OTL logfile created on: 2012-06-10 02:51:45 - Run 1
OTL by OldTimer - Version 3.2.48.0     Folder = C:\Documents and Settings\PawelS\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,99 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,05% Memory free
2,58 Gb Paging File | 1,68 Gb Available in Paging File | 65,16% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 101,29 Gb Total Space | 21,10 Gb Free Space | 20,83% Space Free | Partition Type: NTFS
Drive E: | 10,50 Gb Total Space | 3,99 Gb Free Space | 37,95% Space Free | Partition Type: NTFS
 
Computer Name: PAWEL | User Name: PawelS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-06-10 02:49:13 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PawelS\Pulpit\OTL.exe
PRC - [2012-05-23 03:56:51 | 001,240,088 | ---- | M] (Google Inc.) -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012-04-04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012-03-07 02:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012-03-07 02:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011-10-02 21:03:26 | 001,406,664 | ---- | M] (SpeedBit LTD) -- C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe
PRC - [2011-10-02 21:03:26 | 000,265,928 | ---- | M] (SpeedBit Ltd.) -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe
PRC - [2010-01-15 01:08:19 | 000,148,752 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFUN.exe
PRC - [2010-01-15 01:08:13 | 000,070,928 | ---- | M] (PC Tools) -- C:\Program Files\ThreatFire\TFService.exe
PRC - [2008-09-15 04:00:48 | 000,431,472 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2008-06-03 10:54:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-01-20 13:34:26 | 000,544,768 | ---- | M] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe
PRC - [2005-01-27 17:33:58 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\o2flash.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-06-09 19:14:31 | 001,768,960 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12060901\algo.dll
MOD - [2012-05-23 03:56:50 | 000,441,880 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\ppgooglenaclpluginchrome.dll
MOD - [2012-05-23 03:56:49 | 003,922,456 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\pdf.dll
MOD - [2012-05-23 03:55:35 | 000,553,496 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\libglesv2.dll
MOD - [2012-05-23 03:55:33 | 000,117,784 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\libegl.dll
MOD - [2012-05-23 03:55:24 | 000,134,696 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\avutil-51.dll
MOD - [2012-05-23 03:55:23 | 000,250,408 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\avformat-54.dll
MOD - [2012-05-23 03:55:21 | 002,375,720 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\avcodec-54.dll
MOD - [2012-05-23 03:06:23 | 008,743,584 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
MOD - [2012-04-04 07:54:04 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
MOD - [2008-06-03 10:54:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
MOD - [2006-01-20 13:34:30 | 000,049,152 | ---- | M] () -- C:\WINDOWS\sm56cht.dll
MOD - [2006-01-20 13:34:28 | 000,061,440 | ---- | M] () -- C:\WINDOWS\sm56fra.dll
MOD - [2006-01-20 13:34:28 | 000,053,248 | ---- | M] () -- C:\WINDOWS\sm56jpn.dll
MOD - [2006-01-20 13:34:28 | 000,049,152 | ---- | M] () -- C:\WINDOWS\sm56chs.dll
MOD - [2006-01-20 13:34:26 | 000,069,632 | ---- | M] () -- C:\WINDOWS\sm56spn.dll
MOD - [2006-01-20 13:34:26 | 000,069,632 | ---- | M] () -- C:\WINDOWS\sm56itl.dll
MOD - [2006-01-20 13:34:26 | 000,069,632 | ---- | M] () -- C:\WINDOWS\sm56eng.dll
MOD - [2006-01-20 13:34:26 | 000,069,632 | ---- | M] () -- C:\WINDOWS\sm56brz.dll
MOD - [2006-01-20 13:34:26 | 000,061,440 | ---- | M] () -- C:\WINDOWS\sm56ger.dll
MOD - [2005-01-27 17:33:58 | 000,036,864 | ---- | M] () -- C:\WINDOWS\system32\o2flash.exe
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012-05-06 11:56:26 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012-03-07 02:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011-10-02 21:03:26 | 000,265,928 | ---- | M] (SpeedBit Ltd.) [Auto | Running] -- C:\Program Files\SpeedBit Video Accelerator\VideoAcceleratorService.exe -- (VideoAcceleratorService)
SRV - [2010-01-15 01:08:13 | 000,070,928 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\ThreatFire\TFService.exe -- (ThreatFire)
SRV - [2008-09-15 04:00:48 | 000,431,472 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2008-06-03 10:54:52 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UTSCSI.EXE -- (UTSCSI)
SRV - [2005-01-27 17:33:58 | 000,036,864 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\o2flash.exe -- (O2Flash)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Unknown (0) | On_Demand | Unknown] -- System32\Drivers\TfKbMon.sys -- (TfKbMon)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbdev.sys -- (hwusbdev)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ewfiltertdidriver.sys -- (filtertdidriver)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\CA504AV.SYS -- (CA504AV)
DRV - [2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012-03-07 02:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012-03-07 02:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012-03-07 02:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012-03-07 02:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012-03-07 02:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012-03-07 02:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-03-07 01:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011-09-21 11:25:34 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010-01-15 01:08:30 | 000,059,664 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\TfSysMon.sys -- (TfSysMon)
DRV - [2010-01-15 01:08:29 | 000,033,552 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TfNetMon.sys -- (TfNetMon)
DRV - [2010-01-15 01:08:28 | 000,051,984 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\TfFsMon.sys -- (TfFsMon)
DRV - [2009-08-04 12:04:26 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)
DRV - [2009-08-04 12:04:26 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)
DRV - [2008-09-15 03:43:28 | 000,023,552 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2006-09-06 16:04:12 | 004,377,600 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006-07-14 14:55:34 | 000,105,088 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2006-02-27 16:00:50 | 000,034,880 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\o2media.sys -- (O2MDRDR)
DRV - [2006-02-27 05:46:20 | 000,081,408 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006-02-20 17:01:06 | 000,029,056 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\o2sd.sys -- (O2SDRDR)
DRV - [2006-01-20 13:44:42 | 000,862,340 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2004-08-04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://wyborcza.pl/0,0.html?p=005
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = 
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.speedbit.com/?aff=105
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\SearchScopes,DefaultScope = {4D557907-3824-44B3-AAAE-ECEE1392C034}
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}: "URL" = http://www.crawler.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=60327
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\SearchScopes\{4D557907-3824-44B3-AAAE-ECEE1392C034}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\SearchScopes\{7C3402EA-F439-4c79-B747-2C1696C9629C}: "URL" = http://home.speedbit.com/search.aspx?aff=106&q={searchTerms}
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 50.22.206.179:8080
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://startsear.ch/?aff=1&cf=cc1c4e62-b271-11e1-b365-0018de493b5e"
FF - prefs.js..keyword.URL: "http://startsear.ch/?aff=1&src=sp&cf=cc1c4e62-b271-11e1-b365-0018de493b5e&q="
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Software Company)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.46: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1:  File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008-06-15 17:11:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\searchpredict@speedbit.com: C:\Program Files\SearchPredict\PRFireFox [2011-02-14 23:03:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012-03-24 20:51:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-04-15 20:28:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-06-09 23:36:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.19\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012-03-07 23:14:20 | 000,000,000 | ---D | M]
 
[2011-04-17 22:55:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Extensions
[2011-04-17 22:55:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012-06-06 11:48:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions
[2010-04-28 09:53:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-11-01 22:06:37 | 000,000,000 | ---D | M] (Gmail Notifier) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{44d0a1b4-9c90-4f86-ac92-8680b5d6549e}
[2010-11-23 01:33:27 | 000,000,000 | ---D | M] (Aero Fox Silver XL) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}
[2010-11-10 16:56:13 | 000,000,000 | ---D | M] (Aero Fox XL) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{5c8bfb7c-9a54-11dc-8314-0800200c9a66}
[2009-07-26 13:49:40 | 000,000,000 | ---D | M] (Ask Chrome Search Engine) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\askopensearch-VTS@ask.com
[2010-11-23 05:45:30 | 000,000,000 | ---D | M] (Virtus Search Opt-in) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\extension@virtusdesigns.com
[2012-06-04 00:04:35 | 000,000,000 | ---D | M] (Fast Dial) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\fastdial@telega.phpnet.us
[2010-11-23 05:45:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\extension@virtusdesigns.com\chrome
[2010-11-23 05:45:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\extension@virtusdesigns.com\defaults
[2010-11-23 01:33:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{5c876f30-10ce-11dd-bd0b-0800200c9a66}\chrome\win\mozapps\extensions
[2010-11-10 16:56:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\extensions\{5c8bfb7c-9a54-11dc-8314-0800200c9a66}\chrome\win\mozapps\extensions
[2009-01-11 13:16:39 | 000,004,431 | ---- | M] () -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\searchplugins\lingpl.xml
[2008-06-22 15:09:36 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\searchplugins\mozilla-add-ons.xml
[2012-06-09 22:29:58 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\searchplugins\startsear.xml
[2009-01-05 23:55:55 | 000,001,447 | ---- | M] () -- C:\Documents and Settings\PawelS\Dane aplikacji\Mozilla\Firefox\Profiles\yllf6vfn.default\searchplugins\userlogos.xml
[2012-03-06 21:31:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-01-10 00:28:25 | 000,634,964 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\PAWELS\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\YLLF6VFN.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2012-03-07 22:38:20 | 000,709,293 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\PAWELS\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\YLLF6VFN.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
[2012-04-15 20:28:58 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-02-25 21:24:56 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-03-05 21:09:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-03-05 21:09:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-03-05 21:09:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-03-05 21:09:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-03-05 21:09:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-03-05 21:09:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms},
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: avast! WebRep = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Quick Note = C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok\1.3.5_0\
 
O1 HOSTS File: ([2008-10-14 18:12:55 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\PawelS\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKU\S-1-5-21-3994607313-1744510974-3478977628-1006..\Run: [SpeedBitVideoAccelerator] C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe (SpeedBit LTD)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Program Files\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6662.cab (Windows Live Safety Center Base Module)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} https://ssl.wum.edu.pl/dana-cached/setup/JuniperSetupSP1.cab (JuniperSetupControlXP Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.87.25.4 212.87.22.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E292292B-58B2-4E90-BEA5-D12D79DBAFFB}: DhcpNameServer = 212.87.25.4 212.87.22.25
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-12-22 14:29:15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{046e3382-e27e-11de-ad57-0018de493b5e}\Shell\AutoRun\command - "" = F:\wu1n.exe
O33 - MountPoints2\{046e3382-e27e-11de-ad57-0018de493b5e}\Shell\open\Command - "" = F:\wu1n.exe
O33 - MountPoints2\{1c6aff34-5b92-11df-ae25-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{1c6aff34-5b92-11df-ae25-0018de493b5e}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{21b8b92c-637e-11df-ae33-0018de493b5e}\Shell\AutoRun\command - "" = ji83j.exe
O33 - MountPoints2\{21b8b92c-637e-11df-ae33-0018de493b5e}\Shell\open\Command - "" = ji83j.exe
O33 - MountPoints2\{28996e17-df63-11de-ad4c-0018de493b5e}\Shell\AutoRun\command - "" = icxpa.cmd
O33 - MountPoints2\{28996e17-df63-11de-ad4c-0018de493b5e}\Shell\open\Command - "" = icxpa.cmd
O33 - MountPoints2\{323f94b2-008d-11e0-afb7-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{323f94b2-008d-11e0-afb7-0018de493b5e}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{525b92c6-ac3f-11de-aca5-0018de493b5e}\Shell\AutoRun\command - "" = F:\3yalgc.exe
O33 - MountPoints2\{525b92c6-ac3f-11de-aca5-0018de493b5e}\Shell\open\Command - "" = F:\3yalgc.exe
O33 - MountPoints2\{5f7a80d8-ffa1-11de-ad86-0018de493b5e}\Shell\AutoRun\command - "" = F:\SamsungSoftware\APPInst.exe
O33 - MountPoints2\{7136bad8-0155-11e0-afbc-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{7136bad8-0155-11e0-afbc-0018de493b5e}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{7524f79a-015a-11e0-afbe-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{7524f79a-015a-11e0-afbe-0018de493b5e}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{9a75d402-1ae1-11df-adb6-0018de493b5e}\Shell\AutoRun\command - "" = F:\A1\V1\try.exe
O33 - MountPoints2\{9a75d402-1ae1-11df-adb6-0018de493b5e}\Shell\open\command - "" = F:\A1\V1\try.exe
O33 - MountPoints2\{a8b46d92-0089-11e0-afb5-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{a8b46d92-0089-11e0-afb5-0018de493b5e}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ef7eec65-b1fc-11e0-b10b-0018de493b5e}\Shell - "" = AutoRun
O33 - MountPoints2\{ef7eec65-b1fc-11e0-b10b-0018de493b5e}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-06-10 02:49:09 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\PawelS\Pulpit\OTL.exe
[2012-06-10 02:16:32 | 000,675,896 | ---- | C] (Duplex Secure Ltd.) -- C:\Documents and Settings\PawelS\Pulpit\SPTDinst-v181-x86.exe
[2012-06-10 00:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Dane aplikacji\Malwarebytes
[2012-06-10 00:27:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2012-06-10 00:27:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2012-06-10 00:27:33 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012-06-10 00:27:33 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012-06-10 00:26:12 | 010,063,000 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\PawelS\Pulpit\mbam-setup-1.61.0.1400.exe
[2012-06-10 00:21:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Pulpit\Nowy folder
[2012-06-10 00:10:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Menu Start\Programy\HiJackThis
[2012-06-09 23:53:31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\PawelS\Recent
[2012-06-09 23:03:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Dane aplikacji\PC Cleaners
[2012-06-09 23:03:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Dane aplikacji\PCPro
[2012-06-09 23:03:21 | 000,000,000 | ---D | C] -- C:\Program Files\PC Cleaners
[2012-06-07 01:17:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library Copy.Data
[2012-06-07 00:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library.Data
[2012-06-06 22:28:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Dane aplikacji\EndNote
[2012-06-06 22:27:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Risxtd
[2012-06-06 22:26:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ResearchSoft
[2012-06-06 22:26:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EndNote
[2012-06-06 22:26:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\EndNote
[2012-06-06 22:25:35 | 000,000,000 | ---D | C] -- C:\Program Files\EndNote X4
[2012-06-06 22:25:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Thomson.ResearchSoft.Installers
[2012-06-06 22:25:10 | 000,000,000 | ---D | C] -- C:\EndnoteX4
[2012-06-05 23:46:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Pulpit\Statystyka
[2012-06-04 02:29:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Pulpit\moje prezentacje
[2012-05-29 21:06:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Pulpit\V rok
[2012-05-19 19:48:58 | 000,044,544 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll
[2012-05-19 19:48:57 | 000,000,000 | ---D | C] -- C:\Program Files\USMLE
[2012-05-19 19:48:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\2012 USMLE FredV2 Step1 Practice CBT
[2012-05-16 18:43:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\PawelS\Pulpit\USA
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-06-10 02:56:16 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-06-10 02:49:13 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\PawelS\Pulpit\OTL.exe
[2012-06-10 02:44:01 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3994607313-1744510974-3478977628-1006UA.job
[2012-06-10 02:41:58 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-06-10 02:41:15 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-06-10 02:41:10 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2012-06-10 02:41:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-06-10 02:41:06 | 2137,182,208 | -HS- | M] () -- C:\hiberfil.sys
[2012-06-10 02:39:43 | 009,961,472 | ---- | M] () -- C:\Documents and Settings\PawelS\ntuser.dat
[2012-06-10 02:39:43 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\PawelS\ntuser.ini
[2012-06-10 02:39:02 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-06-10 02:30:17 | 000,053,932 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120610_023012.reg
[2012-06-10 02:16:41 | 000,675,896 | ---- | M] (Duplex Secure Ltd.) -- C:\Documents and Settings\PawelS\Pulpit\SPTDinst-v181-x86.exe
[2012-06-10 00:44:40 | 000,591,235 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\adwcleaner.exe
[2012-06-10 00:27:07 | 010,063,000 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\PawelS\Pulpit\mbam-setup-1.61.0.1400.exe
[2012-06-10 00:20:49 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120610_002045.reg
[2012-06-10 00:10:22 | 000,001,982 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\HiJackThis.lnk
[2012-06-10 00:10:03 | 001,402,880 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\HiJackThis.msi
[2012-06-09 23:57:27 | 000,001,706 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2012-06-09 23:57:16 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-06-09 13:44:02 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3994607313-1744510974-3478977628-1006Core.job
[2012-06-08 23:50:55 | 000,199,261 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\P.S. wniosek o pokój jednoosobowy.pdf
[2012-06-08 23:41:47 | 000,199,261 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\wniosek o pokój jednoosobowy.pdf
[2012-06-07 01:20:38 | 000,088,234 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library.enl
[2012-06-07 01:17:52 | 000,216,686 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library Copy.enl
[2012-06-06 22:25:14 | 000,001,347 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Endnote X4.lnk
[2012-06-06 02:25:21 | 000,513,691 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\poszukiwanie genów i ich adnotacje.pdf
[2012-06-06 02:15:18 | 000,109,032 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Annotating the Human Proteome.pdf
[2012-06-06 02:08:34 | 000,150,406 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Functional Annotation and Identification of Candidate Disease Genes.pdf
[2012-06-06 02:06:34 | 000,712,990 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Automated System for Gene Annotation and Metabolic Pathway.pdf
[2012-06-06 01:59:30 | 001,672,988 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Genomics made easier.pdf
[2012-06-06 01:57:55 | 009,692,775 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Using Genomic Databases for Sequence-Based Biological.pdf
[2012-06-06 01:54:14 | 000,204,236 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Genome data mining for everyone.pdf
[2012-06-06 01:51:23 | 000,253,290 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Int J Mol Med Vol17 No6 Pg967.pdf
[2012-06-06 01:49:35 | 000,252,715 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Genome annotation techniques 2002.pdf
[2012-06-06 01:46:12 | 000,219,272 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Assembly, Gene Annotation and Marker Development.pdf
[2012-06-06 01:44:20 | 002,949,896 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Mining the Gene Wiki for functional genomic knowledge.pdf
[2012-06-06 01:39:34 | 000,328,909 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\gene annotations in biomedical text databases 2008.pdf
[2012-06-06 01:35:38 | 014,096,462 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Gene Wiki in 2011.pdf
[2012-06-06 01:32:30 | 000,609,764 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\EWOLUCJA ANNOTACJI GENU 2010.pdf
[2012-06-06 01:29:15 | 001,188,360 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\ALTERNATYWNY SPLICING ANNOTACJE.pdf
[2012-06-06 01:27:06 | 000,653,101 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\GENE ANNOTATION IN PRACTICE 2012.pdf
[2012-06-06 01:02:15 | 000,120,543 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\schemat analizy genomun.jpg
[2012-06-06 01:00:18 | 000,120,110 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\schemat analizy genomu.jpg
[2012-06-04 19:10:50 | 001,508,614 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Bioinformatyka-2012-02.pdf
[2012-06-04 18:53:33 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-06-04 01:07:04 | 000,228,001 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\bology research.jpg
[2012-06-02 23:19:01 | 000,147,456 | ---- | M] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-05-31 15:22:04 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[2012-05-31 00:08:43 | 003,112,471 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\what is annotation.pdf
[2012-05-30 22:29:57 | 001,651,214 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\harmonogram_TEAM_FINALOST_000.rtf
[2012-05-30 14:20:36 | 000,663,922 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\Mapping and quantifying mammalian transcriptomes.pdf
[2012-05-30 14:08:07 | 000,123,937 | ---- | M] () -- C:\Documents and Settings\PawelS\Pulpit\ENCODE_RNAseq_Standards_V1.0.pdf
[2012-05-26 19:18:44 | 000,000,362 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120526_191841.reg
[2012-05-12 12:42:05 | 000,028,432 | ---- | M] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120512_124159.reg
[2012-05-11 23:59:45 | 000,320,336 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-05-11 21:43:16 | 001,086,312 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2012-05-11 21:43:16 | 000,505,870 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-05-11 21:43:16 | 000,446,190 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-05-11 21:43:16 | 000,091,524 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-05-11 21:43:16 | 000,073,396 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-06-10 02:30:15 | 000,053,932 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120610_023012.reg
[2012-06-10 00:44:42 | 000,591,235 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\adwcleaner.exe
[2012-06-10 00:20:47 | 000,001,622 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120610_002045.reg
[2012-06-10 00:10:22 | 000,001,982 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\HiJackThis.lnk
[2012-06-10 00:09:52 | 001,402,880 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\HiJackThis.msi
[2012-06-09 23:57:27 | 000,001,706 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2012-06-08 23:50:55 | 000,199,261 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\P.S. wniosek o pokój jednoosobowy.pdf
[2012-06-08 23:41:46 | 000,199,261 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\wniosek o pokój jednoosobowy.pdf
[2012-06-08 18:47:40 | 009,961,472 | ---- | C] () -- C:\Documents and Settings\PawelS\ntuser.dat
[2012-06-07 01:17:52 | 000,216,686 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library Copy.enl
[2012-06-07 00:06:49 | 000,088,234 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\My EndNote Library.enl
[2012-06-06 22:25:14 | 000,001,347 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Endnote X4.lnk
[2012-06-06 02:15:23 | 000,109,032 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Annotating the Human Proteome.pdf
[2012-06-06 02:08:39 | 000,150,406 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Functional Annotation and Identification of Candidate Disease Genes.pdf
[2012-06-06 02:06:36 | 000,712,990 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Automated System for Gene Annotation and Metabolic Pathway.pdf
[2012-06-06 01:59:25 | 001,672,988 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Genomics made easier.pdf
[2012-06-06 01:56:58 | 009,692,775 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Using Genomic Databases for Sequence-Based Biological.pdf
[2012-06-06 01:54:18 | 000,204,236 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Genome data mining for everyone.pdf
[2012-06-06 01:51:22 | 000,253,290 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Int J Mol Med Vol17 No6 Pg967.pdf
[2012-06-06 01:49:42 | 000,252,715 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Genome annotation techniques 2002.pdf
[2012-06-06 01:46:14 | 000,219,272 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Assembly, Gene Annotation and Marker Development.pdf
[2012-06-06 01:44:10 | 002,949,896 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Mining the Gene Wiki for functional genomic knowledge.pdf
[2012-06-06 01:39:39 | 000,328,909 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\gene annotations in biomedical text databases 2008.pdf
[2012-06-06 01:34:23 | 014,096,462 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Gene Wiki in 2011.pdf
[2012-06-06 01:32:35 | 000,609,764 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\EWOLUCJA ANNOTACJI GENU 2010.pdf
[2012-06-06 01:29:26 | 001,188,360 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\ALTERNATYWNY SPLICING ANNOTACJE.pdf
[2012-06-06 01:27:35 | 000,653,101 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\GENE ANNOTATION IN PRACTICE 2012.pdf
[2012-06-06 01:02:15 | 000,120,543 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\schemat analizy genomun.jpg
[2012-06-06 01:00:18 | 000,120,110 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\schemat analizy genomu.jpg
[2012-06-04 19:14:44 | 000,513,691 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\poszukiwanie genów i ich adnotacje.pdf
[2012-06-04 19:10:57 | 001,508,614 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Bioinformatyka-2012-02.pdf
[2012-06-04 01:07:04 | 000,228,001 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\bology research.jpg
[2012-05-31 00:08:53 | 003,112,471 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\what is annotation.pdf
[2012-05-30 22:29:47 | 001,651,214 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\harmonogram_TEAM_FINALOST_000.rtf
[2012-05-30 14:20:45 | 000,663,922 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\Mapping and quantifying mammalian transcriptomes.pdf
[2012-05-30 14:08:12 | 000,123,937 | ---- | C] () -- C:\Documents and Settings\PawelS\Pulpit\ENCODE_RNAseq_Standards_V1.0.pdf
[2012-05-26 19:18:43 | 000,000,362 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120526_191841.reg
[2012-05-12 12:42:03 | 000,028,432 | ---- | C] () -- C:\Documents and Settings\PawelS\Moje dokumenty\cc_20120512_124159.reg
[2012-02-15 19:50:09 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011-12-31 16:22:39 | 000,075,776 | ---- | C] () -- C:\WINDOWS\cadkasdeinst01e.exe
[2011-11-26 19:52:36 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\PawelS\Ustawienia lokalne\Dane aplikacji\{EF0B7C0A-0A9C-48FC-AF62-C9DF89E5E623}
[2011-11-26 18:05:33 | 000,061,440 | ---- | C] () -- C:\Documents and Settings\PawelS\Dane aplikacji\JuniperSetup.exe
[2011-11-19 02:28:33 | 000,000,048 | ---- | C] () -- C:\WINDOWS\EL0103.dat
[2011-02-16 20:32:00 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-08-28 19:37:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2012-05-01 11:45:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2008-01-25 21:24:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2008-10-03 22:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Juniper Networks
[2011-02-18 18:49:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit
[2011-02-16 20:28:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012-06-06 22:27:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Thomson.ResearchSoft.Installers
[2012-03-29 16:13:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2012-03-29 16:11:30 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2008-09-18 22:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gość\Dane aplikacji\Spyware Terminator
[2012-04-01 17:58:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software
[2008-09-12 20:14:41 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\.#
[2010-12-06 18:16:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\blueconnect
[2011-12-31 16:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\CAD-KAS
[2012-04-06 17:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\calibre
[2008-01-21 17:36:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Canon
[2012-06-07 00:09:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\EndNote
[2010-10-09 15:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Foxit Software
[2007-09-17 20:58:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Gadu-Gadu
[2009-12-18 19:45:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Gadu-Gadu 10
[2008-09-02 17:34:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\gtk-2.0
[2008-04-23 16:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\ICQ
[2007-09-17 20:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\ICQ Toolbar
[2010-09-15 22:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\IrfanView
[2011-11-26 18:33:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Juniper Networks
[2008-08-26 17:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Mosby Multimedia
[2009-03-04 12:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Nowe Gadu-Gadu
[2008-11-05 00:53:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\OpenOffice.org
[2007-09-17 17:41:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Opera
[2012-06-09 23:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\PC Cleaners
[2012-06-09 23:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\PCPro
[2011-10-01 11:20:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\PhotoScape
[2008-09-05 17:41:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Primal Pictures
[2007-09-14 19:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Template
[2011-04-17 22:54:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Thunderbird
[2011-02-14 23:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\Toolbar4
[2012-03-29 16:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\TuneUp Software
[2011-10-06 15:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\PawelS\Dane aplikacji\uTorrent
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1CA73D29
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:2B11E0DF

< End of report >