OTL logfile created on: 2011-05-13 18:25:54 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Documents and Settings\Krzys\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 60,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): C:\pagefile.sys 2900 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27,80 Gb Total Space | 5,47 Gb Free Space | 19,67% Space Free | Partition Type: NTFS
Drive D: | 6,82 Gb Total Space | 4,51 Gb Free Space | 66,08% Space Free | Partition Type: FAT32
Drive E: | 15,63 Gb Total Space | 6,23 Gb Free Space | 39,84% Space Free | Partition Type: NTFS
Drive F: | 29,29 Gb Total Space | 23,35 Gb Free Space | 79,70% Space Free | Partition Type: NTFS
Drive G: | 24,41 Gb Total Space | 11,60 Gb Free Space | 47,52% Space Free | Partition Type: NTFS
Drive H: | 102,54 Gb Total Space | 9,54 Gb Free Space | 9,30% Space Free | Partition Type: NTFS
Drive I: | 102,54 Gb Total Space | 4,98 Gb Free Space | 4,86% Space Free | Partition Type: NTFS
Drive J: | 5,19 Gb Total Space | 0,16 Gb Free Space | 2,99% Space Free | Partition Type: NTFS
Drive K: | 22,56 Gb Total Space | 9,94 Gb Free Space | 44,05% Space Free | Partition Type: NTFS
Drive M: | 22,56 Gb Total Space | 3,05 Gb Free Space | 13,53% Space Free | Partition Type: NTFS
Drive N: | 22,57 Gb Total Space | 19,90 Gb Free Space | 88,17% Space Free | Partition Type: NTFS
 
Computer Name: KRZYS | User Name: Krzys | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days
 
[color=#E56717]========== Processes (All) ==========[/color]
 
PRC - [2011-05-13 18:24:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzys\Pulpit\OTL.exe
PRC - [2011-04-28 14:34:42 | 001,550,136 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
PRC - [2011-04-28 14:34:42 | 000,870,200 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2011-04-27 20:01:44 | 000,075,136 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2011-03-09 06:27:58 | 000,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2011-02-02 21:40:41 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2011-01-21 19:27:38 | 020,026,472 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2010-11-30 14:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010-11-11 13:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010-10-29 14:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-09-15 12:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2010-09-02 16:15:04 | 013,351,304 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2010-09-02 16:15:04 | 000,080,256 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2010-01-16 05:18:19 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-11-18 05:42:52 | 000,275,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2009-11-18 05:02:34 | 000,563,840 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
PRC - [2009-11-18 05:02:34 | 000,173,696 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2009-11-17 21:49:08 | 000,366,720 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
PRC - [2009-08-13 19:02:34 | 000,357,384 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
PRC - [2009-08-13 18:59:22 | 003,161,608 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
PRC - [2009-08-13 18:37:56 | 001,573,384 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
PRC - [2009-08-13 18:37:34 | 000,523,784 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe
PRC - [2009-08-13 18:37:24 | 000,676,360 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe
PRC - [2009-05-07 10:58:32 | 000,143,360 | ---- | M] (Vimisoft Studio) -- C:\Program Files\IM Magician\vicamon.exe
PRC - [2009-04-22 18:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-14 23:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 23:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 23:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [RPCSS]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [NETWORKSERVICE]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [NETSVCS]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [mi]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [LOCALSERVICE]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [LOCALSERVICE]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [IMGSVC]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [HPZ12]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [HPZ12]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [HPDEVMGMT]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [DCOMLAUNCH]
PRC - [2008-04-14 23:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [BTHSVCS]
PRC - [2008-04-14 23:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 23:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 23:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-14 23:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 23:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-02-18 11:16:30 | 000,110,592 | ---- | M] (Apple, Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2007-11-14 12:54:24 | 002,131,392 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
PRC - [2007-07-24 15:17:08 | 000,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2006-09-18 19:04:06 | 000,086,016 | ---- | M] () -- C:\WINDOWS\VMSnap326.exe
PRC - [2006-06-28 18:54:06 | 000,049,152 | ---- | M] (Vimicro) -- C:\WINDOWS\Domino.exe
PRC - [2006-03-04 18:40:30 | 000,882,176 | ---- | M] () -- C:\Program Files\Kalendarz XP\Kalendarz.exe
PRC - [2006-02-10 08:56:12 | 000,479,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
PRC - [2005-06-10 18:19:38 | 000,869,888 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exe
PRC - [2003-06-20 00:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
 
 
[color=#E56717]========== Modules (All) ==========[/color]
 
MOD - [2011-05-13 18:24:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzys\Pulpit\OTL.exe
MOD - [2011-01-21 16:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-07-16 14:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-14 23:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 23:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 23:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 23:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 23:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 23:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 23:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 23:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 23:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 23:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 23:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 23:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 23:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 23:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 23:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2008-04-14 23:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 23:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 23:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 23:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 23:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] --  -- (AppMgmt)
SRV - [2011-04-28 14:34:42 | 000,870,200 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010-11-11 13:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009-11-23 22:51:00 | 003,620,700 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2005-06-10 18:19:38 | 000,869,888 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [File_System | Unknown | Running] --  -- (DwProt)
DRV - [2011-05-13 18:20:17 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{A79AA4A4-9C2C-4DB6-829B-E842D8563DFE}\MpKslef2ede2f.sys -- (MpKslef2ede2f)
DRV - [2011-04-28 14:34:50 | 000,066,360 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys -- (RapportEI)
DRV - [2011-04-28 14:34:50 | 000,053,816 | ---- | M] (Trusteer Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2011-04-28 14:34:48 | 000,158,904 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2011-04-24 20:13:49 | 000,057,144 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Trusteer\Rapport\store\exts\RapportCerberus\26169\RapportCerberus_26169.sys -- (RapportCerberus_26169)
DRV - [2011-03-09 11:13:30 | 006,553,088 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2011-01-25 19:54:04 | 006,321,768 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010-04-05 20:07:15 | 000,014,656 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2010-03-30 10:24:52 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lganddiag.sys -- (AndDiag)
DRV - [2010-03-30 10:24:52 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandgps.sys -- (AndGps)
DRV - [2010-03-30 10:24:50 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandmodem.sys -- (ANDModem)
DRV - [2010-03-30 10:24:48 | 000,014,336 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandbus.sys -- (Andbus)
DRV - [2009-11-18 08:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 08:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-09-29 09:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009-09-29 09:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009-09-29 09:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtbus.sys -- (LGBusEnum)
DRV - [2009-07-14 16:35:40 | 000,014,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LGVirHid.sys -- (LGVirHid)
DRV - [2009-03-27 02:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132)
DRV - [2009-03-25 18:21:28 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008-02-28 11:27:08 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008-02-28 11:27:08 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2007-01-23 16:45:00 | 000,034,576 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2007-01-23 16:45:00 | 000,033,296 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2007-01-23 16:45:00 | 000,028,176 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2007-01-23 16:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2006-12-30 14:42:56 | 000,348,160 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbvm326.sys -- (usbvm328)
DRV - [2006-11-22 09:01:00 | 000,250,496 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006-11-21 20:27:58 | 000,043,648 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2006-10-30 15:17:36 | 000,483,072 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vmfilter326.sys -- (vmfilter326)
DRV - [2006-02-08 05:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2005-11-03 16:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005-08-10 16:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005-06-10 18:12:12 | 000,099,584 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2005-06-10 18:11:50 | 000,029,696 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDpass.sys -- (InCDPass)
DRV - [2005-06-10 16:11:44 | 000,028,160 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\InCDrm.sys -- (incdrm)
DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004-04-14 11:08:00 | 000,044,064 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2004-04-14 11:08:00 | 000,021,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2004-04-14 11:08:00 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2004-04-14 11:08:00 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2003-12-08 13:53:48 | 000,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003-12-08 13:53:46 | 000,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003-07-17 13:56:32 | 000,089,216 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\FO_PAnt.sys -- (FO_PAnt)
DRV - [2003-03-29 17:45:18 | 000,089,184 | ---- | M] (Ahead Software AG and its licensors) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\imagedrv.sys -- (Imagedrv)
DRV - [2002-07-16 18:00:00 | 000,019,616 | R--- | M] (Animation Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune)
DRV - [2002-06-19 18:00:00 | 000,449,920 | R--- | M] (Animation Technologies Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134)
DRV - [2001-08-17 22:02:50 | 000,002,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HIDSwvd.sys -- (HIDSwvd)
DRV - [2001-08-17 21:49:10 | 000,026,624 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irstusb.sys -- (STIrUsb)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-2000478354-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2000478354-682003330-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: foxdie_ext_ocelot@foxdie.us:3.6.4
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}:1.0
FF - prefs.js..extensions.enabledItems: battlefieldplay4free@ea.com:1.0.27.2
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.5
FF - prefs.js..extensions.enabledItems: foxyproxy@eric.h.jung:2.22.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: Foxdie@tanjihay.com:3.6.4
 
FF - HKLM\software\mozilla\Firefox\extensions\\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}: F:\LG PC suit\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ [2010-11-08 21:07:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-12-10 17:42:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-03 23:19:57 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-05-03 23:19:56 | 000,000,000 | ---D | M]
 
[2009-01-04 20:07:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Extensions
[2011-05-05 19:03:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions
[2010-07-23 08:34:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-05-03 23:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2009-07-26 00:13:51 | 000,000,000 | ---D | M] (Ask Chrome Search Engine) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\askopensearch-VTS@ask.com
[2011-02-05 13:33:04 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\battlefieldplay4free@ea.com
[2010-08-26 11:32:07 | 000,000,000 | ---D | M] (Foxdie) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\Foxdie@tanjihay.com
[2010-08-26 11:32:09 | 000,000,000 | ---D | M] (Foxdie for Firefox) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\foxdie_ext_ocelot@foxdie.us
[2011-05-03 23:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\foxyproxy@eric.h.jung
[2011-05-03 23:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\extensions\personas@christopher.beard
[2010-02-20 23:40:56 | 000,003,490 | ---- | M] () -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\searchplugins\szukaj-na-jm.xml
[2010-02-08 11:01:10 | 000,001,979 | ---- | M] () -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\searchplugins\wrzuta.xml
[2010-02-08 11:02:00 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\Krzys\Dane aplikacji\Mozilla\Firefox\Profiles\78m7cbc7.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml
[2011-05-05 19:03:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-04-03 21:04:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2009-12-01 09:40:19 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-11-08 21:07:18 | 000,000,000 | ---D | M] (LG Air Sync) -- F:\LG PC SUIT\LG PC SUITE IV\LINKAIR\{00ADD29A-66F4-4F22-BCC0-4C1D29DA647B}
[2011-02-02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2010-06-03 13:35:17 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - F:\LG PC suit\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O4 - HKLM..\Run: [BigDogpath326] C:\WINDOWS\VMSnap326.exe ()
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Domino] C:\WINDOWS\Domino.exe (Vimicro)
O4 - HKLM..\Run: [IMMON] C:\Program Files\IM Magician\Vicamon.exe (Vimisoft Studio)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-2000478354-682003330-725345543-1004..\Run: [m7f4pu607h] C:\Documents and Settings\Krzys\m7f4pu607h.exe (Wbuauu Software)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\BIGDOGPATH326.lnk = C:\WINDOWS\VMSnap326.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Domino.lnk = C:\WINDOWS\Domino.exe (Vimicro)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Photosmart Premier - Szybkie uruchomienie.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Development Company, L.P.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2000478354-682003330-725345543-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2000478354-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2000478354-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-2000478354-682003330-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Image - F:\LG PC suit\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Memo - F:\LG PC suit\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Text file - F:\LG PC suit\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Set as Mobile Wallpaper - F:\LG PC suit\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync Option - F:\LG PC suit\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.21.2.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-02-07 19:13:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007-12-11 21:15:14 | 000,000,000 | ---D | M] - G:\Automap -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]
 
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 005.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 004.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 003.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 002.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 001.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\III KWARTAŁ ryz. operacyjne 2010.zip
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 005.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 004.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 003.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 002.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 001.jpg
[2011-05-13 18:24:03 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Krzys\Pulpit\OTL.exe
[2011-05-13 11:14:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Krzys\Recent
[2011-05-12 22:05:08 | 000,028,160 | ---- | C] (Wbuauu Software) -- C:\Documents and Settings\Krzys\m7f4pu607h.exe
[2011-05-03 23:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox
[2011-04-28 14:34:50 | 000,053,816 | ---- | C] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2011-04-27 19:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krzys\Moje dokumenty\BFBC2
[2011-04-23 20:46:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Digital Image Recovery
[2011-04-20 19:59:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\Trusteer
[2011-04-20 12:43:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krzys\Pulpit\Mezalians
[2011-04-09 14:56:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2011-04-09 14:54:28 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2011-04-09 14:54:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Catalyst Control Center
[2011-04-09 14:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2011-04-03 21:04:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2011-03-27 20:32:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krzys\Moje dokumenty\Karpaty
[2011-03-23 15:58:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krzys\Dane aplikacji\InfraRecorder
[2011-03-23 15:57:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\InfraRecorder
[2011-03-21 19:56:06 | 000,051,712 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]
 
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 005.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 004.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 003.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 002.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\j 001.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\III KWARTAŁ ryz. operacyjne 2010.zip
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 005.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 004.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 003.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 002.jpg
File not found -- C:\Documents and Settings\Krzys\Pulpit\fizyka 001.jpg
[2011-05-13 18:24:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzys\Pulpit\OTL.exe
[2011-05-13 18:12:00 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-682003330-725345543-1004UA.job
[2011-05-13 18:12:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-05-13 16:46:53 | 000,140,024 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011-05-13 16:46:45 | 000,280,768 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011-05-13 16:12:01 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-05-13 14:28:22 | 062,142,928 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\launch.exe
[2011-05-13 14:22:42 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011-05-13 14:20:40 | 000,073,165 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Trojan.JPG
[2011-05-13 14:16:57 | 000,000,972 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011-05-13 14:16:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-05-13 11:14:57 | 000,032,818 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\cc_20110513_111446.reg
[2011-05-12 22:05:07 | 000,028,160 | ---- | M] (Wbuauu Software) -- C:\Documents and Settings\Krzys\m7f4pu607h.exe
[2011-05-12 14:49:39 | 000,280,768 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011-05-11 14:51:42 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-05-09 19:57:44 | 000,712,054 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Kopia PRACA.bmp
[2011-05-09 19:52:58 | 000,067,664 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Pomniki.png
[2011-05-09 19:49:25 | 000,712,054 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\PRACA.bmp
[2011-05-08 10:12:00 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-682003330-725345543-1004Core.job
[2011-05-07 11:10:26 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011-05-05 16:14:41 | 000,180,589 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\zgloszenie.pdf
[2011-05-03 23:19:58 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2011-05-03 23:15:51 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2011-05-03 22:42:23 | 000,116,942 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\RyanairBoardingPass(1).pdf
[2011-05-01 20:33:52 | 000,091,136 | ---- | M] () -- C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-04-29 09:34:21 | 004,035,488 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Obraz 052.jpg
[2011-04-28 14:34:50 | 000,053,816 | ---- | M] (Trusteer Ltd.) -- C:\WINDOWS\System32\drivers\RapportKELL.sys
[2011-04-28 13:50:23 | 279,454,248 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Mickiewicz.Adam-Pan.Tadeusz(Maraton.Polskiego.Radia-12CD)by-tomson-part2.rar
[2011-04-28 13:26:11 | 401,727,967 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Mickiewicz.Adam-Pan.Tadeusz(Maraton.Polskiego.Radia-12CD)by-tomson-part1.rar
[2011-04-28 10:39:21 | 000,225,616 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-04-27 18:19:46 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Krzys\Dane aplikacji\PnkBstrK.sys
[2011-04-27 18:19:25 | 002,434,856 | ---- | M] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011-04-27 18:13:29 | 000,001,534 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Battlefield Bad Company 2.lnk
[2011-04-26 09:50:10 | 000,001,876 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Microsoft Mouse.lnk
[2011-04-24 20:20:36 | 001,392,977 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\2011-04-24.12.35.16.jpg
[2011-04-23 20:46:53 | 000,000,461 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Digital Image Recovery.lnk
[2011-04-23 20:46:25 | 000,592,335 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\dir(dobreprogramy.pl).zip
[2011-04-21 07:08:46 | 000,030,100 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\cc_20110421_070802.reg
[2011-04-16 00:00:29 | 000,565,994 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-04-16 00:00:29 | 000,502,816 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-04-16 00:00:29 | 000,110,310 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-04-16 00:00:29 | 000,088,340 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-04-06 20:30:21 | 000,059,178 | ---- | M] () -- C:\Documents and Settings\Krzys\Pulpit\Oceny.JPG
[2011-04-01 21:31:59 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-03-27 19:59:41 | 000,127,769 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Mapka.png
[2011-03-27 18:59:29 | 000,132,220 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\800px-Rohacze_a4.jpg
[2011-03-27 18:56:06 | 000,066,734 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\KARPATY to.jpg
[2011-03-27 18:55:28 | 000,016,616 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\karpaty.jpg
[2011-03-26 21:27:24 | 003,569,402 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\green day - warning pobrano z ulub_pl .mp3
[2011-03-26 10:46:00 | 000,564,224 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\pomnik.pps
[2011-03-25 17:22:37 | 003,461,987 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Linkin Park - In The End pobrano z ulub_pl .mp3
[2011-03-25 16:22:54 | 002,779,041 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Green Day - Hitchin' a Ride pobrano z ulub_pl .mp3
[2011-03-25 13:44:16 | 002,930,311 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Green Day - Basket Case pobrano z ulub_pl .mp3
[2011-03-21 19:56:22 | 000,059,904 | ---- | M] () -- C:\WINDOWS\System32\OVDecode.dll
[2011-03-21 19:56:06 | 000,051,712 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011-03-16 15:41:55 | 001,993,985 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\skanuj0002.jpg
[2011-03-16 15:13:32 | 000,069,120 | ---- | M] () -- C:\Documents and Settings\Krzys\Moje dokumenty\CV SEB.dot
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-05-13 14:26:00 | 062,142,928 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\launch.exe
[2011-05-13 14:20:40 | 000,073,165 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Trojan.JPG
[2011-05-13 11:14:48 | 000,032,818 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\cc_20110513_111446.reg
[2011-05-09 19:57:11 | 000,712,054 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Kopia PRACA.bmp
[2011-05-09 19:52:57 | 000,067,664 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Pomniki.png
[2011-05-09 19:49:25 | 000,712,054 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\PRACA.bmp
[2011-05-05 16:14:37 | 000,180,589 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\zgloszenie.pdf
[2011-05-03 23:19:58 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2011-05-03 22:42:22 | 000,116,942 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\RyanairBoardingPass(1).pdf
[2011-04-29 09:32:23 | 004,035,488 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Obraz 052.jpg
[2011-04-28 13:35:37 | 279,454,248 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Mickiewicz.Adam-Pan.Tadeusz(Maraton.Polskiego.Radia-12CD)by-tomson-part2.rar
[2011-04-28 13:01:44 | 401,727,967 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Mickiewicz.Adam-Pan.Tadeusz(Maraton.Polskiego.Radia-12CD)by-tomson-part1.rar
[2011-04-27 18:16:41 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011-04-27 18:13:29 | 000,001,534 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Battlefield Bad Company 2.lnk
[2011-04-26 09:50:10 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Microsoft Mouse.lnk
[2011-04-24 20:20:32 | 001,392,977 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\2011-04-24.12.35.16.jpg
[2011-04-23 20:46:53 | 000,000,461 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Digital Image Recovery.lnk
[2011-04-23 20:46:22 | 000,592,335 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\dir(dobreprogramy.pl).zip
[2011-04-21 07:08:05 | 000,030,100 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\cc_20110421_070802.reg
[2011-04-09 14:53:34 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2011-04-09 14:53:33 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2011-04-06 20:30:21 | 000,059,178 | ---- | C] () -- C:\Documents and Settings\Krzys\Pulpit\Oceny.JPG
[2011-03-27 19:59:40 | 000,127,769 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Mapka.png
[2011-03-27 18:59:28 | 000,132,220 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\800px-Rohacze_a4.jpg
[2011-03-27 18:56:06 | 000,066,734 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\KARPATY to.jpg
[2011-03-27 18:55:24 | 000,016,616 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\karpaty.jpg
[2011-03-26 21:27:11 | 003,569,402 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\green day - warning pobrano z ulub_pl .mp3
[2011-03-26 10:45:57 | 000,564,224 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\pomnik.pps
[2011-03-25 17:22:24 | 003,461,987 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Linkin Park - In The End pobrano z ulub_pl .mp3
[2011-03-25 16:22:44 | 002,779,041 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Green Day - Hitchin' a Ride pobrano z ulub_pl .mp3
[2011-03-25 13:44:06 | 002,930,311 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\Green Day - Basket Case pobrano z ulub_pl .mp3
[2011-03-21 19:56:22 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011-03-16 15:13:25 | 000,069,120 | ---- | C] () -- C:\Documents and Settings\Krzys\Moje dokumenty\CV SEB.dot
[2011-02-06 16:58:19 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pit2007.ini
[2011-02-06 16:58:18 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pit2010.ini
[2010-12-12 23:07:27 | 001,370,963 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-2000478354-682003330-725345543-1004-0.dat
[2010-12-12 23:07:25 | 000,193,626 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
[2010-12-10 17:29:51 | 000,174,683 | ---- | C] () -- C:\WINDOWS\hpoins45.dat
[2010-12-10 17:29:51 | 000,000,450 | ---- | C] () -- C:\WINDOWS\hpomdl45.dat
[2010-11-08 20:49:24 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\CommonDL.dll
[2010-11-08 20:49:24 | 000,002,413 | ---- | C] () -- C:\WINDOWS\System32\lgAxconfig.ini
[2010-10-05 15:26:58 | 002,601,752 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_moh.exe
[2010-07-13 00:07:22 | 000,378,320 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-15 16:23:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010-06-15 16:23:52 | 000,227,586 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010-06-15 03:29:18 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\StarOpen.sys
[2010-06-03 14:57:49 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2010-06-03 13:28:01 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-06-03 13:28:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-06-03 13:28:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-06-03 13:28:01 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-06-03 13:28:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-04-02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010-02-26 16:15:02 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2010-02-04 21:08:17 | 000,000,734 | ---- | C] () -- C:\WINDOWS\YDPDICT.INI
[2009-12-10 12:21:19 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Krzys\Dane aplikacji\$_hpcst$.hpc
[2009-11-06 12:28:35 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\PPUNINST.dll
[2009-11-06 12:28:35 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\PDUNINST.DLL
[2009-10-20 15:35:56 | 000,000,347 | ---- | C] () -- C:\WINDOWS\pdf2word.INI
[2009-10-03 12:35:28 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\wintab32.dll
[2009-05-13 19:59:43 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Krzys\Dane aplikacji\PnkBstrK.sys
[2009-05-13 19:59:23 | 002,246,144 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009-05-04 22:52:38 | 000,000,857 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2009-03-15 14:19:59 | 000,000,534 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2009-03-15 14:18:00 | 000,089,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\FO_PAnt.sys
[2009-02-25 17:13:29 | 000,042,036 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009-02-22 08:29:11 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
[2009-02-04 16:10:05 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008-12-15 23:24:40 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2008-10-29 18:24:55 | 000,000,053 | ---- | C] () -- C:\WINDOWS\Hdtv.ini
[2008-09-04 18:47:20 | 000,000,043 | ---- | C] () -- C:\WINDOWS\hpfccopy.INI
[2008-09-04 09:28:23 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2008-09-01 12:52:41 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PageLibraries
[2008-09-01 12:52:41 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Krzys\Dane aplikacji\Organs
[2008-09-01 12:52:41 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdw.DAT
[2008-09-01 12:51:35 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PDEs
[2008-09-01 12:51:35 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Krzys\Dane aplikacji\Noise Gate
[2008-09-01 12:51:35 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLdu.DAT
[2008-07-30 16:51:10 | 000,000,203 | ---- | C] () -- C:\WINDOWS\GSdx9 sse2.INI
[2008-06-30 11:22:52 | 000,140,024 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-06-30 11:22:48 | 000,280,768 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2008-06-30 11:22:40 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2008-05-08 19:00:19 | 000,000,276 | ---- | C] () -- C:\WINDOWS\Recording.ini
[2008-05-08 18:59:15 | 000,000,234 | ---- | C] () -- C:\WINDOWS\DevCap.ini
[2008-05-08 18:51:23 | 000,634,880 | ---- | C] () -- C:\WINDOWS\uninstal.exe
[2008-05-08 17:38:18 | 000,000,086 | ---- | C] () -- C:\WINDOWS\LifeViewEncoder.INI
[2008-03-10 19:01:19 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2008-03-10 18:53:01 | 000,102,848 | ---- | C] () -- C:\WINDOWS\hpgins13.dat
[2008-02-28 22:01:05 | 000,000,025 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
[2008-02-28 11:27:08 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008-02-28 11:27:08 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008-02-15 18:44:53 | 000,091,136 | ---- | C] () -- C:\Documents and Settings\Krzys\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-02-13 15:31:33 | 000,126,804 | ---- | C] () -- C:\WINDOWS\HPHins12.dat
[2008-02-13 15:31:33 | 000,014,916 | ---- | C] () -- C:\WINDOWS\hphmdl12.dat
[2008-02-11 15:20:11 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\setupfilter.exe
[2008-02-11 15:20:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\VMSnap326.exe
[2008-02-11 15:20:02 | 000,081,920 | ---- | C] () -- C:\WINDOWS\VMCap326.exe
[2008-02-07 20:54:56 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
[2008-02-07 20:21:42 | 000,000,523 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-02-07 20:09:01 | 000,001,279 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2008-02-07 20:05:15 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008-02-07 20:04:24 | 000,000,284 | ---- | C] () -- C:\WINDOWS\game.ini
[2008-02-07 20:04:07 | 000,225,616 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008-02-07 19:41:00 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-02-07 19:40:58 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-02-07 19:40:58 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-02-07 19:40:58 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-02-07 19:40:57 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-02-07 19:38:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008-02-07 19:35:32 | 000,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2008-02-07 19:31:20 | 000,002,706 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008-02-07 19:26:17 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008-02-07 19:14:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008-02-07 19:11:05 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004-08-04 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004-08-04 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004-08-04 14:00:00 | 000,565,994 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2004-08-04 14:00:00 | 000,502,816 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004-08-04 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2004-08-04 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004-08-04 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004-08-04 14:00:00 | 000,110,310 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2004-08-04 14:00:00 | 000,088,340 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004-08-04 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004-08-04 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2004-08-04 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004-08-04 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004-08-04 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004-08-04 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004-08-04 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2003-01-02 08:43:48 | 000,634,880 | ---- | C] () -- C:\WINDOWS\System32\UNINSTAL.EXE
[2002-11-06 17:42:06 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\SDL_gfx.dll
[2002-10-13 12:25:14 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\MesaGlut.dll
[2002-10-13 12:23:36 | 000,363,008 | ---- | C] () -- C:\WINDOWS\System32\MesaGLU.dll
[2002-10-13 12:21:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\osmesa.dll
[2002-10-13 12:21:44 | 001,417,216 | ---- | C] () -- C:\WINDOWS\System32\MesaGL.dll
[2002-10-07 04:49:26 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\SDL.dll
[2002-09-18 00:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe
[2002-05-20 07:12:50 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\SDL_mixer.dll
[2002-04-13 12:01:10 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\SDL_ttf.dll
[2002-04-13 12:01:02 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\SDL_net.dll
[2002-04-13 12:00:48 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\SDL_image.dll
[2002-02-07 12:43:38 | 000,319,488 | ---- | C] () -- C:\WINDOWS\System32\sdl_sound.dll
[2001-12-03 20:59:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\in_flac.dll
[2001-08-13 01:00:54 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\vorbisfile.dll
[2001-08-13 01:00:36 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2001-08-13 00:59:58 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2001-04-05 14:24:14 | 000,169,443 | ---- | C] () -- C:\WINDOWS\System32\jpeg.dll
[2001-04-05 14:24:14 | 000,094,720 | ---- | C] () -- C:\WINDOWS\System32\libpng1.dll
[2001-04-05 14:24:14 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
[2001-04-04 20:33:50 | 000,209,920 | ---- | C] () -- C:\WINDOWS\System32\smpeg.dll
[1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009-02-13 20:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2DBoy
[2010-05-04 20:03:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-03-29 17:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2010-05-09 20:12:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2010-09-15 18:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2008-09-01 12:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Command Line Utility
[2008-09-01 12:52:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Dance Kit
[2010-12-18 17:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2010-12-18 17:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2008-09-01 12:52:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EnterNHelp
[2009-05-19 13:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software
[2010-07-17 00:00:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-11-08 22:26:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LGMOBILEAX
[2008-09-01 12:52:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nikon
[2010-12-18 16:56:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2011-05-13 18:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-04-04 21:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Trusteer
[2010-06-14 15:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2008-09-01 12:52:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ultima_T15
[2011-05-03 17:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Trusteer
[2011-02-25 14:05:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\.minecraft
[2010-07-26 20:08:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\AusLogics
[2010-03-29 17:33:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Autodesk
[2010-04-24 19:04:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\AVI ReComp
[2010-10-27 15:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\com.adobe.newhope.NHProject.prod.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
[2009-10-20 16:45:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\CTdeveloping
[2009-06-12 08:36:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Dev-Cpp
[2011-02-21 07:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\FOG Downloader
[2008-02-24 12:16:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Gadu-Gadu
[2009-08-05 16:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Garmin
[2008-04-09 12:50:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\GetRightToGo
[2010-09-25 17:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\gtk-2.0
[2009-05-13 20:02:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\id Software
[2009-02-02 19:02:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Image Zone Express
[2011-03-23 16:03:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\InfraRecorder
[2010-07-24 09:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\ipla
[2008-10-20 15:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Leadertech
[2010-05-13 11:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\maxup
[2010-05-16 19:24:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Mumble
[2010-07-29 09:17:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Need for Speed World
[2008-09-01 12:54:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Nikon
[2008-04-06 11:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Orbit
[2009-10-03 12:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\progeSOFT
[2011-02-15 21:17:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\RIFT
[2010-05-04 16:19:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\T6
[2011-02-27 15:46:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\TeamViewer
[2008-02-28 10:59:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Tibia
[2010-12-20 12:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Trusteer
[2010-06-14 15:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Ubisoft
[2011-05-01 20:33:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\uTorrent
[2010-06-15 21:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\Vimisoft Studio
[2010-10-12 21:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\WeGame
[2009-11-05 20:46:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\WengoPhone
[2010-09-25 08:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzys\Dane aplikacji\XnView
[2009-10-23 17:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Softland
[2011-05-13 14:22:42 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 172 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CAEDBDA6
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF

< End of report >