OTL logfile created on: 2011-12-02 09:15:29 - Run 4 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\JA\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1015,23 Mb Total Physical Memory | 716,07 Mb Available Physical Memory | 70,53% Memory free 2,41 Gb Paging File | 2,10 Gb Available in Paging File | 86,90% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 19,53 Gb Total Space | 0,84 Gb Free Space | 4,32% Space Free | Partition Type: NTFS Drive D: | 54,99 Gb Total Space | 24,30 Gb Free Space | 44,20% Space Free | Partition Type: NTFS Computer Name: SPEED_XP | User Name: JA | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-12-02 08:55:49 | 001,223,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe PRC - [2011-12-02 00:59:43 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JA\Pulpit\OTL.exe PRC - [2011-12-01 23:30:13 | 000,184,828 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe PRC - [2011-12-01 22:48:49 | 000,331,924 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe PRC - [2011-12-01 21:53:07 | 000,737,660 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe PRC - [2011-10-24 20:29:16 | 002,415,456 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe PRC - [2011-10-12 06:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2006-12-04 10:58:18 | 000,675,840 | ---- | M] (Sonix) -- C:\WINDOWS\vsnp2std.exe PRC - [2006-10-05 20:56:28 | 000,280,779 | ---- | M] () -- C:\WINDOWS\VistaDrive\VistaDrive.exe PRC - [2005-08-01 07:05:04 | 000,094,208 | ---- | M] (Lexmark International Inc.) -- C:\Program Files\Lexmark 2300 Series\ezprint.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2010-07-04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll MOD - [2007-09-20 18:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll MOD - [2006-10-05 20:56:28 | 000,280,779 | ---- | M] () -- C:\WINDOWS\VistaDrive\VistaDrive.exe MOD - [2005-06-13 14:04:22 | 000,192,512 | ---- | M] () -- C:\Program Files\Lexmark 2300 Series\iptk.dll MOD - [2001-10-30 12:36:54 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\ginamsi.dll MOD - [2001-10-28 16:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2011-12-01 23:30:13 | 000,184,828 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd) SRV - [2011-11-30 11:50:13 | 000,739,840 | ---- | M] (Spigot, Inc.) [Disabled | Stopped] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater) SRV - [2011-11-30 11:50:13 | 000,057,344 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ASTSRV.EXE -- (ASTSRV) SRV - [2011-11-30 11:49:49 | 000,654,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2011-10-12 06:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\95331952.sys -- (95331952) DRV - [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\56451071.sys -- (56451071) DRV - [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\46026056.sys -- (46026056) DRV - [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\40865138.sys -- (40865138) DRV - [2011-10-07 06:23:48 | 000,230,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2011-10-04 06:21:42 | 000,016,720 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2011-09-13 06:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - [2011-08-08 06:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-07-11 01:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2011-07-11 01:14:28 | 000,024,272 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2011-07-11 01:14:28 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - [2011-07-11 01:14:26 | 000,134,608 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2006-10-30 12:53:32 | 000,044,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HECI.sys -- (HECI) Intel(R) DRV - [2006-10-12 09:52:04 | 004,387,328 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2006-02-25 16:13:06 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - No CLSID value found IE - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Google" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: pdfforge@mybrowserbar.com:4.7 FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.2 FF - prefs.js..extensions.enabledItems: quickstores@quickstores.de:1.1.0 FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:4.7 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:12.0.0.1865 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.3088: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.3006: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\JA\Dane aplikacji\Facebook\npfbplugin_1_0_3.dll ( ) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG2012\Firefox\ [2011-12-01 21:27:22 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2011-12-01 21:28:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-06-02 09:12:20 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-03-31 22:04:13 | 000,000,000 | ---D | M] [2009-01-11 11:31:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JA\Dane aplikacji\Mozilla\Extensions [2011-12-02 09:08:47 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JA\Dane aplikacji\Mozilla\Firefox\Profiles\26zholxe.default\extensions [2009-12-06 13:26:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\JA\Dane aplikacji\Mozilla\Firefox\Profiles\26zholxe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-01 13:17:45 | 000,000,000 | ---D | M] (Personas) -- C:\Documents and Settings\JA\Dane aplikacji\Mozilla\Firefox\Profiles\26zholxe.default\extensions\personas@christopher.beard [2009-05-30 00:14:07 | 000,000,681 | ---- | M] () -- C:\Documents and Settings\JA\Dane aplikacji\Mozilla\Firefox\Profiles\26zholxe.default\searchplugins\ask.xml [2011-12-02 08:55:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-12-01 11:04:00 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de [2011-12-01 21:27:22 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX [2011-10-26 22:11:35 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM [2009-01-08 18:56:56 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011-10-26 22:11:36 | 000,000,000 | ---D | M] (pdfforge Toolbar) -- C:\PROGRAM FILES\PDFFORGE TOOLBAR\FF [2009-07-22 15:11:18 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2009-01-11 11:31:26 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2009-01-11 11:31:26 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2009-01-11 11:31:26 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2009-01-11 11:31:26 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-01-11 11:31:26 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 2300 Series\ezprint.exe (Lexmark International Inc.) O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe () O4 - HKLM..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe (Sonix) O4 - HKLM..\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe () O4 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKLM..\RunOnce: [WIAWizardMenu] C:\WINDOWS\System32\sti_ci.dll (Microsoft Corporation) O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideRunAsVerb = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThumbnailCache = 1 O9 - Extra Button: Statystyki dla ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - Reg Error: Key error. File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found O15 - HKU\.DEFAULT\..Trusted Domains: google.com ([mail] https in Trusted sites) O15 - HKU\S-1-5-18\..Trusted Domains: google.com ([mail] https in Trusted sites) O15 - HKU\S-1-5-20\..Trusted Domains: google.com ([mail] https in Trusted sites) O15 - HKU\S-1-5-21-1343024091-1972579041-682003330-1001\..Trusted Domains: google.com ([mail] https in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{40DBD82D-CF2B-4383-8C74-DCEA227C0885}: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: GinaDLL - (ginamsi.dll) -C:\WINDOWS\System32\ginamsi.dll () O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 0 O32 - AutoRun File - [2008-12-23 11:03:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{8d56f5b9-d0d9-11dd-b020-001a4b36e8be}\Shell\Auto\command - "" = F:\tel.xls.exe O33 - MountPoints2\{8d56f5b9-d0d9-11dd-b020-001a4b36e8be}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tel.xls.exe O33 - MountPoints2\{b75df6a2-d34e-11dd-b025-001a4b36e8be}\Shell\AutoRun\command - "" = F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\spoolsv.exe O33 - MountPoints2\{b75df6a2-d34e-11dd-b025-001a4b36e8be}\Shell\open\command - "" = F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\spoolsv.exe O33 - MountPoints2\{ff0e77fe-1f5e-11de-b106-001a4b36e8be}\Shell\Auto\command - "" = F:\tel.xls.exe O33 - MountPoints2\{ff0e77fe-1f5e-11de-b106-001a4b36e8be}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tel.xls.exe O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (OODBS) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] File not found -- C:\Documents and Settings\JA\Pulpit\Shiro Sagisu - File not found -- C:\WINDOWS\System32\ [2011-12-02 09:02:21 | 000,187,464 | ---- | C] (Webroot) -- C:\Documents and Settings\JA\Pulpit\antizeroaccess.exe [2011-12-02 08:44:19 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\JA\Recent [2011-12-02 00:59:43 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\JA\Pulpit\OTL.exe [2011-12-02 00:16:28 | 004,324,789 | R--- | C] (Swearware) -- C:\Documents and Settings\JA\Pulpit\ComboFix.exe [2011-12-01 23:10:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\RTSkin [2011-12-01 23:09:53 | 004,387,328 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.Sys [2011-12-01 23:09:52 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011-12-01 23:09:50 | 000,499,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2011-12-01 23:09:38 | 000,000,000 | ---D | C] -- C:\swsetup [2011-12-01 22:27:39 | 004,122,368 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys [2011-12-01 22:27:38 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe [2011-12-01 22:26:45 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2011-12-01 22:26:42 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe [2011-12-01 22:26:42 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcrmv.exe [2011-12-01 22:24:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Pulpit\WDM_A406 [2011-12-01 21:40:03 | 000,000,000 | -H-D | C] -- C:\$AVG [2011-12-01 21:29:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Dane aplikacji\AVG2012 [2011-12-01 21:28:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2011-12-01 21:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG 2012 [2011-12-01 21:27:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2011-12-01 21:27:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG [2011-12-01 21:26:45 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2011-12-01 21:25:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2011-12-01 20:34:56 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011-12-01 20:34:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee [2011-12-01 20:14:12 | 158,651,816 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\JA\Pulpit\avg_free_x86_all_2012_1873a4623.exe [2011-12-01 17:06:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\RegistryFix8 [2011-12-01 17:06:49 | 000,000,000 | ---D | C] -- C:\Program Files\RegistryFix8 [2011-12-01 16:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-12-01 16:52:51 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Security [2011-12-01 16:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Tools [2011-12-01 16:44:59 | 000,319,568 | ---- | C] (Softonic) -- C:\Documents and Settings\JA\Pulpit\SoftonicDownloader_dla_pc-tools-spyware-doctor.exe [2011-12-01 16:41:11 | 001,227,704 | ---- | C] (Registry Fix ) -- C:\Documents and Settings\JA\Pulpit\registryfix.exe [2011-12-01 15:43:53 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2011-12-01 15:43:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Menu Start\Programy\HiJackThis [2011-12-01 11:03:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Dane aplikacji\QuickStoresToolbar [2011-12-01 11:03:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Menu Start\Programy\Unlocker [2011-12-01 02:29:20 | 000,000,000 | --SD | C] -- C:\32788R22FWJFW [2011-11-30 14:03:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\DoctorWeb [2011-11-30 11:17:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data [2011-11-30 11:03:19 | 000,133,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\46026056.sys [2011-11-30 10:48:24 | 000,133,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\56451071.sys [2011-11-30 10:33:41 | 000,133,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\40865138.sys [2011-11-30 10:33:16 | 000,133,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\95331952.sys [2011-11-30 10:20:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Adobe [2011-11-30 02:15:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Artizen [2011-11-30 02:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer [2011-11-30 01:47:02 | 000,000,000 | ---D | C] -- C:\Program Files\Instant Photo Effects 2 [2011-11-30 01:35:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\3833e736 [2011-11-30 01:23:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Dane aplikacji\Imagenomic [2011-11-30 01:23:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Dane aplikacji\Alien Skin [2011-11-30 01:20:01 | 000,000,000 | ---D | C] -- C:\Program Files\Alien Skin [2011-11-29 01:21:35 | 000,000,000 | ---D | C] -- C:\Program Files\Imagenomic [2011-11-29 01:21:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Imagenomic [2011-11-29 01:03:31 | 000,000,000 | ---D | C] -- C:\Program Files\Download Manager [2011-11-29 00:24:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Menu Start\Programy\BW Styler [2011-11-29 00:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\BWStyler [2011-11-29 00:23:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JA\Moje dokumenty\My Pictures [2009-08-25 21:38:05 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2std.dll [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] File not found -- C:\Documents and Settings\JA\Pulpit\Shiro Sagisu - File not found -- C:\WINDOWS\System32\ [2011-12-02 09:07:00 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2011-12-02 09:06:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-12-02 09:06:00 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\JA\NTUSER.DAT [2011-12-02 09:06:00 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\JA\ntuser.ini [2011-12-02 09:05:14 | 000,456,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2011-12-02 09:02:21 | 000,187,464 | ---- | M] (Webroot) -- C:\Documents and Settings\JA\Pulpit\antizeroaccess.exe [2011-12-02 08:58:45 | 111,204,381 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2011-12-02 08:51:16 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\eohv0my1.exe [2011-12-02 01:49:28 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-12-02 00:59:43 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JA\Pulpit\OTL.exe [2011-12-02 00:52:52 | 000,002,437 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\HiJackThis.lnk [2011-12-02 00:16:47 | 004,324,789 | R--- | M] (Swearware) -- C:\Documents and Settings\JA\Pulpit\ComboFix.exe [2011-12-01 22:23:40 | 018,802,279 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\WDM_A406.zip [2011-12-01 21:23:48 | 158,651,816 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\JA\Pulpit\avg_free_x86_all_2012_1873a4623.exe [2011-12-01 20:34:56 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011-12-01 20:03:33 | 000,592,156 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB [2011-12-01 19:41:03 | 004,808,604 | -H-- | M] () -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-12-01 17:06:51 | 000,000,643 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\RegistryFix8.lnk [2011-12-01 16:45:01 | 000,319,568 | ---- | M] (Softonic) -- C:\Documents and Settings\JA\Pulpit\SoftonicDownloader_dla_pc-tools-spyware-doctor.exe [2011-12-01 16:41:16 | 001,227,704 | ---- | M] (Registry Fix ) -- C:\Documents and Settings\JA\Pulpit\registryfix.exe [2011-12-01 15:43:32 | 001,402,880 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\HijackThis.msi [2011-11-30 14:01:19 | 082,770,368 | ---- | M] () -- C:\Documents and Settings\JA\Pulpit\launch.exe [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\95331952.sys [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\56451071.sys [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\46026056.sys [2011-11-30 12:05:06 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\40865138.sys [2011-11-30 11:50:13 | 000,057,344 | ---- | M] () -- C:\WINDOWS\System32\ASTSRV.EXE [2011-11-30 11:09:53 | 001,209,622 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2011-11-30 11:09:53 | 000,539,572 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-11-30 11:09:53 | 000,477,368 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-11-30 11:09:53 | 000,098,562 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-11-30 11:09:53 | 000,078,638 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-11-29 00:16:09 | 000,044,544 | ---- | M] () -- C:\WINDOWS\AWuninstall.exe [2011-11-29 00:05:00 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2011-11-29 00:05:00 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for [2011-11-27 20:47:55 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-11-20 16:25:21 | 026,175,488 | ---- | M] () -- C:\Documents and Settings\JA\Moje dokumenty\EMPIK.iso [2011-11-19 20:03:42 | 000,065,760 | ---- | M] () -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2011-11-17 21:05:02 | 001,547,536 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-11-03 14:35:33 | 000,462,393 | ---- | M] () -- C:\Documents and Settings\JA\Moje dokumenty\KrzysztofNachel CV.pdf [2011-11-03 14:10:48 | 000,580,108 | ---- | M] () -- C:\Documents and Settings\JA\Moje dokumenty\WiktorNowakCV2.pdf [2011-11-03 14:05:25 | 000,000,913 | ---- | M] () -- C:\WINDOWS\win.ini [2011-11-03 14:05:25 | 000,000,049 | ---- | M] () -- C:\WINDOWS\SW_Win9423X24.DLL [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-12-02 08:58:45 | 111,204,381 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2011-12-02 08:51:15 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\eohv0my1.exe [2011-12-01 23:10:36 | 000,001,996 | ---- | C] () -- C:\WINDOWS\System32\drivers\HDACfg.dat [2011-12-01 22:27:39 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2011-12-01 22:27:38 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav [2011-12-01 21:19:00 | 018,802,279 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\WDM_A406.zip [2011-12-01 17:06:51 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\RegistryFix8.lnk [2011-12-01 16:53:26 | 000,592,156 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB [2011-12-01 15:43:54 | 000,002,437 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\HiJackThis.lnk [2011-12-01 15:43:31 | 001,402,880 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\HijackThis.msi [2011-12-01 11:37:28 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-11-30 13:58:31 | 082,770,368 | ---- | C] () -- C:\Documents and Settings\JA\Pulpit\launch.exe [2011-11-30 01:20:12 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ASTSRV.EXE [2011-11-29 00:05:00 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn [2011-11-29 00:05:00 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for [2011-11-20 16:25:20 | 026,175,488 | ---- | C] () -- C:\Documents and Settings\JA\Moje dokumenty\EMPIK.iso [2011-11-03 14:35:32 | 000,462,393 | ---- | C] () -- C:\Documents and Settings\JA\Moje dokumenty\KrzysztofNachel CV.pdf [2011-10-17 12:55:37 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db [2011-06-15 11:11:33 | 000,447,125 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1343024091-1972579041-682003330-1001-0.dat [2011-06-15 11:11:32 | 000,305,918 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat [2011-04-11 18:48:47 | 000,327,743 | ---- | C] () -- C:\WINDOWS\System32\drivers\str.sys [2011-01-13 16:43:51 | 000,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2011-01-10 16:25:24 | 000,029,996 | -H-- | C] () -- C:\Documents and Settings\JA\Dane aplikacji\ntuser.dat [2010-12-24 15:42:33 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\abpzlw.dat [2010-09-30 20:08:23 | 000,005,233 | ---- | C] () -- C:\WINDOWS\uyodekosubukaqib.dll [2010-09-30 18:06:20 | 000,005,243 | ---- | C] () -- C:\WINDOWS\orikojegigudud.dll [2010-09-30 16:59:54 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\JA\Dane aplikacji\avdrn.dat [2010-09-30 16:04:20 | 000,005,245 | ---- | C] () -- C:\WINDOWS\egetacoy.dll [2010-09-30 14:02:20 | 000,005,197 | ---- | C] () -- C:\WINDOWS\uholikufevorid.dll [2010-09-29 22:29:32 | 000,005,215 | ---- | C] () -- C:\WINDOWS\ewanidopumam.dll [2010-09-28 20:23:40 | 000,005,269 | ---- | C] () -- C:\WINDOWS\ikoyevevamiw.dll [2010-09-28 18:21:39 | 000,005,221 | ---- | C] () -- C:\WINDOWS\ayiboludos.dll [2010-09-28 16:19:38 | 000,005,217 | ---- | C] () -- C:\WINDOWS\ojepavidifex.dll [2010-09-27 20:15:16 | 000,005,225 | ---- | C] () -- C:\WINDOWS\ucenopafebo.dll [2010-09-27 16:11:15 | 000,005,227 | ---- | C] () -- C:\WINDOWS\icubuxid.dll [2010-09-25 09:57:31 | 000,005,177 | ---- | C] () -- C:\WINDOWS\inozavoh.dll [2010-09-25 07:55:33 | 000,005,201 | ---- | C] () -- C:\WINDOWS\opogatag.dll [2010-09-24 19:39:04 | 000,005,221 | ---- | C] () -- C:\WINDOWS\isizepuf.dll [2010-09-24 17:37:05 | 000,005,227 | ---- | C] () -- C:\WINDOWS\elimaqawepewapa.dll [2010-09-23 20:47:52 | 000,005,197 | ---- | C] () -- C:\WINDOWS\isoqubub.dll [2010-09-23 18:45:48 | 000,005,243 | ---- | C] () -- C:\WINDOWS\ufapahogevopeba.dll [2010-09-23 05:29:27 | 000,005,207 | ---- | C] () -- C:\WINDOWS\epegewuxiqeniwa.dll [2010-09-22 21:40:11 | 000,005,209 | ---- | C] () -- C:\WINDOWS\uhuguxav.dll [2010-09-22 19:38:11 | 000,005,201 | ---- | C] () -- C:\WINDOWS\ofebubovidog.dll [2010-09-22 05:15:27 | 000,005,213 | ---- | C] () -- C:\WINDOWS\udexavig.dll [2010-09-21 21:23:45 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\SUSBKey.dll [2010-09-21 21:23:45 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ginamsi.dll [2010-09-21 19:20:56 | 000,005,231 | ---- | C] () -- C:\WINDOWS\onunures.dll [2010-09-21 19:00:22 | 000,005,211 | ---- | C] () -- C:\WINDOWS\agoyafis.dll [2010-09-21 15:17:42 | 000,005,171 | ---- | C] () -- C:\WINDOWS\evoqeqalux.dll [2010-09-20 20:05:22 | 000,005,213 | ---- | C] () -- C:\WINDOWS\asuzifowasilare.dll [2010-09-20 18:03:23 | 000,005,203 | ---- | C] () -- C:\WINDOWS\aqejugerudane.dll [2010-09-18 11:57:41 | 000,005,217 | ---- | C] () -- C:\WINDOWS\idagubelix.dll [2010-09-18 09:57:01 | 000,005,221 | ---- | C] () -- C:\WINDOWS\otomemapiqiy.dll [2010-09-17 22:34:46 | 000,005,221 | ---- | C] () -- C:\WINDOWS\ezunukifasocuke.dll [2010-09-16 20:39:28 | 000,005,203 | ---- | C] () -- C:\WINDOWS\eqizajifohavo.dll [2010-09-16 18:37:28 | 000,005,225 | ---- | C] () -- C:\WINDOWS\ihufovavoxosok.dll [2010-09-14 22:21:40 | 000,005,213 | ---- | C] () -- C:\WINDOWS\uzowejoguxaboko.dll [2010-09-14 20:19:43 | 000,005,225 | ---- | C] () -- C:\WINDOWS\uvugakusa.dll [2010-09-14 18:17:41 | 000,005,207 | ---- | C] () -- C:\WINDOWS\ewizosow.dll [2010-09-14 16:15:41 | 000,005,191 | ---- | C] () -- C:\WINDOWS\efahuxew.dll [2010-09-13 21:00:00 | 000,005,247 | ---- | C] () -- C:\WINDOWS\apahohil.dll [2010-09-13 18:58:01 | 000,005,213 | ---- | C] () -- C:\WINDOWS\ejamuyixusumoca.dll [2010-09-12 20:36:32 | 000,005,247 | ---- | C] () -- C:\WINDOWS\agisunogewusuya.dll [2010-09-12 18:34:41 | 000,005,225 | ---- | C] () -- C:\WINDOWS\uxuwakevadazad.dll [2010-09-09 21:06:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ikicolalocupuw.dll [2010-09-08 20:14:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\idofoqiwuhu.dll [2010-09-08 18:12:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ehiziwawazulaxu.dll [2010-09-08 16:10:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\afuzevuladiwoxew.dll [2010-09-08 15:23:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\egunalulin.dll [2010-09-08 15:16:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ifihopiranohi.dll [2010-09-05 19:39:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oquziresoxiwuvur.dll [2010-09-03 10:34:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\esuziwawazulaxu.dll [2010-09-02 19:33:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ogoyafis.dll [2010-09-01 20:58:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ibawobey.dll [2010-09-01 16:54:04 | 000,005,203 | ---- | C] () -- C:\WINDOWS\agiviqeme.dll [2010-08-29 20:43:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\irunaqafotocedo.dll [2010-08-26 20:55:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\icerokowuca.dll [2010-08-26 18:53:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\edolufiwuzo.dll [2010-08-26 17:07:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\udolufiwuzozawu.dll [2010-08-23 20:11:00 | 000,005,191 | ---- | C] () -- C:\WINDOWS\alefiyasomizihaw.dll [2010-08-22 07:31:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oqejugerudane.dll [2010-08-21 13:48:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oyarojewujo.dll [2010-08-21 10:37:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eforihesogologiw.dll [2010-08-20 16:17:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\izuzutazetifig.dll [2010-08-19 21:19:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\efarabulezel.dll [2010-08-19 04:59:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\aginerulatoqez.dll [2010-08-16 21:31:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\osunoduse.dll [2010-08-11 22:48:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eviwosaf.dll [2010-08-09 22:05:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\omihefozujecazuw.dll [2010-08-06 04:53:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iyoqozuz.dll [2010-08-05 21:52:37 | 000,000,000 | ---- | C] () -- C:\WINDOWS\amureheg.dll [2010-08-03 17:39:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uxipidurayape.dll [2010-08-03 15:20:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oyiwajur.dll [2010-08-02 20:56:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ulabecebepaguhey.dll [2010-08-02 18:54:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uzosefubemobelis.dll [2010-08-02 16:52:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ijujofuloh.dll [2010-08-02 14:50:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eliwanulamol.dll [2010-08-01 22:27:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ucutulivihanofow.dll [2010-08-01 20:25:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\efetokara.dll [2010-07-31 12:42:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\itaqiwogijaniler.dll [2010-07-31 11:13:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eyobituyihita.dll [2010-07-31 09:11:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\esacacezafit.dll [2010-07-30 22:53:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ivoruzifu.dll [2010-07-30 20:51:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oxiveler.dll [2010-07-30 17:28:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\idelefar.dll [2010-07-30 15:49:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\izoqeqalux.dll [2010-07-29 22:53:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\imoquwezanon.dll [2010-07-28 20:47:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ofopubitukixuyoy.dll [2010-07-28 18:45:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\igibogise.dll [2010-07-28 16:43:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\avequbefova.dll [2010-07-28 14:42:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\epihohilof.dll [2010-07-27 23:08:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ofeqijol.dll [2010-07-27 21:06:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uvaquqisef.dll [2010-07-27 04:53:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\itamewome.dll [2010-07-26 22:04:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\erenoduse.dll [2010-07-26 18:00:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\equziresoxiwuvur.dll [2010-07-26 17:18:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ejibojebuqag.dll [2010-07-26 13:14:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\odoyocozofuqoqiw.dll [2010-07-26 06:11:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\isepadewi.dll [2010-07-25 21:49:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ayupisozoqoc.dll [2010-07-24 08:24:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ewezogazin.dll [2010-07-22 11:21:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ifetokaratiqe.dll [2010-07-22 08:55:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ohahebafideqube.dll [2010-07-21 18:01:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ihutitef.dll [2010-07-19 13:01:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\opeyovox.dll [2010-07-19 11:00:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uzobidukemug.dll [2010-07-19 08:57:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\agegapojuyibox.dll [2010-07-19 06:55:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\acocipihaxiqexej.dll [2010-07-19 04:53:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\izisixejigulu.dll [2010-07-19 02:51:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ejeworucato.dll [2010-07-19 00:49:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\adogakusa.dll [2010-07-18 22:47:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\otemijig.dll [2010-07-18 20:45:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ilakedomigiv.dll [2010-07-18 16:41:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ejalapel.dll [2010-07-18 14:39:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\evoridoz.dll [2010-07-16 06:13:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eviwosafuzawo.dll [2010-07-15 22:12:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ezacixaf.dll [2010-07-15 19:55:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ivawevevuk.dll [2010-07-15 17:53:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\atuwuhuropifatu.dll [2010-07-15 14:30:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ixawejoguxaboko.dll [2010-07-15 12:28:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\arosivolupuf.dll [2010-07-15 10:26:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\odivarowigesife.dll [2010-07-14 22:09:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ewejidifeme.dll [2010-07-14 15:23:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ezawidogodobuvo.dll [2010-07-14 13:21:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ivagevus.dll [2010-07-14 11:19:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\unalixib.dll [2010-07-14 09:17:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oqovaxes.dll [2010-07-14 07:15:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iwefikavup.dll [2010-07-13 21:04:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oyiwegumesawe.dll [2010-07-13 14:59:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\awoqonof.dll [2010-07-13 13:09:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eqigajim.dll [2010-07-13 11:07:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uweyutezezuq.dll [2010-07-13 09:05:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\uwejidifemeyuda.dll [2010-07-12 23:19:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\okoqonofajahiga.dll [2010-02-25 14:19:49 | 000,000,049 | ---- | C] () -- C:\WINDOWS\SW_Win9423X24.DLL [2009-12-04 10:33:12 | 000,179,640 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-09-07 23:10:16 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2009-08-25 21:38:06 | 000,025,344 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncamd.sys [2009-08-25 21:38:06 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2std.ini [2009-07-22 20:51:47 | 000,004,094 | ---- | C] () -- C:\WINDOWS\jmrx_vg.ini [2009-07-22 20:51:47 | 000,001,441 | ---- | C] () -- C:\WINDOWS\chqkrw16.ini [2009-07-02 10:38:00 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3CutterJoiner.ini [2009-07-02 10:32:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySMP3CutJoin.dat [2009-06-07 21:53:57 | 000,044,544 | ---- | C] () -- C:\WINDOWS\AWuninstall.exe [2009-05-30 00:35:50 | 001,114,400 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat [2009-05-30 00:35:50 | 000,048,416 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat [2009-05-27 19:14:05 | 000,696,882 | ---- | C] () -- C:\WINDOWS\unins000.exe [2009-05-27 19:14:05 | 000,025,284 | ---- | C] () -- C:\WINDOWS\unins000.dat [2009-05-27 15:25:20 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2009-05-12 22:03:31 | 000,782,336 | ---- | C] () -- C:\WINDOWS\System32\IlmImf.dll [2009-05-12 22:03:31 | 000,446,464 | ---- | C] () -- C:\WINDOWS\System32\Photomatix_jpg.dll [2009-05-12 22:03:31 | 000,353,280 | ---- | C] () -- C:\WINDOWS\System32\pmtf2.dll [2009-05-12 22:03:31 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\Photomatix25Lib2.dll [2009-05-12 22:03:31 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\pmtf1.dll [2009-05-12 22:03:31 | 000,204,288 | ---- | C] () -- C:\WINDOWS\System32\pmtf3.dll [2009-05-12 22:03:31 | 000,095,525 | ---- | C] () -- C:\WINDOWS\System32\Photomatix25Lib3.dll [2009-05-12 22:03:31 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\pmexr.dll [2009-05-12 22:03:31 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmbm.dll [2009-05-12 22:03:30 | 000,278,528 | ---- | C] () -- C:\WINDOWS\System32\Photomatix25Lib.dll [2009-05-03 12:47:08 | 000,000,054 | ---- | C] () -- C:\WINDOWS\wininit.ini [2009-01-05 22:03:06 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-12-29 21:23:22 | 000,065,760 | ---- | C] () -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-12-24 00:05:47 | 004,808,604 | -H-- | C] () -- C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-12-23 16:49:10 | 000,000,045 | -H-- | C] () -- C:\WINDOWS\dsez9199.dat [2008-12-23 11:53:50 | 001,209,622 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2008-12-23 11:53:49 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008-12-23 11:49:28 | 001,174,000 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll [2008-12-23 11:49:28 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4864.dll [2008-12-23 11:49:28 | 000,104,636 | ---- | C] () -- C:\WINDOWS\System32\igmedcompkrn.dll [2008-12-23 11:47:36 | 001,547,536 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2008-12-23 11:08:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008-12-23 11:06:27 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2008-12-23 11:05:38 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-12-23 11:05:36 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-12-23 11:05:36 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-12-23 11:05:35 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-12-23 11:05:35 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-12-23 11:05:34 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-12-23 11:03:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2008-12-23 11:02:45 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2008-12-23 11:02:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2008-12-23 11:02:14 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008-12-23 11:01:57 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2008-12-23 11:01:57 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2008-12-23 11:00:10 | 000,394,752 | ---- | C] () -- C:\WINDOWS\System32\cygwinb19.dll [2008-12-23 10:59:58 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2008-01-31 12:30:18 | 000,000,381 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2008-01-29 00:08:14 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll [2006-01-09 20:53:56 | 003,842,048 | ---- | C] () -- C:\WINDOWS\System32\tlpsplib10fe.dll [2004-08-03 22:56:48 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004-08-03 22:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2004-08-03 22:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2004-08-03 22:43:58 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2004-08-03 22:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2004-08-03 22:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2004-08-03 20:51:32 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe [2004-08-03 20:48:52 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe [2004-08-03 20:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2004-08-03 20:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2004-08-03 20:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2004-08-03 20:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2004-08-03 20:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2004-08-03 20:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2004-08-02 12:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004-07-17 09:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2001-10-26 18:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe [2001-10-26 18:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2001-10-26 18:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2001-10-26 17:15:16 | 000,539,572 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 17:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 17:15:16 | 000,098,562 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 17:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-10-26 17:15:08 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe [2001-10-26 17:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2001-10-26 17:14:58 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe [2001-10-26 17:14:56 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe [2001-10-26 17:14:54 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com [2001-10-26 17:14:54 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com [2001-10-26 17:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2001-10-26 17:14:50 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com [2001-10-26 17:14:48 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe [2001-10-26 17:14:38 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com [2001-10-26 17:14:34 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe [2001-10-26 17:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2001-10-26 17:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2001-10-26 16:45:34 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\NSREG.DLL [2001-10-26 16:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2001-10-26 16:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2001-08-23 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-17 22:35:10 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe [2001-08-17 22:32:34 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe [2001-08-17 22:32:34 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe [2001-08-17 22:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2001-08-17 22:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2001-08-17 22:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2001-08-17 22:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2001-08-17 22:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2001-08-17 22:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2001-08-17 22:30:24 | 000,477,368 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-17 22:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-17 22:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-17 22:30:22 | 000,078,638 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-17 20:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2001-07-22 03:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2001-07-21 23:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-21 23:36:06 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2001-07-21 23:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001-07-21 23:16:20 | 000,000,913 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-21 23:15:52 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-21 23:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [color=#E56717]========== LOP Check ==========[/color] [2008-12-23 11:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\uTorrent [2011-11-30 02:15:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Artizen [2011-12-01 23:12:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2011-12-01 21:28:26 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2009-05-03 12:50:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DriverScanner [2011-06-12 22:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-12-02 08:59:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2011-06-12 22:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2011-11-30 02:22:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer [2011-12-01 19:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2008-12-23 11:33:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl [2011-11-20 16:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tmp [2008-12-23 11:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\uTorrent [2010-10-10 22:23:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gość\Dane aplikacji\uTorrent [2011-11-30 01:23:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Alien Skin [2008-12-27 21:04:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\AutoUpdate [2011-12-01 21:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\AVG2012 [2010-06-28 13:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Facebook [2009-06-06 23:07:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Filter Forge Freepack 1 - Metals [2009-06-06 23:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Filter Forge Freepack 2 - Photo Effects [2009-06-06 23:07:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Filter Forge Freepack 3 - Frames [2009-06-06 23:03:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Filter Forge Freepack 4 - Distortions [2008-12-27 21:04:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Flircik [2008-12-23 11:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Gadu-Gadu [2011-06-15 10:35:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\IDoser [2011-11-30 01:23:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Imagenomic [2011-10-31 18:31:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\ipla [2009-10-12 14:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Opera [2010-01-10 19:28:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\pdfforge [2011-12-01 11:04:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\QuickStoresToolbar [2011-10-26 22:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Search Settings [2009-01-10 15:59:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\SuperMemo World [2009-07-22 21:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Thinstall [2009-12-05 14:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Thunderbird [2011-11-19 10:00:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Tlen.pl [2009-04-02 09:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Uniblue [2011-10-31 18:31:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\uTorrent [2009-04-14 22:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JA\Dane aplikacji\Vimisoft Studio [2010-12-06 16:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kasia\Dane aplikacji\Gadu-Gadu [2010-07-09 16:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kasia\Dane aplikacji\pdfforge [2010-12-03 19:17:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kasia\Dane aplikacji\Search Settings [2008-12-23 11:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kasia\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:430C6D84 < End of report >