OTL logfile created on: 2011-10-10 13:58:46 - Run 2
OTL by OldTimer - Version 3.2.29.1    
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,19 Gb Available Physical Memory | 59,69% Memory free
5,84 Gb Paging File | 5,19 Gb Available in Paging File | 88,90% Paging File free
Paging file location(s): C:\pagefile.sys 4092 8184 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148,92 Gb Total Space | 105,19 Gb Free Space | 70,64% Space Free | Partition Type: NTFS
Drive D: | 149,01 Gb Total Space | 52,32 Gb Free Space | 35,11% Space Free | Partition Type: NTFS
 
NOT logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-10-10 13:49:23 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\123456\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2011-10-04 08:55:56 | 000,399,512 | ---- | M] (Mozilla Messaging) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe
PRC - [2011-10-04 08:13:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-04-10 09:45:46 | 000,979,344 | ---- | M] (The Eraser Project) -- C:\Program Files\Eraser\Eraser.exe
PRC - [2010-03-12 21:29:22 | 000,311,680 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe
PRC - [2008-04-22 07:03:00 | 001,083,848 | ---- | M] (C. Ghisler & Co.) -- C:\totalcmd\TOTALCMD.EXE
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-10-06 08:35:03 | 008,522,400 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011-10-04 08:55:58 | 001,833,112 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\mozjs.dll
MOD - [2011-10-04 08:55:58 | 000,161,944 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldap32v60.dll
MOD - [2011-10-04 08:55:58 | 000,021,656 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldappr32v60.dll
MOD - [2011-10-04 08:13:05 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011-06-06 12:55:36 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
MOD - [2011-04-28 16:14:33 | 001,712,128 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\269103939243ec6929739c8b9a645c0d\Microsoft.VisualBasic.ni.dll
MOD - [2011-04-28 16:11:41 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\684fe21837d3cf3e5935bbd0a7f53141\System.Core.ni.dll
MOD - [2011-04-28 16:09:48 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ed2bf0d86229128c194a872f70fe15ee\System.Windows.Forms.ni.dll
MOD - [2011-04-28 16:09:39 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d912066086a59f09424c7c69f95e2c55\System.Drawing.ni.dll
MOD - [2011-04-28 16:09:24 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\b06e49ed8cbe07dbb90e313fa634b27b\System.Xml.ni.dll
MOD - [2011-04-28 16:09:04 | 007,949,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\f02cf6430a9fc77908a74ab6925cb73c\System.ni.dll
MOD - [2011-04-28 16:08:49 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\62d5f089dd51f18472a7caf1593d9f6b\mscorlib.ni.dll
MOD - [2010-08-16 00:08:44 | 000,094,208 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1324683920-702694693-924725345-2012\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bip.pip.gov.pl/
IE - HKU\S-1-5-21-1324683920-702694693-924725345-2012\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.709: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.709: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009-07-21 10:35:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-10-04 08:13:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-09-28 08:03:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011-09-06 15:37:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
 
[2010-09-01 10:19:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Extensions
[2010-09-01 10:19:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011-10-03 09:07:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions
[2010-08-03 10:14:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-10-03 09:07:41 | 000,000,000 | ---D | M] (SeoQuake) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74}
[2011-09-09 08:04:37 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2011-01-11 09:12:01 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2011-08-03 08:08:04 | 000,000,000 | ---D | M] (Form History Control) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\formhistory@yahoo.com
[2011-06-29 12:46:28 | 000,000,000 | ---D | M] (Polski slownik poprawnej pisowni) -- C:\Documents and Settings\123456\Dane aplikacji\Mozilla\Firefox\Profiles\upluut8z.default\extensions\pl@dictionaries.addons.mozilla.org
[2011-05-17 12:20:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\123456\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\UPLUUT8Z.DEFAULT\EXTENSIONS\{A0A87DB2-80BA-493A-B22F-FAFBAEA3E0A2}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\123456\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\UPLUUT8Z.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\123456\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\UPLUUT8Z.DEFAULT\EXTENSIONS\FIREPHPEXTENSION-BUILD@FIREPHP.ORG.XPI
[2011-10-04 08:13:07 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011-01-18 10:17:25 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011-10-04 08:13:02 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2011-10-04 08:13:02 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-10-04 08:13:02 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-10-04 08:13:02 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2011-10-04 08:13:02 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-10-04 08:13:02 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2010-09-02 12:29:13 | 000,000,773 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 172.20.2.2	admin-gip.pip.gov.pl
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll File not found
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll File not found
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [Eraser] C:\Program Files\Eraser\Eraser.exe (The Eraser Project)
O4 - HKLM..\Run: [Google Updater] C:\Program Files\Google\Google Updater\GoogleUpdater.exe (Google)
O4 - HKLM..\Run: [WinVNC] C:\PCINFO\UVNC\winvnc.exe (TightVNC Group)
O4 - HKU\S-1-5-21-1324683920-702694693-924725345-2012..\Run: [AdobeBridge]  File not found
O4 - HKU\S-1-5-21-1324683920-702694693-924725345-2012..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [TSClientAXDisabler] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [TSClientMSIUninstaller] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [TSClientAXDisabler] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [TSClientMSIUninstaller] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DefaultLogonDomain = GIP
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1324683920-702694693-924725345-2012\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1324683920-702694693-924725345-2012\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 1
O9 - Extra Button: Statystyki dla ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\scieplgn.dll (Kaspersky Lab)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\System32\imon.dll (Eset )
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.euro.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Reg Error: Key error.)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263910314953 (WUWebControl Class)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263910281281 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.20.0.7 10.20.0.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = GIP.pip.gov.pl
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E39BD0CC-D28D-4382-9EF3-5CCBC813A598}: DhcpNameServer = 10.20.0.7 10.20.0.8
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004-09-20 12:19:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-01-25 10:05:12 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-01-25 10:05:13 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-10-10 08:35:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\123456\Pulpit\pr
[2011-10-07 09:33:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\123456\Menu Start\Programy\Dictionary
[2011-10-05 08:29:58 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011-10-04 14:18:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\123456\Recent
[2011-09-26 10:01:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\123456\Dane aplikacji\UltraVNC
[2006-11-02 14:25:40 | 000,034,816 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2006-11-02 14:09:56 | 000,010,240 | ---- | C] ( ) -- C:\WINDOWS\System32\KILLAPPS.EXE
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-10-10 13:59:54 | 000,004,866 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2011-10-10 13:40:43 | 010,223,616 | -H-- | M] () -- C:\Documents and Settings\123456\NTUSER.DAT
[2011-10-10 13:39:28 | 000,000,496 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2011-10-10 12:07:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-10-10 08:00:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-10-08 19:23:53 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2011-10-08 19:23:53 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2011-10-08 19:23:52 | 000,064,756 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000004-00001102-00000005-10031102}.rfx
[2011-10-08 19:23:52 | 000,054,536 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000004-00001102-00000005-10031102}.rfx
[2011-10-08 19:23:52 | 000,054,536 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000004-00001102-00000005-10031102}.rfx
[2011-10-07 15:56:25 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\123456\ntuser.ini
[2011-10-07 13:18:18 | 000,065,536 | ---- | M] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-10-07 13:13:51 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-10-06 08:35:03 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011-10-05 08:23:21 | 000,001,435 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011-10-04 08:07:42 | 002,380,056 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-10-03 15:10:41 | 000,066,080 | ---- | M] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2011-09-28 08:03:09 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader X.lnk
[2011-09-13 09:19:50 | 000,115,369 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011-09-13 09:19:50 | 000,097,961 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011-09-13 08:27:17 | 000,000,402 | ---- | M] () -- C:\Documents and Settings\123456\Pulpit\bip.lnk
[2011-09-12 07:55:41 | 000,000,972 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-09-28 08:03:07 | 000,002,315 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader X.lnk
[2011-09-13 08:27:17 | 000,000,402 | ---- | C] () -- C:\Documents and Settings\123456\Pulpit\bip.lnk
[2011-01-23 19:17:59 | 000,115,369 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011-01-23 19:17:59 | 000,097,961 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010-09-24 13:40:10 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\d3d9caps.dat
[2010-08-03 09:59:14 | 000,065,536 | ---- | C] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-02 09:53:20 | 000,000,496 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010-08-02 09:41:34 | 000,066,080 | ---- | C] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-08-02 09:32:44 | 002,703,216 | -H-- | C] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-08-02 09:32:44 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\123456\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-03-12 11:27:04 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-03-12 11:27:03 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-03-12 11:27:02 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-03-12 11:27:01 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010-03-12 11:27:01 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-03-12 11:26:59 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-03-12 11:26:59 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-11-26 16:13:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2009-11-24 09:51:34 | 000,281,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-11-24 09:51:33 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009-09-09 20:01:40 | 000,027,675 | ---- | C] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2009-06-25 11:43:34 | 000,000,335 | ---- | C] () -- C:\WINDOWS\mozregistry.dat
[2009-05-15 13:20:42 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\rmc.exe
[2009-03-10 14:01:50 | 000,000,023 | -HS- | C] () -- C:\WINDOWS\System32\edacded0_x.dat
[2009-02-12 06:09:00 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009-02-12 06:09:00 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2008-10-28 14:41:50 | 000,000,085 | ---- | C] () -- C:\WINDOWS\xrazor.ini
[2008-10-28 11:40:03 | 000,000,092 | ---- | C] () -- C:\WINDOWS\Orange.Ini
[2008-10-07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008-10-07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008-09-22 16:03:25 | 010,436,608 | ---- | C] () -- C:\WINDOWS\System32\QtGui4.dll
[2008-09-22 16:03:25 | 002,660,864 | ---- | C] () -- C:\WINDOWS\System32\QtCore4.dll
[2008-09-22 16:03:25 | 001,245,696 | ---- | C] () -- C:\WINDOWS\System32\QtNetwork4.dll
[2008-09-03 10:02:47 | 074,196,000 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2008-09-03 10:02:24 | 005,340,704 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2008-07-14 14:43:09 | 000,000,222 | ---- | C] () -- C:\WINDOWS\VOGEL.INI
[2008-06-25 09:06:24 | 000,000,121 | ---- | C] () -- C:\WINDOWS\Winchat.ini
[2008-05-16 11:58:04 | 000,012,632 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2008-05-05 12:04:26 | 000,000,062 | ---- | C] () -- C:\WINDOWS\soko.ini
[2008-02-04 18:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008-01-14 11:00:16 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI
[2007-11-26 22:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007-10-04 16:02:12 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
[2007-10-04 13:55:33 | 000,000,067 | ---- | C] () -- C:\WINDOWS\#1 DVD Ripper.INI
[2007-09-06 08:43:43 | 000,000,070 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2007-07-03 12:53:41 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe
[2007-07-03 12:53:41 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\moveex.exe
[2007-07-03 12:53:41 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe
[2007-06-19 15:29:48 | 000,000,054 | ---- | C] () -- C:\WINDOWS\atc.ini
[2007-06-18 12:42:42 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\srkey.exe
[2007-05-08 10:00:23 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
[2007-04-18 14:48:51 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007-04-18 14:03:24 | 000,002,337 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2007-04-18 12:44:27 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-04-18 12:41:58 | 000,001,156 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2007-04-18 11:09:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2007-04-18 10:40:57 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2007-04-18 10:28:47 | 000,004,625 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2007-04-17 14:25:58 | 000,000,180 | ---- | C] () -- C:\WINDOWS\hpbafd.ini
[2007-04-16 13:27:35 | 000,000,008 | ---- | C] () -- C:\WINDOWS\key_registry.dat
[2007-04-16 10:58:28 | 000,065,119 | R--- | C] () -- C:\WINDOWS\System32\claptn.ini
[2007-04-16 10:58:28 | 000,003,072 | ---- | C] () -- C:\WINDOWS\CTXFIRES.DLL
[2007-04-16 10:58:28 | 000,000,053 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2007-03-11 17:15:18 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007-03-11 17:13:43 | 000,001,435 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007-03-11 16:56:19 | 000,049,152 | ---- | C] () -- C:\WINDOWS\setpwrcg.exe
[2007-03-11 16:56:17 | 000,180,720 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2007-03-11 16:55:23 | 000,000,545 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006-11-02 14:27:38 | 000,043,520 | R--- | C] () -- C:\WINDOWS\System32\CTBurst.dll
[2006-11-02 14:24:30 | 000,037,888 | ---- | C] () -- C:\WINDOWS\PSCONV.EXE
[2006-11-02 14:14:58 | 000,325,821 | R--- | C] () -- C:\WINDOWS\System32\ctdlang.dat
[2006-11-02 14:14:58 | 000,046,273 | R--- | C] () -- C:\WINDOWS\System32\ctdnlstr.dat
[2006-11-02 14:12:26 | 000,035,328 | R--- | C] () -- C:\WINDOWS\System32\regplib.exe
[2006-11-02 14:12:08 | 000,149,838 | ---- | C] () -- C:\WINDOWS\System32\CTBAS2W.DAT
[2006-11-02 14:10:24 | 000,274,587 | ---- | C] () -- C:\WINDOWS\System32\CTSBAS2W.DAT
[2006-11-02 14:10:16 | 000,240,568 | ---- | C] () -- C:\WINDOWS\System32\CTSBASW.DAT
[2006-11-02 14:10:16 | 000,114,908 | ---- | C] () -- C:\WINDOWS\System32\CTBASICW.DAT
[2006-11-02 14:10:00 | 000,313,207 | R--- | C] () -- C:\WINDOWS\System32\ctstatic.dat
[2006-11-02 14:10:00 | 000,053,932 | R--- | C] () -- C:\WINDOWS\System32\ctdaught.dat
[2006-11-02 14:09:58 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\ENLOCSTR.EXE
[2006-09-08 08:30:44 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\detoured.dll
[2006-05-18 09:03:24 | 000,000,269 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
[2004-09-24 01:31:08 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll
[2004-09-20 12:24:24 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004-09-20 12:19:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2004-09-20 12:18:44 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2004-09-20 12:18:38 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2004-09-20 12:17:25 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004-09-20 12:17:11 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2004-09-20 12:17:11 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2004-09-20 12:16:44 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2004-09-20 12:16:43 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2004-09-20 12:12:41 | 001,252,712 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2004-09-20 12:12:39 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004-09-20 12:11:57 | 002,380,056 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004-09-20 12:06:01 | 000,570,586 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2004-09-20 12:06:01 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2004-09-20 12:06:01 | 000,112,184 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2004-09-20 12:06:01 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2004-09-20 12:06:00 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com
[2004-09-20 12:05:55 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2004-09-20 12:05:55 | 000,000,873 | ---- | C] () -- C:\WINDOWS\win.ini
[2004-09-20 12:05:54 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\vwipxspx.exe
[2004-09-20 12:05:53 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2004-09-20 12:05:53 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2004-09-20 12:05:53 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2004-09-20 12:05:48 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2004-09-20 12:05:48 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe
[2004-09-20 12:05:48 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2004-09-20 12:05:48 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004-09-20 12:05:48 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe
[2004-09-20 12:05:47 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2004-09-20 12:05:47 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2004-09-20 12:05:47 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe
[2004-09-20 12:05:46 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2004-09-20 12:05:46 | 000,507,018 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004-09-20 12:05:46 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004-09-20 12:05:46 | 000,089,812 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004-09-20 12:05:46 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004-09-20 12:05:46 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2004-09-20 12:05:46 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2004-09-20 12:05:46 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2004-09-20 12:05:46 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2004-09-20 12:05:46 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2004-09-20 12:05:45 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004-09-20 12:05:44 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004-09-20 12:05:44 | 000,003,260 | ---- | C] () -- C:\WINDOWS\System32\nw16.exe
[2004-09-20 12:05:43 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2004-09-20 12:05:43 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2004-09-20 12:05:43 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2004-09-20 12:05:43 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2004-09-20 12:05:43 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2004-09-20 12:05:43 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2004-09-20 12:05:43 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2004-09-20 12:05:43 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2004-09-20 12:05:43 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2004-09-20 12:05:43 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2004-09-20 12:05:42 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe
[2004-09-20 12:05:42 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2004-09-20 12:05:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004-09-20 12:05:39 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2004-09-20 12:05:39 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2004-09-20 12:05:39 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2004-09-20 12:05:39 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe
[2004-09-20 12:05:38 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2004-09-20 12:05:37 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004-09-20 12:05:37 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004-09-20 12:05:37 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe
[2004-09-20 12:05:36 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2004-09-20 12:05:36 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2004-09-20 12:05:36 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com
[2004-09-20 12:05:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\urxd9xd.dll
[2004-09-20 12:05:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\grcauth2.dll
[2004-09-20 12:05:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\grcauth1.dll
[2004-09-20 12:05:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2004-09-20 12:05:36 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2004-09-20 12:05:36 | 000,000,341 | ---- | C] () -- C:\WINDOWS\System32\zhttw6n.dll
[2004-09-20 12:05:36 | 000,000,100 | ---- | C] () -- C:\WINDOWS\System32\prsgrc.dll
[2004-09-20 12:05:36 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll
[2004-09-20 12:05:36 | 000,000,016 | -H-- | C] () -- C:\WINDOWS\System32\sx7rytv.dll
[2004-09-20 12:05:35 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2004-09-20 12:05:35 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com
[2004-09-20 12:05:32 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com
[2004-09-20 12:05:32 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2004-09-20 12:05:31 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe
[2004-09-20 12:05:30 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2004-09-20 12:05:30 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004-09-20 12:05:30 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2004-09-20 12:05:30 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe
[2004-09-20 12:05:30 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe
[2004-09-20 12:05:23 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe
[2004-09-20 12:05:21 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll
[2004-09-20 12:05:21 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com
[2004-09-20 12:05:21 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2004-09-20 12:05:21 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe
[2004-09-20 12:05:21 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-09-20 12:05:19 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2004-09-20 12:05:18 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2004-09-20 12:05:18 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe
[2004-09-20 12:05:18 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2002-06-25 09:28:18 | 000,000,477 | ---- | C] () -- C:\WINDOWS\my.ini
[2002-03-20 22:01:06 | 000,006,688 | R--- | C] () -- C:\WINDOWS\System32\Digita.sys
[2002-03-20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportUSB.dll
[2002-03-20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportSerial.dll
[2002-03-20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrDA.dll
[2002-03-20 22:00:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\TransportIrCOMM.dll
[2001-10-28 17:42:30 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe
[2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2007-04-18 12:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems
[2009-05-21 15:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2009-03-06 11:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Banner Maker Pro for Flash
[2007-06-22 08:46:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Flexiblesoft
[2010-04-07 08:19:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-11-17 14:04:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GroupPolicy
[2009-07-21 12:26:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2008-07-31 10:45:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
[2009-07-21 10:36:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-03-16 09:32:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tBGmcqRI
[2010-03-01 09:21:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2007-04-16 16:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
[2007-12-11 13:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\VertusTech
[2007-04-16 12:18:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Wave Systems Corp
[2009-03-06 16:18:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\ACD Systems
[2011-08-09 09:20:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\AIMP
[2011-08-09 15:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\BESTplayer
[2010-09-13 11:11:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\com.adobe.ExMan
[2011-04-15 10:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\FileZilla
[2010-12-22 16:49:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\Gadu-Gadu 10
[2010-08-02 10:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\GHISLER
[2010-08-02 09:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\Nowe Gadu-Gadu
[2010-09-01 10:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\Thunderbird
[2010-10-22 09:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\123456\Dane aplikacji\Ulead Systems
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 166 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:B3D74A13
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0A8E2C33
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:18DB21EC
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:466F9D5D

< End of report >