OTL logfile created on: 2012-02-18 12:11:18 - Run 1 OTL by OldTimer - Version 3.2.32.0 Folder = C:\Users\Adam\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,31 Gb Available Physical Memory | 57,92% Memory free 7,99 Gb Paging File | 6,20 Gb Available in Paging File | 77,58% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 63,47 Gb Total Space | 2,06 Gb Free Space | 3,25% Space Free | Partition Type: NTFS Drive D: | 402,28 Gb Total Space | 3,66 Gb Free Space | 0,91% Space Free | Partition Type: NTFS Computer Name: ADAM-KOMPUTER | User Name: Adam | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-02-18 12:10:08 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Downloads\OTL.exe PRC - [2011-12-14 13:13:28 | 000,748,440 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe PRC - [2011-07-16 22:21:04 | 000,302,592 | ---- | M] () -- C:\Users\Adam\Desktop\gmer.exe PRC - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2010-11-22 11:31:55 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe PRC - [2010-11-22 11:31:55 | 000,008,192 | ---- | M] () -- C:\Windows\SysWOW64\srvany.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-02-15 06:03:36 | 000,429,040 | ---- | M] () -- C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll MOD - [2012-02-15 06:03:34 | 003,772,912 | ---- | M] () -- C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\pdf.dll MOD - [2012-02-15 06:02:10 | 000,122,880 | ---- | M] () -- C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\avutil-51.dll MOD - [2012-02-15 06:02:08 | 000,220,672 | ---- | M] () -- C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\avformat-53.dll MOD - [2012-02-15 06:02:07 | 001,747,456 | ---- | M] () -- C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\avcodec-53.dll MOD - [2011-07-16 22:21:04 | 000,302,592 | ---- | M] () -- C:\Users\Adam\Desktop\gmer.exe MOD - [2011-03-17 00:11:16 | 004,297,568 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2011-11-30 17:58:02 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:[b]64bit:[/b] - [2010-09-22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2011-12-14 13:13:28 | 000,748,440 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater) SRV - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2010-11-22 11:31:55 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\srvany.exe -- (KMService) SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2009-05-15 07:35:52 | 000,935,208 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [Disabled | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-11-30 18:44:02 | 010,497,024 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:[b]64bit:[/b] - [2011-11-30 17:13:28 | 000,326,656 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:[b]64bit:[/b] - [2011-11-19 18:24:44 | 000,526,392 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2011-03-10 15:44:16 | 002,725,376 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp) DRV:[b]64bit:[/b] - [2010-11-20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2010-11-20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:[b]64bit:[/b] - [2010-09-24 13:46:32 | 000,116,752 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService) DRV:[b]64bit:[/b] - [2010-09-15 09:42:12 | 000,020,552 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dgderdrv.sys -- (dgderdrv) DRV:[b]64bit:[/b] - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk) DRV:[b]64bit:[/b] - [2010-05-12 11:14:54 | 000,159,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm) DRV:[b]64bit:[/b] - [2010-05-12 11:14:54 | 000,126,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM) DRV:[b]64bit:[/b] - [2010-05-12 11:14:52 | 000,125,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM) DRV:[b]64bit:[/b] - [2010-05-12 11:14:52 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb) DRV:[b]64bit:[/b] - [2010-05-12 11:14:52 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter) DRV:[b]64bit:[/b] - [2010-04-27 03:25:20 | 000,172,104 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdm.sys -- (sscdmdm) DRV:[b]64bit:[/b] - [2010-04-27 03:25:20 | 000,136,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM) DRV:[b]64bit:[/b] - [2010-04-27 03:25:20 | 000,019,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdfl.sys -- (sscdmdfl) DRV:[b]64bit:[/b] - [2010-04-27 03:25:14 | 000,172,032 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssm_mdm.sys -- (ssm_mdm) DRV:[b]64bit:[/b] - [2010-04-27 03:25:14 | 000,136,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM) DRV:[b]64bit:[/b] - [2010-04-27 03:25:14 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssm_mdfl.sys -- (ssm_mdfl) DRV:[b]64bit:[/b] - [2009-12-21 16:39:40 | 000,051,712 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (TEAM) Realtek Virtual Miniport Driver for Teaming (NDIS 6.0) DRV:[b]64bit:[/b] - [2009-12-21 16:39:40 | 000,051,712 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (RTTEAMPT) Realtek Teaming Protocol Driver (NDIS 6.0) DRV:[b]64bit:[/b] - [2009-07-20 03:27:34 | 000,027,136 | ---- | M] (Realtek ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 01:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc) DRV:[b]64bit:[/b] - [2009-06-10 21:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2007-12-03 03:20:54 | 000,024,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan60.sys -- (VLAN) Realtek Virtual Miniport Driver for VLAN (NDIS 6.2) DRV:[b]64bit:[/b] - [2007-12-03 03:20:54 | 000,024,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan60.sys -- (RTVLANPT) Realtek Vlan Protocol Driver (NDIS 6.2) DRV:[b]64bit:[/b] - [2007-09-17 15:53:34 | 000,029,184 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:[b]64bit:[/b] - [2006-11-20 08:48:20 | 000,571,904 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PFC027.SYS -- (PAC207) DRV - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys -- (TFsExDisk) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Stopped] -- C:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=128 IE - HKCU\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - No CLSID value found IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.gazeta.pl/0,0.html?p=128" FF - prefs.js..extensions.enabledItems: {67E7F3E5-8B3A-4219-B92B-47F9E05F5F4A}:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..browser.search.defaultenginename: "Yahoo" FF - prefs.js..browser.search.selectedEngine: "Yahoo" FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?ei=utf-8&fr=greentree_ff1&type=937811&ilc=12&p=" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12" FF - user.js..browser.search.selectedEngine: "Suche" FF - user.js..browser.search.order.1: "Suche" FF - user.js..browser.search.defaultenginename: "Suche" FF - user.js..keyword.URL: "http://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q=" FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Adam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Adam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\FireFox\extensions\\{4bcdbfd0-fa26-11de-8a39-0800200c9a66}: C:\Users\Adam\AppData\Roaming\Mozilla\FireFox\{4bcdbfd0-fa26-11de-8a39-0800200c9a66} [2011-06-29 17:09:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\mozilla\Extensions [2011-10-20 22:55:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\qeu0y5fr.default\extensions [2011-09-27 17:44:14 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\qeu0y5fr.default\extensions\ffxtlbr@babylon.com [2011-10-19 02:55:21 | 000,000,000 | ---D | M] (x-plugin-0) -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\qeu0y5fr.default\extensions\plugin@loadtubes.com [2011-06-29 19:23:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2011-06-29 15:07:52 | 000,000,000 | ---D | M] (QueryScan) -- C:\Program Files (x86)\mozilla firefox\extensions\{67E7F3E5-8B3A-4219-B92B-47F9E05F5F4A} [2010-12-23 11:34:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010-12-23 11:34:46 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-09-23 13:02:23 | 000,643,584 | ---- | M] (Synatix GmbH) -- C:\Program Files (x86)\mozilla firefox\plugins\npmieze.dll [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Adam\AppData\Local\Google\Chrome\Application\17.0.963.56\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Google Update (Enabled) = C:\Users\Adam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: Krople deszczu = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcipapbfhdnmgihoimbjiadmhpcgcnil\1.0.0.2_0\ CHR - Extension: YouTube = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Szukaj w Google = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\ CHR - Extension: AdBlock = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.18_0\ CHR - Extension: Skype Click to Call = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\ CHR - Extension: Sprawdzanie poczty Google = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\3.2_0\ CHR - Extension: Gmail = C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - !{0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - !{0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - No CLSID value found. O3 - HKLM\..\Toolbar: (xplugin) - {DFEFCDEE-CF1A-4FC8-88AD-18272BE37E29} - C:\Users\Adam\AppData\Roaming\xplugin\toolbar.dll () O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKCU..\Run: [fsm] File not found O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:[b]64bit:[/b] - Extra context menu item: Atomic Email Hunter - C:\Program Files (x86)\AtomPark\Atomic Email Hunter\ie.htm File not found O8 - Extra context menu item: Atomic Email Hunter - C:\Program Files (x86)\AtomPark\Atomic Email Hunter\ie.htm File not found O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {615A1925-0E5B-4767-A65E-3165AEAC32A3} http://quickscan.bitdefender.com/qsax/qsax64.cab (BitDefender QuickScan Control) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{81B6656C-F5D5-4596-8A4F-09E501E9B08B}: NameServer = 217.30.129.149 217.30.137.200 O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll) - File not found O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll) - File not found O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll) - File not found O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll) - File not found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{831de740-12d3-11e1-89ec-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{831de740-12d3-11e1-89ec-806e6f6e6963}\Shell\AutoRun\command - "" = F:\vcd_play.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-02-17 18:01:26 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\do wystawianiaKOMENTARZ [2012-02-13 21:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter [2012-02-09 04:30:41 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX [2012-02-07 14:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks [2012-02-04 10:03:39 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\ZLECENIA KUEHNE [2012-02-03 20:22:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTRG [2012-02-03 18:21:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro [2012-02-03 18:15:31 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\daemon [2012-02-03 18:06:05 | 000,519,112 | ---- | C] (DTSoft Ltd) -- C:\Users\Adam\Documents\dtprohlp.dll [2012-02-03 17:57:41 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\Nowy folder (2) [2012-02-03 14:12:39 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\pop [2012-02-03 13:36:17 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\Nowy folder [2012-01-29 21:39:22 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\LECHU [2012-01-24 19:42:38 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\zdjecia [2012-01-24 19:42:12 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\kurtka [2012-01-24 19:22:51 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\PhotoScape [2012-01-24 19:22:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape [2012-01-24 19:22:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoScape [2012-01-24 00:06:07 | 000,000,000 | ---D | C] -- C:\Users\Adam\Documents\Foto Sender [2012-01-24 00:05:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foto Sender [2012-01-24 00:05:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Foto Sender [2012-01-23 20:23:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WB Games [2012-01-23 18:39:48 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\Nikita [2012-01-23 13:36:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012-01-20 23:16:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NapiProjekt [2012-01-20 23:16:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NAPI-PROJEKT [2012-01-19 22:34:32 | 000,000,000 | ---D | C] -- C:\Users\Adam\Desktop\nowsze [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-02-18 11:51:56 | 000,000,000 | ---- | M] () -- C:\Users\Adam\Desktop\gmer.bat [2012-02-18 11:42:10 | 001,855,430 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012-02-18 11:42:10 | 000,806,602 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2012-02-18 11:42:10 | 000,720,366 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012-02-18 11:42:10 | 000,180,288 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2012-02-18 11:42:10 | 000,146,328 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012-02-18 11:37:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-02-18 11:37:33 | 3217,678,336 | -HS- | M] () -- C:\hiberfil.sys [2012-02-18 06:20:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4195673189-2185456248-3790078525-1000UA.job [2012-02-18 02:05:03 | 000,851,968 | ---- | M] () -- C:\Users\Adam\Documents\Database1.accdb [2012-02-17 20:32:39 | 000,000,511 | -H-- | M] () -- C:\Users\Adam\Desktop\Barbie.In.A.Mermaid.Tale.2010.PLDUBB.DVDRiP.XViD-SECTOR9.avi.ini [2012-02-17 11:42:06 | 000,000,622 | ---- | M] () -- C:\Users\Adam\Documents\ONONON.ONONON [2012-02-17 09:25:53 | 000,002,401 | ---- | M] () -- C:\Users\Adam\Desktop\Google Chrome.lnk [2012-02-17 09:20:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4195673189-2185456248-3790078525-1000Core.job [2012-02-14 17:26:39 | 000,433,144 | ---- | M] () -- C:\Users\Adam\Desktop\12242501439.pdf [2012-02-13 14:10:40 | 000,008,334 | ---- | M] () -- C:\Users\Adam\Desktop\Wtornik_7339531.pdf [2012-02-10 04:39:45 | 000,022,592 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012-02-10 04:39:45 | 000,022,592 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012-02-09 01:19:20 | 000,277,642 | ---- | M] () -- C:\Users\Adam\Desktop\21ece527c525e29c6b73cf93a6f5e464.jpg [2012-02-07 14:28:16 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\Rage.lnk [2012-02-07 12:36:50 | 007,543,837 | ---- | M] () -- C:\Users\Adam\Desktop\selena gomez - love you like a lovesong.mp3 [2012-02-05 18:30:26 | 004,352,188 | ---- | M] () -- C:\Users\Adam\Desktop\ada szulc - big love.mp3 [2012-02-03 20:22:38 | 000,000,617 | ---- | M] () -- C:\Users\Public\Desktop\Uruchom The Elder Scrolls V Skyrim.lnk [2012-02-03 18:21:25 | 000,001,733 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Pro.lnk [2012-02-03 18:06:05 | 000,519,112 | ---- | M] (DTSoft Ltd) -- C:\Users\Adam\Documents\dtprohlp.dll [2012-02-03 18:06:05 | 000,035,840 | ---- | M] () -- C:\Users\Adam\Documents\cryptapi.dll [2012-02-01 17:08:47 | 001,181,042 | ---- | M] () -- C:\Users\Adam\Desktop\skanuj0001.jpg [2012-01-24 19:31:06 | 000,041,713 | ---- | M] () -- C:\Users\Adam\Desktop\2011-09-30 13.01polaczone4.jpg [2012-01-24 19:22:49 | 000,001,035 | ---- | M] () -- C:\Users\Adam\Desktop\PhotoScape.lnk [2012-01-24 00:05:27 | 000,001,047 | ---- | M] () -- C:\Users\Adam\Desktop\Foto Sender.lnk [2012-01-23 17:11:21 | 000,013,674 | ---- | M] () -- C:\Users\Adam\Desktop\winamp.exe — skrót.lnk [2012-01-23 09:54:18 | 000,054,215 | ---- | M] () -- C:\Users\Adam\Desktop\20120103_sk_cennik_Stylbrik.pdf [2012-01-20 21:00:59 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012-01-20 18:26:35 | 000,002,562 | ---- | M] () -- C:\Windows\diagwrn.xml [2012-01-20 18:26:35 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-02-18 12:00:40 | 000,302,592 | ---- | C] () -- C:\Users\Adam\Desktop\gmer.exe [2012-02-18 11:51:56 | 000,000,000 | ---- | C] () -- C:\Users\Adam\Desktop\gmer.bat [2012-02-18 02:04:13 | 000,851,968 | ---- | C] () -- C:\Users\Adam\Documents\Database1.accdb [2012-02-17 20:32:16 | 000,000,511 | -H-- | C] () -- C:\Users\Adam\Desktop\Barbie.In.A.Mermaid.Tale.2010.PLDUBB.DVDRiP.XViD-SECTOR9.avi.ini [2012-02-17 11:42:06 | 000,000,622 | ---- | C] () -- C:\Users\Adam\Documents\ONONON.ONONON [2012-02-14 17:26:39 | 000,433,144 | ---- | C] () -- C:\Users\Adam\Desktop\12242501439.pdf [2012-02-13 14:10:40 | 000,008,334 | ---- | C] () -- C:\Users\Adam\Desktop\Wtornik_7339531.pdf [2012-02-09 01:19:24 | 000,277,642 | ---- | C] () -- C:\Users\Adam\Desktop\21ece527c525e29c6b73cf93a6f5e464.jpg [2012-02-07 14:28:16 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\Rage.lnk [2012-02-07 12:34:21 | 007,543,837 | ---- | C] () -- C:\Users\Adam\Desktop\selena gomez - love you like a lovesong.mp3 [2012-02-05 18:25:23 | 004,352,188 | ---- | C] () -- C:\Users\Adam\Desktop\ada szulc - big love.mp3 [2012-02-05 18:07:08 | 733,839,360 | ---- | C] () -- C:\Users\Adam\Desktop\Barbie.In.A.Mermaid.Tale.2010.PLDUBB.DVDRiP.XViD-SECTOR9.avi [2012-02-03 20:22:38 | 000,000,617 | ---- | C] () -- C:\Users\Public\Desktop\Uruchom The Elder Scrolls V Skyrim.lnk [2012-02-03 18:21:25 | 000,001,733 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Pro.lnk [2012-02-03 18:16:14 | 000,090,112 | ---- | C] () -- C:\Users_.dll [2012-02-03 18:06:05 | 000,035,840 | ---- | C] () -- C:\Users\Adam\Documents\cryptapi.dll [2012-02-03 18:03:47 | 000,009,728 | ---- | C] () -- C:\Windows\SysWow64\BASSMOD.dll [2012-02-01 17:08:47 | 001,181,042 | ---- | C] () -- C:\Users\Adam\Desktop\skanuj0001.jpg [2012-01-24 19:31:02 | 000,041,713 | ---- | C] () -- C:\Users\Adam\Desktop\2011-09-30 13.01polaczone4.jpg [2012-01-24 19:22:49 | 000,001,035 | ---- | C] () -- C:\Users\Adam\Desktop\PhotoScape.lnk [2012-01-24 00:05:27 | 000,001,047 | ---- | C] () -- C:\Users\Adam\Desktop\Foto Sender.lnk [2012-01-23 17:11:21 | 000,013,674 | ---- | C] () -- C:\Users\Adam\Desktop\winamp.exe — skrót.lnk [2012-01-20 18:26:17 | 000,002,562 | ---- | C] () -- C:\Windows\diagwrn.xml [2012-01-20 18:26:17 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml [2011-10-26 02:38:38 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat [2011-10-26 02:38:38 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat [2011-10-23 21:26:30 | 000,000,098 | ---- | C] () -- C:\Users\Adam\AppData\Roaming\MPUI.ini [2011-10-16 02:24:06 | 000,202,240 | ---- | C] () -- C:\Windows\SysWow64\patchw32.dll [2011-10-16 02:23:56 | 000,349,696 | ---- | C] () -- C:\Windows\SysWow64\mss32.dll [2011-10-16 02:23:54 | 003,167,501 | ---- | C] () -- C:\Windows\SysWow64\metin2.bin [2011-10-08 19:18:08 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2011-10-08 19:18:08 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2011-10-08 19:18:08 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2011-09-12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2011-07-15 10:33:08 | 000,000,135 | ---- | C] () -- C:\Windows\ODBC.INI [2011-06-13 07:10:58 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\OctaneARM.dll [2011-06-05 00:21:54 | 000,007,599 | ---- | C] () -- C:\Users\Adam\AppData\Local\Resmon.ResmonCfg [2011-05-28 18:40:17 | 000,005,115 | ---- | C] () -- C:\ProgramData\mtbjfghn.xbe [2011-05-27 22:06:59 | 001,830,632 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-04-09 19:27:25 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE [2011-04-09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2011-04-06 22:47:40 | 000,003,584 | ---- | C] () -- C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-12-24 11:51:21 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2010-11-27 14:44:21 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt [2010-11-27 14:42:51 | 000,005,632 | ---- | C] () -- C:\Windows\SysWow64\drivers\StarOpen.sys [2010-11-26 22:59:12 | 000,000,127 | ---- | C] () -- C:\Users\Adam\AppData\Roaming\default.rss [2010-11-26 22:59:12 | 000,000,000 | ---- | C] () -- C:\Users\Adam\AppData\Roaming\downloads.m3u [2010-11-22 11:32:37 | 000,151,552 | ---- | C] () -- C:\Windows\KMService.exe [2010-11-22 11:32:37 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe [2010-10-13 19:52:21 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2010-09-29 13:44:29 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat [2009-07-14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009-07-14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009-07-14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-14 00:41:47 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\winver.exe [2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2009-01-01 02:11:03 | 000,000,404 | ---- | C] () -- C:\Windows\BRWMARK.INI [2009-01-01 02:11:03 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2009-01-01 01:15:27 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2009-01-01 01:05:57 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2009-01-01 01:04:57 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\HsMgr.exe [2009-01-01 01:04:57 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\VmixP8.dll [2009-01-01 01:04:57 | 000,000,048 | ---- | C] () -- C:\Windows\SysWow64\cmasiop.ini [2009-01-01 01:04:54 | 000,084,824 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfl [2009-01-01 01:04:42 | 000,000,913 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.imi [2009-01-01 01:04:40 | 000,004,967 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfg [2009-01-01 01:04:38 | 000,000,558 | ---- | C] () -- C:\Windows\cmudaxp.ini [2008-10-07 08:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2008-10-07 08:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll [2008-05-15 14:19:54 | 000,004,096 | ---- | C] () -- C:\Windows\SysWow64\ViaClassCoInstaller.dll [2006-11-02 09:27:46 | 000,000,518 | ---- | C] () -- C:\Windows\SysWow64\SP207.ini [2006-08-16 15:13:34 | 001,382,280 | ---- | C] () -- C:\Windows\SysWow64\fftw3.dll [2004-05-26 13:37:34 | 000,269,312 | ---- | C] () -- C:\Windows\SysWow64\devil.dll [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 925 bytes -> C:\Users\Adam\Desktop\Sprzedający stylbrik1 otrzymał Twoją wpłatę.eml:OECustomProperty @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:63238B95 @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:9E00596C < End of report >