OTL logfile created on: 2011-10-10 10:48:18 - Run 1 OTL by OldTimer - Version 3.2.29.1 Folder = C:\Documents and Settings\Rafał\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1014,98 Mb Total Physical Memory | 250,32 Mb Available Physical Memory | 24,66% Memory free 2,39 Gb Paging File | 1,80 Gb Available in Paging File | 75,16% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 35,15 Gb Total Space | 16,09 Gb Free Space | 45,77% Space Free | Partition Type: NTFS Drive D: | 39,37 Gb Total Space | 22,46 Gb Free Space | 57,06% Space Free | Partition Type: NTFS Computer Name: A-HKL02E8FY3CFB | User Name: Rafał | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-10-10 10:46:11 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rafał\Moje dokumenty\Pobieranie\OTL.exe PRC - [2011-10-02 08:34:04 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-09-06 22:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2011-07-25 11:50:44 | 002,336,440 | ---- | M] (NETGATE Technologies s.r.o.) -- C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe PRC - [2011-05-22 13:02:15 | 013,345,376 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2011-05-19 20:59:48 | 000,375,328 | ---- | M] (Soluto) -- C:\Program Files\Soluto\SolutoService.exe PRC - [2011-05-19 20:59:46 | 001,712,672 | ---- | M] (Soluto) -- C:\Program Files\Soluto\Soluto.exe PRC - [2010-07-04 19:07:40 | 000,238,952 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe PRC - [2008-04-14 19:21:16 | 001,542,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2002-09-20 17:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-10-09 19:33:40 | 001,596,416 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100901\algo.dll MOD - [2011-10-06 11:55:24 | 000,212,640 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11100901\aswRep.dll MOD - [2011-10-02 08:34:03 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2011-09-24 15:20:43 | 006,277,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2011-08-28 23:19:12 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll MOD - [2011-08-11 17:36:20 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ace861fe8dbf146c3e449abaa7691e9f\System.ComponentModel.DataAnnotations.ni.dll MOD - [2011-08-11 17:35:39 | 000,680,448 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\2f0bdf6f7ff0da8bed864f118d503cd7\SolutoCleanup.ni.dll MOD - [2011-08-11 17:35:37 | 000,535,552 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\3ffdcf2274aa915f630370b94c2d1674\PCGDataAggregation.ni.dll MOD - [2011-08-11 17:35:34 | 000,384,000 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\9b77dd8ea9acb76ea19b1d30c56f2b48\PCGBootVisualizingCore.ni.dll MOD - [2011-08-11 17:35:32 | 000,420,864 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\aeba5fa0bd5738e459caa8ea0db0265e\PCGCatalogItemFootprint.ni.dll MOD - [2011-08-11 17:35:30 | 000,735,232 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\1173b9a6bc23ad9fbe9e500e14407f45\PCGBrowsersProbe.ni.dll MOD - [2011-08-11 17:35:27 | 000,358,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\e34af261aef7e9fc8eacecae6566fe63\PCGSAProbe.ni.dll MOD - [2011-08-11 17:35:26 | 000,105,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\fa14a301f1c41a6be702f5715227da20\PCGCatalogItemCache.ni.dll MOD - [2011-08-11 17:35:25 | 000,047,104 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGEntities\17edcabecb2f1312347e1a2ac54fe328\PCGEntities.ni.dll MOD - [2011-08-11 17:35:23 | 000,892,416 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\b5850f9f60da5b1824bf612abdcf0983\PCGClientCommunication.ni.dll MOD - [2011-08-11 17:35:20 | 000,148,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SolutoUpdateService\2f007080651fd11c6a907a447bf59ae4\SolutoUpdateService.ni.dll MOD - [2011-08-11 17:35:18 | 000,115,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\80fc6719a543704c9b87e873c80eedd0\PCGUpgrader.ni.dll MOD - [2011-08-11 17:35:17 | 001,236,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SolutoService\19a9b6f84f5612fdcdce52be6115da23\SolutoService.ni.exe MOD - [2011-08-11 17:34:52 | 000,644,096 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPostBootResources\7aec370a0149caf0be7b72cd7eac6511\PCGPostBootResources.ni.dll MOD - [2011-08-11 17:34:51 | 000,057,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGHIDProbe\a6dc947b72092e5470265b7d2e9ec6c0\PCGHIDProbe.ni.dll MOD - [2011-08-11 17:34:50 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGRSPProbe\99ab40db83cedaef8cf44cf02b507330\PCGRSPProbe.ni.dll MOD - [2011-08-11 17:34:42 | 002,327,552 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\05548e5ed1d222371a37e96c2f41b277\Community.CsharpSqlite.ni.dll MOD - [2011-08-11 17:34:39 | 000,064,512 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\069745d6c4c778c50c9f682349893f0f\PCGUsersCenter.ni.dll MOD - [2011-08-11 17:34:38 | 003,012,096 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\4a856cc980235f53014955f6a95e104f\PCGClientCommon.ni.dll MOD - [2011-08-11 17:34:30 | 000,199,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\7afd3b64abae9a5fd4e2427fcf68927a\PCGBootVisualizingCommon.ni.dll MOD - [2011-08-11 17:34:24 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\e60e89db536d78074b584129a3068a08\PCGConfiguration.ni.dll MOD - [2011-08-11 17:34:23 | 000,766,976 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.SqlServ#\25ecb0a90baad165b92c81c221a8f852\System.Data.SqlServerCe.ni.dll MOD - [2011-08-11 17:34:19 | 003,471,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDatabase\492e2df56ce6ea1e15d1456fcd0b66f6\PCGDatabase.ni.dll MOD - [2011-08-11 17:34:13 | 001,250,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCommunication\d8ae20ff7707bb952b8561ae514b1b97\PCGCommunication.ni.dll MOD - [2011-08-11 17:34:09 | 000,176,640 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\46602d35ef4ef2a5935e7aa92d871407\PCGDriverProbe.ni.dll MOD - [2011-08-11 17:34:06 | 002,845,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\abfddee0b30c84f2d8e22ac8b22e4d12\PCGPreCompiled.ni.dll MOD - [2011-08-11 17:34:01 | 001,454,080 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json\b08c97d0d5418a670c4909ed6463a75b\Newtonsoft.Json.ni.dll MOD - [2011-08-11 17:33:57 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\70a1400affdc775d7c7398e036359286\System.ServiceProcess.ni.dll MOD - [2011-08-11 17:33:23 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.ni.dll MOD - [2011-08-11 17:33:21 | 000,627,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\846dd505f97805f00999ee26aec9bf75\System.Transactions.ni.dll MOD - [2011-08-11 17:33:18 | 000,256,000 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\ca07e9cf488af1290d2340d682574a24\SMDiagnostics.ni.dll MOD - [2011-08-11 17:33:17 | 000,400,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\946eefb99bc116ee68e0e7c69a5a8a5c\System.Xml.Linq.ni.dll MOD - [2011-08-11 17:33:13 | 002,236,416 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGFramework\a2164f726c8cc804025fdb9608dfe3b4\PCGFramework.ni.dll MOD - [2011-08-11 17:32:55 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll MOD - [2011-08-11 17:32:51 | 001,998,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Soluto\d5f34d5890b3f23c758979103430c398\Soluto.ni.exe MOD - [2011-08-11 16:58:12 | 002,345,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\dece01bd9e9c32e47630fdfc78d3bd32\System.Runtime.Serialization.ni.dll MOD - [2011-08-10 21:04:54 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\10154dcad2d62f226af2fd4211460a4b\System.Xml.ni.dll MOD - [2011-08-10 21:04:38 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d00cc387e462e4c3cdcd112b137cac87\System.Windows.Forms.ni.dll MOD - [2011-08-10 21:03:49 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7ed09623172a292eaee51e2e3bcaf784\System.Drawing.ni.dll MOD - [2011-08-10 21:03:03 | 002,516,480 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\571af34939797a7c1cd05b0b925a45bf\System.Data.Linq.ni.dll MOD - [2011-08-10 21:02:22 | 006,616,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\db2d84e279807592a680ef4135e9fe9a\System.Data.ni.dll MOD - [2011-08-10 21:02:04 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\e54e013315849f5e34d8f2a8e7fdb450\System.Core.ni.dll MOD - [2011-08-10 20:58:52 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e6c79e1d71b0c9000afd7e5e439b5c54\System.ni.dll MOD - [2011-08-10 20:56:33 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2011-08-10 20:56:15 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll MOD - [2011-06-15 11:14:10 | 000,100,864 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\2d54f480d0481219d626964c7c388e0a\Interop.IWshRuntimeLibrary.ni.dll MOD - [2011-06-15 11:13:45 | 000,019,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\9898c30f47e20fc838d3080b9fd78873\PCGAzureEntityFramework.ni.dll MOD - [2011-06-15 11:13:44 | 000,648,704 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\fd14b508f93fa36f288c4f950e029a76\PCGAzureShared.ni.dll MOD - [2011-06-15 09:56:12 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll MOD - [2011-05-05 14:45:28 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll MOD - [2011-05-05 14:45:26 | 000,123,488 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll MOD - [2011-05-05 14:45:24 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll MOD - [2011-05-05 14:45:22 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll MOD - [2011-05-05 14:45:18 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll MOD - [2011-04-16 05:04:30 | 014,749,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll MOD - [2011-02-17 11:00:28 | 001,781,760 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtScript4.dll MOD - [2011-02-17 11:00:28 | 000,393,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXml4.dll MOD - [2011-02-17 11:00:28 | 000,327,680 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll MOD - [2011-02-17 11:00:26 | 001,044,480 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll MOD - [2011-02-17 11:00:24 | 009,097,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll MOD - [2011-02-17 11:00:24 | 002,560,000 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll MOD - [2011-02-09 18:50:44 | 000,208,896 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_pl_b77a5c561934e089\System.resources.dll MOD - [2011-02-09 18:50:42 | 000,352,256 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_pl_b77a5c561934e089\System.Data.resources.dll MOD - [2011-02-09 18:50:40 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_pl_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll MOD - [2010-08-06 21:00:32 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll MOD - [2010-08-06 21:00:32 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll MOD - [2010-08-06 21:00:32 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll MOD - [2010-08-06 21:00:32 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll MOD - [2010-08-06 21:00:32 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll MOD - [2010-03-19 09:33:38 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll MOD - [2009-02-27 21:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2008-04-14 19:20:37 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2007-02-02 11:16:28 | 000,163,840 | ---- | M] () -- C:\Program Files\NETGATE\Spy Emergency\unrar.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (CGVPNCliSrvc) SRV - File not found [Auto | Stopped] -- -- (avast! Firewall) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2011-07-25 11:50:44 | 002,336,440 | ---- | M] (NETGATE Technologies s.r.o.) [Auto | Running] -- C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe -- (SpyEmrgSrv) SRV - [2011-06-08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2011-05-19 20:59:48 | 000,375,328 | ---- | M] (Soluto) [Auto | Running] -- C:\Program Files\Soluto\SolutoService.exe -- (SolutoService) SRV - [2010-07-04 19:07:40 | 000,238,952 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2009-08-24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo HDD Control\Dfsdks.exe -- (DfSdkS) SRV - [2002-09-20 17:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-09-16 11:54:40 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv) DRV - [2011-09-06 22:38:54 | 000,111,320 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\aswFW.sys -- (aswFW) DRV - [2011-09-06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011-09-06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011-09-06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011-09-06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011-09-06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011-09-06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2011-09-06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2011-08-08 18:13:21 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2011-05-18 10:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2011-05-18 10:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2011-05-18 10:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2011-05-18 10:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2011-04-21 11:31:42 | 000,020,056 | ---- | M] (NETGATE Technologies s.r.o.) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\spyemrg_access.sys -- (SpyEmrgAccess) DRV - [2011-04-21 11:31:36 | 000,016,216 | ---- | M] (NETGATE Technologies s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\spyemrg_guard.sys -- (SpyEmrgGuard) DRV - [2011-04-21 11:31:30 | 000,014,168 | ---- | M] (NETGATE Technologies s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\spyemrg.sys -- (SpyEmrg) DRV - [2010-06-14 09:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2010-05-10 20:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL) DRV - [2010-04-27 04:25:16 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2010-04-27 04:25:16 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bserd.sys -- (ss_bserd) DRV - [2010-04-27 04:25:16 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2010-04-27 04:25:16 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2010-02-25 17:51:02 | 000,025,216 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901) DRV - [2010-02-17 20:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV) DRV - [2009-12-18 11:58:52 | 000,011,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\SystemRequirementsLab\cpudrv.sys -- (cpudrv) DRV - [2009-09-17 08:57:24 | 000,023,120 | ---- | M] (NETGATE Technologies s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\fortknoxfw_ndisim.sys -- (Fkndisf) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2004-08-04 07:31:32 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2002-07-17 10:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1123561945-261478967-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://google.com" FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2 FF - prefs.js..extensions.enabledItems: selectionlinks@floriangilles.com:0.0.4 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.0.3 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-10-02 08:34:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-07-05 17:40:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-08-21 00:45:05 | 000,000,000 | ---D | M] [2010-12-29 20:13:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Extensions [2010-12-29 20:08:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Extensions\MediaCoder [2010-12-29 20:13:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Extensions\MediaCoder-Setup-Wizard [2011-10-02 08:34:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions [2011-03-05 01:24:11 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2) [2011-03-05 01:24:12 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2) [2011-08-22 18:17:45 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011-09-09 05:53:23 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2011-03-05 01:24:49 | 000,000,000 | ---D | M] (The Saloon Bar) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\belle.starr.colt@gmx(2).com [2011-09-10 23:29:23 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\foxyproxy@eric.h.jung [2011-03-05 01:24:48 | 000,000,000 | ---D | M] (The Saloon Bar) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\saloonbar@ligny.org(2).uk [2010-12-24 00:35:25 | 000,000,000 | ---D | M] (Selection Links) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\selectionlinks@floriangilles.com [2011-03-05 01:24:12 | 000,000,000 | ---D | M] (Google Translator for Firefox) -- C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\w6ucdgao.default\extensions\translator@zoli(2).bod [2011-05-07 18:00:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-01-05 00:52:18 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011-01-05 09:30:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011-02-20 13:32:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\{DD05FD3D-18DF-4CE4-AE53-E795339C5F01}.XPI File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781} File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\FOXYPROXY@ERIC.H.JUNG File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\IPLEXTOALL@ALLPLAYER.ORG.XPI File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\SELECTIONLINKS@FLORIANGILLES.COM File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RAFAĹ‚\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\W6UCDGAO.DEFAULT\EXTENSIONS\TRANSLATOR@ZOLI.BOD.XPI [2011-01-05 00:52:01 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011-02-12 14:15:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011-10-02 08:34:05 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-02-02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-03-16 15:19:26 | 000,180,896 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npVividasPlayer.dll [2011-10-02 08:34:01 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2011-10-02 08:34:01 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-10-02 08:34:01 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-10-02 08:34:01 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2011-10-02 08:34:01 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-10-02 08:34:01 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011-09-19 12:42:00 | 000,000,760 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (MyPlayCity Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) O3 - HKLM\..\Toolbar: (MyPlayCity Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKU\S-1-5-21-1123561945-261478967-725345543-1004\..\Toolbar\WebBrowser: (MyPlayCity Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1123561945-261478967-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1123561945-261478967-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Rafał\Dane aplikacji\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O15 - HKU\S-1-5-21-1123561945-261478967-725345543-1004\..Trusted Domains: ([]msn in My Computer) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl/jinstall-160-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_04) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = a-hkl02e8fy3cfb O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30338B50-AF5B-4BE3-94AC-FA6B43D82DDF}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FDED50E-10B4-48BB-86C2-E10D513B4484}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED4A0D19-0363-497F-80AA-90E856230E16}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Program Files\Soluto\soluto.exe /userinit) -C:\Program Files\Soluto\soluto.exe (Soluto) O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-12-23 18:57:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] File not found -- C:\Documents and Settings\Rafał\Pulpit\Dupa słonia [2011-10-10 01:04:55 | 000,000,000 | RHSD | C] -- C:\cmdcons [2011-10-10 01:03:44 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2011-10-10 01:03:27 | 000,000,000 | --SD | C] -- C:\ComboFix [2011-10-10 00:40:18 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2011-10-10 00:40:18 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2011-10-10 00:40:18 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2011-10-10 00:37:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2011-10-10 00:35:18 | 000,000,000 | ---D | C] -- C:\Qoobox [2011-10-07 13:07:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Moje dokumenty\Cropped [2011-10-07 01:26:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN [2011-10-07 00:53:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2011-10-07 00:52:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2011-10-05 19:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\MyFree Codec [2011-10-05 19:30:17 | 000,000,000 | ---D | C] -- C:\Program Files\MyFree Codec [2011-10-05 19:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Moje dokumenty\SelfMV [2011-10-05 11:06:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Downloaded Installations [2011-10-04 19:24:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Dane aplikacji\Immunet [2011-10-04 19:23:11 | 000,000,000 | ---D | C] -- C:\Program Files\Immunet [2011-10-03 11:00:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JPEGCrops [2011-10-03 11:00:05 | 000,000,000 | ---D | C] -- C:\Program Files\JPEGCrops [2011-10-01 03:46:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Moje dokumenty\Asik [2011-09-25 18:38:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus [2011-09-22 06:59:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Dane aplikacji\FileZilla [2011-09-22 06:59:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\FileZilla FTP Client [2011-09-22 06:59:02 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2011-09-16 12:18:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer [2011-09-16 12:18:06 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2011-09-16 12:17:43 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2011-09-16 11:54:44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avrt.dll [2011-09-12 21:07:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Dane aplikacji\Ashampoo [2011-09-12 20:44:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Dane aplikacji\Audacity [2011-09-12 20:43:39 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity 1.3 Beta (Unicode) [2011-09-12 20:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\ashampoo [2011-09-12 20:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2011-09-12 20:17:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Spy Emergency [2011-09-12 20:17:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Dane aplikacji\Spy Emergency [2011-09-12 20:17:35 | 000,020,056 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\WINDOWS\System32\drivers\spyemrg_access.sys [2011-09-12 20:17:35 | 000,016,216 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\WINDOWS\System32\drivers\spyemrg_guard.sys [2011-09-12 20:17:35 | 000,014,168 | ---- | C] (NETGATE Technologies s.r.o.) -- C:\WINDOWS\System32\drivers\spyemrg.sys [2011-09-12 20:17:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NETGATE [2011-09-12 20:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\NETGATE [2011-09-12 14:09:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\AskToolbar [2011-09-11 07:03:30 | 000,111,320 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFW.sys [2011-09-11 07:02:18 | 000,195,416 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswNdis2.sys [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] File not found -- C:\Documents and Settings\Rafał\Pulpit\Dupa słonia [2011-10-10 10:58:06 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-10-10 10:36:26 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-10-10 10:36:24 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-10-10 10:36:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-10-10 01:05:04 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2011-10-09 08:46:34 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-10-08 21:32:24 | 000,000,770 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\Skrót do Starter.lnk [2011-10-08 20:41:23 | 000,284,557 | ---- | M] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy 2.jpg [2011-10-08 20:41:02 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Rafał\procesy 2.jpg [2011-10-08 20:37:26 | 000,281,693 | ---- | M] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy 1.jpg [2011-10-08 20:37:01 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Rafał\procesy 1.jpg [2011-10-08 20:32:51 | 000,259,574 | ---- | M] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy.jpg [2011-10-08 20:32:21 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Rafał\procesy.jpg [2011-10-07 13:29:16 | 000,031,940 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\kot-lovit-mysh 1.gif [2011-10-07 13:22:14 | 000,124,668 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\2hyvyj4.jpg.gif [2011-10-07 13:12:28 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-10-07 12:42:06 | 000,162,595 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\ustawki.JPG [2011-10-07 12:14:11 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2011-10-07 01:27:09 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2011-10-07 01:02:32 | 000,019,736 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\wrzesień 30, 2011.wmv [2011-10-06 19:23:46 | 000,002,130 | ---- | M] () -- C:\WINDOWS\tasks\hpwebreg_xxxxxxxxxx.job [2011-10-05 11:41:52 | 000,001,594 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung Kies.lnk [2011-10-05 00:07:15 | 000,146,993 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\sens.jpg [2011-10-05 00:06:40 | 000,040,675 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\połówko.jpg [2011-10-05 00:04:11 | 000,081,227 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\levis.jpg [2011-10-05 00:02:59 | 000,072,122 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\kevin.jpg [2011-10-04 23:59:33 | 000,063,243 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\smsy.jpg [2011-10-03 11:02:14 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\JPEGCrops.lnk [2011-10-02 23:32:22 | 000,041,970 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\w dyskusji z kobietą.jpg [2011-10-02 14:14:38 | 000,128,645 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\nie ma znaczenia.jpg [2011-10-01 21:46:51 | 000,137,435 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\filip1.jpg [2011-09-29 00:56:18 | 000,122,432 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\mojsza racja.jpg [2011-09-25 18:39:08 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011-09-24 15:20:44 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011-09-22 17:08:35 | 000,000,783 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\FileZilla.lnk [2011-09-19 12:42:00 | 000,000,760 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2011-09-16 17:23:26 | 000,000,911 | ---- | M] () -- C:\Documents and Settings\Rafał\Dane aplikacji\burnaware.ini [2011-09-16 11:55:10 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\WINDOWS\System32\Redemption.dll [2011-09-16 11:54:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\avrt.dll [2011-09-16 11:54:40 | 000,821,824 | ---- | M] (Devguru Co., Ltd.) -- C:\WINDOWS\System32\dgderapi.dll [2011-09-16 11:54:40 | 000,319,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DIFxAPI.dll [2011-09-16 11:54:40 | 000,020,032 | ---- | M] (Devguru Co., Ltd) -- C:\WINDOWS\System32\drivers\dgderdrv.sys [2011-09-16 08:35:36 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-09-13 22:22:59 | 000,532,506 | ---- | M] () -- C:\Documents and Settings\Rafał\Pulpit\Uwertura.mp3 [2011-09-12 20:36:39 | 000,000,886 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Photo Commander 8.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-10-10 01:05:04 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2011-10-10 01:05:02 | 000,262,400 | RHS- | C] () -- C:\cmldr [2011-10-10 00:40:21 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011-10-10 00:40:18 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011-10-10 00:40:18 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2011-10-10 00:40:18 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2011-10-10 00:40:18 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2011-10-08 21:32:24 | 000,000,770 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\Skrót do Starter.lnk [2011-10-08 20:41:04 | 000,284,557 | ---- | C] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy 2.jpg [2011-10-08 20:41:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Rafał\procesy 2.jpg [2011-10-08 20:37:11 | 000,281,693 | ---- | C] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy 1.jpg [2011-10-08 20:37:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Rafał\procesy 1.jpg [2011-10-08 20:32:33 | 000,259,574 | ---- | C] () -- C:\Documents and Settings\Rafał\Moje dokumenty\procesy.jpg [2011-10-08 20:32:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Rafał\procesy.jpg [2011-10-07 13:29:16 | 000,031,940 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\kot-lovit-mysh 1.gif [2011-10-07 13:22:12 | 000,124,668 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\2hyvyj4.jpg.gif [2011-10-07 12:42:06 | 000,162,595 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\ustawki.JPG [2011-10-07 01:40:48 | 000,160,392 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2011-10-07 01:27:08 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2011-10-07 00:47:17 | 000,019,736 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\wrzesień 30, 2011.wmv [2011-10-05 11:41:52 | 000,001,594 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung Kies.lnk [2011-10-05 00:07:14 | 000,146,993 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\sens.jpg [2011-10-05 00:06:40 | 000,040,675 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\połówko.jpg [2011-10-05 00:04:11 | 000,081,227 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\levis.jpg [2011-10-05 00:02:58 | 000,072,122 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\kevin.jpg [2011-10-04 23:59:25 | 000,063,243 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\smsy.jpg [2011-10-03 11:02:14 | 000,000,652 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\JPEGCrops.lnk [2011-10-02 23:32:18 | 000,041,970 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\w dyskusji z kobietą.jpg [2011-10-02 14:14:33 | 000,128,645 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\nie ma znaczenia.jpg [2011-10-01 21:46:45 | 000,137,435 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\filip1.jpg [2011-09-29 00:56:14 | 000,122,432 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\mojsza racja.jpg [2011-09-22 17:08:35 | 000,000,783 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\FileZilla.lnk [2011-09-16 12:17:54 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2011-09-16 12:17:54 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-09-13 22:22:37 | 000,532,506 | ---- | C] () -- C:\Documents and Settings\Rafał\Pulpit\Uwertura.mp3 [2011-09-12 20:44:14 | 000,000,825 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Audacity 1.3 Beta (Unicode).lnk [2011-09-12 20:36:39 | 000,000,886 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo Photo Commander 8.lnk [2011-08-22 18:40:25 | 006,908,648 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2011-07-24 12:31:15 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll [2011-06-27 23:40:52 | 000,000,057 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Ament.ini [2011-06-06 20:34:52 | 000,272,174 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1123561945-261478967-725345543-1004-0.dat [2011-06-06 20:34:47 | 000,272,174 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat [2011-05-29 00:00:56 | 000,073,600 | ---- | C] () -- C:\WINDOWS\System32\ezGOSvc.dll [2011-04-19 19:09:29 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2011-04-19 19:09:29 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2011-04-19 19:09:12 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Rafał\Dane aplikacji\$_hpcst$.hpc [2011-04-16 22:13:58 | 000,000,126 | ---- | C] () -- C:\WINDOWS\_delis43.ini [2011-04-09 23:00:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PRESTOPM.INI [2011-04-09 22:56:56 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI [2011-04-09 22:40:07 | 000,000,492 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI [2011-04-09 22:38:47 | 000,000,218 | ---- | C] () -- C:\WINDOWS\SCNDRVU.INI [2011-04-09 22:29:40 | 000,028,672 | R--- | C] () -- C:\WINDOWS\pccuo.dll [2011-02-09 19:03:57 | 000,000,193 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft.SqlServer.Compact.351.32.bc [2011-01-29 17:00:24 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2011-01-29 17:00:22 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll [2011-01-29 17:00:22 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll [2011-01-29 17:00:22 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll [2011-01-29 17:00:22 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll [2011-01-05 14:41:03 | 000,000,911 | ---- | C] () -- C:\Documents and Settings\Rafał\Dane aplikacji\burnaware.ini [2010-12-29 21:44:28 | 000,000,069 | ---- | C] () -- C:\WINDOWS\MediaManager.INI [2010-12-28 20:03:55 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-28 00:12:03 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-12-27 20:42:41 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-12-27 20:42:41 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-12-27 20:42:34 | 000,644,608 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-12-27 20:42:34 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-12-27 20:42:34 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-12-23 23:30:55 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2010-12-23 19:51:30 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-12-23 19:50:37 | 000,270,984 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-12-23 19:49:56 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-12-23 19:30:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-12-23 18:59:16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-12-23 18:55:52 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-01-11 09:24:40 | 000,001,683 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2008-04-30 14:55:16 | 000,071,208 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-04-28 12:11:16 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2003-04-16 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2003-04-16 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2003-04-16 14:00:00 | 000,551,992 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2003-04-16 14:00:00 | 000,490,374 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2003-04-16 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2003-04-16 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2003-04-16 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2003-04-16 14:00:00 | 000,103,242 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2003-04-16 14:00:00 | 000,082,538 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2003-04-16 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2003-04-16 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2003-04-16 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2003-04-16 14:00:00 | 000,004,486 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2003-04-16 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2003-04-16 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2002-03-19 01:18:54 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\LAME_ENC.DLL [color=#E56717]========== LOP Check ==========[/color] [2010-12-23 22:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2011-09-12 20:36:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2010-12-29 20:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy CD-DA Extractor [2010-12-29 20:44:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy CD-DA Extractor Free [2011-06-28 06:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easybits GO [2010-12-23 19:44:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fujitsu [2010-12-23 22:16:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2011-08-21 00:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2011-07-24 14:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-12-27 14:47:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound [2011-09-12 20:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NETGATE [2011-01-16 16:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2011-01-16 11:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache [2011-03-10 15:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2011-05-25 14:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2011-02-13 17:47:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RapidSolution [2011-07-24 13:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2010-12-29 20:04:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ReviverSoft [2011-04-06 14:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Rumbic Studio [2011-10-05 11:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung [2011-05-25 05:05:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Soluto [2011-08-24 16:18:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-06-27 23:49:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Visan [2011-09-28 08:05:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\RafaĹ‚\Dane aplikacji\IrfanView [2011-04-17 15:51:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\1-abc [2011-09-12 21:07:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Ashampoo [2011-09-12 20:47:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Audacity [2011-07-01 18:48:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Auslogics [2011-03-06 15:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Broad Intelligence [2011-02-22 15:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\ChomikBox [2011-03-07 09:06:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\COWON [2011-08-22 18:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\DVDVideoSoft [2011-08-22 18:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\DVDVideoSoftIEHelpers [2011-10-07 22:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\FileZilla [2011-08-11 20:08:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Gadu-Gadu 10 [2011-01-05 19:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Get from YouTube [2011-08-24 16:12:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\go [2011-10-04 19:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Immunet [2011-08-22 02:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\ipla [2010-12-27 21:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Leadertech [2010-12-27 14:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\NCH Swift Sound [2011-02-24 20:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Nokia [2011-02-24 20:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Nokia Ovi Suite [2011-04-24 18:00:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Obsidium [2011-08-22 18:08:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\OpenCandy [2010-12-26 20:35:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\OpenFM [2010-12-26 19:49:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\PC Suite [2011-04-20 06:45:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Photo! Web Album [2011-08-30 22:01:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\PhotoScape [2011-07-22 09:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Power Sound Editor Free [2011-10-05 11:11:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Samsung [2010-12-29 21:06:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Softplicity [2011-03-23 00:00:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Soluto [2011-09-25 00:42:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Spy Emergency [2011-08-22 10:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\TeamViewer [2011-05-24 14:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\TS3Client [2011-02-07 16:55:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Windows Search [2011-01-06 00:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafał\Dane aplikacji\Winsplit Revolution [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Rafał\Pulpit\wrzesień 30, 2011.wmv:SummaryInformation @Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CAEDBDA6 @Alternate Data Stream - 151 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:07BF512B @Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6900017D @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:98353363 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05D195EC < End of report >