Desktop Software.lnk
[2011-08-12 21:34:09 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2011-06-14 21:08:16 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\{4A4449B3-5BFE-4677-A4A6-02DC3F7DE071}
[2011-05-05 15:57:46 | 000,000,270 | ---- | C] () -- C:\WINDOWS\game.ini
[2011-05-05 15:36:54 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\PnkBstrK.sys
[2011-03-12 09:52:23 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\xlink.sys
[2011-03-12 09:52:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ntUsrrP_1_0.dll
[2011-02-08 04:52:04 | 000,000,284 | ---- | C] () -- C:\WINDOWS\GvSaveImage.ini
[2011-02-08 04:52:03 | 000,000,932 | ---- | C] () -- C:\WINDOWS\GeoImageProcess_8200.ini
[2011-02-08 04:48:07 | 000,000,020 | ---- | C] () -- C:\WINDOWS\MainWHnd.INI
[2011-02-08 04:46:27 | 000,315,712 | ---- | C] () -- C:\WINDOWS\SmartSearch.ini
[2011-02-08 04:25:50 | 000,000,211 | ---- | C] () -- C:\WINDOWS\GeoLan.ini
[2011-01-11 15:25:33 | 000,001,496 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\Adobe Zapisz dla Internetu 12.0 Prefs
[2010-11-25 14:41:37 | 000,000,053 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\AVSMediaPlayer.m3u
[2010-11-25 14:37:31 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-10-24 15:45:59 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-10-08 17:14:54 | 000,001,190 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2010-09-23 22:15:23 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Preferencje Adobe CS5 dla formatu BMP
[2010-09-18 09:25:38 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-09-18 09:25:38 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-09-14 21:51:52 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Preferencje Adobe CS5 dla formatu PNG
[2010-09-13 10:41:10 | 000,002,828 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\KGyGaAvL.sys
[2010-09-13 10:41:10 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\EC3B27DEF8.sys
[2010-09-04 22:59:03 | 000,138,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-09-04 22:58:55 | 000,271,200 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010-09-04 22:58:49 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010-09-04 22:45:52 | 000,674,600 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2010-08-31 00:46:42 | 003,264,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-08-19 13:30:31 | 000,688,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\torususb.sys
[2010-08-19 13:30:31 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\stmclean.exe
[2010-08-19 13:30:31 | 000,000,161 | ---- | C] () -- C:\WINDOWS\DSLSetup.ini
[2010-07-13 10:59:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-07-12 23:43:23 | 000,000,050 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:23 | 000,000,046 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:23 | 000,000,040 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:23 | 000,000,040 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:23 | 000,000,039 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,050 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,048 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,047 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,044 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,042 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,041 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,039 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,039 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,036 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,034 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,033 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,030 | ---- | C] () -- C:\WINDOWS\CorelPP.iniCorelPP.ini
[2010-07-12 23:43:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS\CorelPP.ini
[2010-07-12 23:43:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\wt9_1sptlEN.INI
[2010-07-12 23:39:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CorelDrw.INI
[2010-07-12 23:07:19 | 000,001,590 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2010-07-12 23:01:47 | 000,028,432 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-07-12 22:23:48 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-07-12 22:23:44 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2010-07-12 22:23:40 | 000,021,530 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-07-12 22:23:40 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-07-12 20:46:14 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-07-12 20:46:13 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-07-07 18:24:59 | 000,107,520 | ---- | C] () -- C:\Documents and Settings\Beker-Quake\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-07-06 22:54:25 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-07-06 22:53:26 | 003,599,272 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-07-06 22:52:39 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2010-07-06 22:37:52 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-07-06 21:36:09 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-07-06 21:32:46 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-03-29 03:52:00 | 002,116,894 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2009-11-06 10:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2006-03-02 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006-03-02 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006-03-02 14:00:00 | 000,520,210 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2006-03-02 14:00:00 | 000,459,184 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006-03-02 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2006-03-02 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006-03-02 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006-03-02 14:00:00 | 000,098,994 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2006-03-02 14:00:00 | 000,078,380 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006-03-02 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006-03-02 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2006-03-02 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006-03-02 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006-03-02 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006-03-02 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006-03-02 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-07-26 21:50:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2010-09-18 09:27:43 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJScan
[2010-10-23 13:47:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2010-07-12 20:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-11-24 20:31:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2011-01-07 18:50:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy CD-DA Extractor
[2010-11-24 20:31:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-08-28 15:40:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-08-13 12:28:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-08-20 14:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
[2011-08-20 14:31:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-09-13 15:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2011-08-12 22:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Research In Motion
[2011-08-19 15:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SmartTechnology
[2010-11-24 20:22:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2010-08-30 19:02:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2011-03-10 17:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-03 02:16:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tmp
[2010-07-12 20:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-09-06 12:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Arctic
[2010-11-13 13:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Atari
[2011-03-13 19:26:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\becker
[2011-08-03 14:24:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\BESTplayer
[2010-08-29 15:14:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\BitComet
[2011-08-12 22:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Blackberry Desktop
[2010-08-20 18:38:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Canneverbe_Limited
[2011-02-24 13:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Canon
[2010-12-06 12:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011-03-05 18:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\com.hyfn.taylorswift
[2010-10-19 12:53:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Command and Conquer 4
[2010-07-12 20:53:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\DAEMON Tools Lite
[2011-03-11 13:17:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\DegoMedia
[2010-08-31 13:06:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Gadu-Gadu 10
[2010-07-27 20:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Leadertech
[2011-08-30 15:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\LockHunter
[2010-07-25 14:20:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Mount&Blade Warband
[2011-08-20 14:34:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Nokia
[2010-07-07 23:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\OpenOffice.org
[2011-08-20 14:33:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\PC Suite
[2010-09-20 16:53:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Red Alert 3
[2011-08-12 22:47:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Research In Motion
[2011-04-25 11:31:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Software Informer
[2010-08-30 19:50:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Sports Interactive
[2011-01-10 22:30:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010-12-22 23:39:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\streamripper
[2010-07-12 20:34:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\Ubisoft
[2011-08-31 14:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Beker-Quake\Dane aplikacji\XMedia Recode
[2011-08-19 14:04:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\GameTracker
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4769CB2A
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:76650B61

< End of report >