OTL logfile created on: 2011-10-18 13:22:19 - Run 4
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Documents and Settings\Michal\Pulpit\Nowy folder
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1023,23 Mb Total Physical Memory | 509,95 Mb Available Physical Memory | 49,84% Memory free
2,41 Gb Paging File | 1,99 Gb Available in Paging File | 82,85% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,32 Gb Total Space | 0,97 Gb Free Space | 10,41% Space Free | Partition Type: NTFS
Drive D: | 32,23 Gb Total Space | 0,55 Gb Free Space | 1,71% Space Free | Partition Type: NTFS
Drive E: | 33,01 Gb Total Space | 0,65 Gb Free Space | 1,98% Space Free | Partition Type: NTFS
Drive F: | 502,98 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 18,55 Gb Total Space | 0,36 Gb Free Space | 1,96% Space Free | Partition Type: NTFS
Drive H: | 18,71 Gb Total Space | 0,29 Gb Free Space | 1,53% Space Free | Partition Type: NTFS
 
Computer Name: B-A99IQIBKFXZTF | User Name: Michal | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-10-18 12:52:24 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Michal\Pulpit\Nowy folder\OTL.exe
PRC - [2011-10-15 12:03:29 | 000,924,632 | ---- | M] (Mozilla Corporation) -- D:\Programy\Kopia Firefox\App\Firefox\firefox.exe
PRC - [2011-09-16 06:40:26 | 000,166,688 | ---- | M] (PortableApps.com) -- D:\Programy\Kopia Firefox\FirefoxPortable.exe
PRC - [2011-08-31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2009-05-12 19:21:59 | 000,077,824 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-08-28 20:27:04 | 000,295,424 | ---- | M] (http://autoconnect.prv.pl) -- C:\Program Files\AutoConnect\AutoConnect.exe
PRC - [2004-01-26 11:38:38 | 000,866,816 | ---- | M] (THOMSON Telecom Belgium) -- C:\Program Files\Thomson\SpeedTouch USB\dragdiag.exe
PRC - [2003-10-16 19:07:10 | 000,024,576 | ---- | M] () -- C:\Program Files\Neostrada TP\CnxMon.exe
PRC - [2003-02-21 12:46:58 | 000,191,488 | ---- | M] () -- D:\Róźności\GammaAdjuster.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-10-18 13:08:04 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\Michal\Ustawienia lokalne\temp\nsu3.tmp\registry.dll
MOD - [2011-10-18 13:08:04 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\Michal\Ustawienia lokalne\temp\nsu3.tmp\System.dll
MOD - [2011-10-15 12:03:29 | 001,989,592 | ---- | M] () -- D:\Programy\Kopia Firefox\App\Firefox\mozjs.dll
MOD - [2003-10-16 19:07:10 | 000,024,576 | ---- | M] () -- C:\Program Files\Neostrada TP\CnxMon.exe
MOD - [2003-02-21 12:46:58 | 000,191,488 | ---- | M] () -- D:\Róźności\GammaAdjuster.exe
MOD - [2002-05-26 23:44:50 | 000,122,880 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] --  -- (HidServ)
SRV - [2011-08-31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-04-26 12:29:49 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2006-06-05 13:59:18 | 000,174,080 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-08-31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-03-22 12:26:06 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2009-05-12 19:21:59 | 002,324,480 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008-04-14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2007-09-25 16:59:46 | 000,015,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - [2006-05-29 08:26:38 | 000,127,488 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (Nokia USB Phone Parent)
DRV - [2006-05-29 08:26:36 | 000,013,312 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (Nokia USB Modem)
DRV - [2006-05-29 08:26:36 | 000,008,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (Nokia USB Generic)
DRV - [2003-12-08 11:53:48 | 000,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003-12-08 11:53:46 | 000,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl
IE - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
 
[2011-10-18 12:21:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Michal\Dane aplikacji\Mozilla\Extensions
[2011-10-16 12:45:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Michal\Dane aplikacji\Mozilla\Extensions-BackupByFirefoxPortable
 
O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - E:\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O4 - HKLM..\Run: [GammaAdjuster] D:\Róźności\GammaAdjuster.exe ()
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpeedTouch USB Diagnostics] C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe (THOMSON Telecom Belgium)
O4 - HKLM..\Run: [WooCnxMon] C:\Program Files\Neostrada TP\CnxMon.exe ()
O4 - HKU\S-1-5-21-1214440339-1757981266-839522115-1003..\Run: [AutoConnect] C:\Program Files\AutoConnect\AutoConnect.exe (http://autoconnect.prv.pl)
O4 - Startup: C:\Documents and Settings\Rafal\Menu Start\Programy\Autostart\Skrót do AutoConnect.lnk = C:\Program Files\AutoConnect\AutoConnect.exe (http://autoconnect.prv.pl)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1214440339-1757981266-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{73550F52-057F-4BF9-935F-BCA70F456C15}: NameServer = 194.204.152.34 194.204.159.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Michal\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Michal\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-03-28 18:32:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-05-23 20:56:11 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-07 20:10:05 | 000,000,000 | -HSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-10-07 20:10:05 | 000,000,000 | -HSD | M] - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-02-06 13:08:13 | 000,000,000 | ---D | M] - E:\Auto_Audio_Pack_1 -- [ NTFS ]
O32 - AutoRun File - [2001-10-26 18:12:38 | 000,000,112 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2011-03-27 14:27:17 | 000,000,000 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-10-07 20:10:05 | 000,000,000 | RHSD | M] - G:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-07-19 16:50:30 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-10-18 13:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michal\Pulpit\Nowy folder
[2011-10-18 12:52:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michal\Pulpit\Autoruns
[2011-10-13 19:23:57 | 000,000,000 | R--D | C] -- C:\Filmy
[2011-10-12 20:17:03 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2011-10-12 20:17:03 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chsbrkr.dll
[2011-10-12 20:17:03 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2011-10-12 20:17:03 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chtbrkr.dll
[2011-10-12 20:17:02 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.lex
[2011-10-12 20:17:02 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2011-10-12 20:17:02 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.dll
[2011-10-12 20:17:02 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2011-10-12 20:17:02 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\korwbrkr.dll
[2011-10-12 20:17:02 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2011-10-12 20:16:57 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2011-10-12 20:16:47 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2011-10-12 20:16:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101a.dll
[2011-10-12 20:16:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2011-10-12 20:16:44 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2011-10-12 20:16:44 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2011-10-12 20:16:43 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2011-10-12 20:16:43 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2011-10-12 20:16:38 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2011-10-12 20:16:38 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2011-10-12 20:16:37 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2011-10-12 20:16:37 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2011-10-12 20:16:37 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2011-10-12 20:16:37 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2011-10-12 20:16:37 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnecAT.dll
[2011-10-12 20:16:37 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2011-10-12 20:16:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnecNT.dll
[2011-10-12 20:16:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2011-10-12 20:16:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnec95.dll
[2011-10-12 20:16:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2011-10-12 20:16:22 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2011-10-12 20:16:22 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2011-10-12 20:16:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2011-10-12 20:16:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_is2022.dll
[2011-10-12 20:14:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdjpn.dll
[2011-10-12 20:14:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdjpn.dll
[2011-10-12 20:14:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkor.dll
[2011-10-12 20:14:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkor.dll
[2011-10-12 20:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101c.dll
[2011-10-12 20:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101c.dll
[2011-10-12 20:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101b.dll
[2011-10-12 20:14:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101b.dll
[2011-10-12 20:14:43 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd103.dll
[2011-10-12 20:14:43 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd103.dll
[2011-10-12 20:14:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd106.dll
[2011-10-12 20:14:42 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106.dll
[2011-10-10 13:51:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Michal\Menu Start\Programy\Narzędzia administracyjne
[2011-09-21 17:56:47 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011-09-21 17:56:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2011-09-21 17:54:23 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011-09-21 17:51:34 | 000,000,000 | ---D | C] -- C:\Program Files\Revo Uninstaller
[2011-09-21 17:51:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Michal\Menu Start\Programy\Revo Uninstaller
[2011-09-21 17:44:16 | 000,581,632 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl6.dll
[2011-09-21 17:44:16 | 000,372,736 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2011-09-21 17:44:16 | 000,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2011-09-21 17:44:16 | 000,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst15.dll
[2011-09-21 17:44:15 | 000,729,088 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax7.dll
[2011-09-21 17:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2011-09-21 16:36:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2011-09-21 16:35:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard
[2011-09-21 16:35:40 | 000,271,704 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2011-09-21 16:35:39 | 000,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll5mu.dll
[2011-09-21 16:33:59 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2011-09-21 16:33:58 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-10-18 13:03:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-10-18 12:52:09 | 000,625,100 | ---- | M] () -- C:\Documents and Settings\Michal\Pulpit\Autoruns.zip
[2011-10-18 11:45:26 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\Michal\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-10-17 21:45:19 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011-10-17 16:07:22 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-10-12 20:18:08 | 000,156,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-10-08 11:45:08 | 000,002,262 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-09-30 21:02:35 | 000,000,155 | ---- | M] () -- C:\WINDOWS\winamp.ini
[2011-09-21 17:58:31 | 000,169,087 | ---- | M] () -- C:\WINDOWS\hpoins27.dat
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-10-18 12:52:02 | 000,625,100 | ---- | C] () -- C:\Documents and Settings\Michal\Pulpit\Autoruns.zip
[2011-10-12 20:17:03 | 000,001,486 | ---- | C] () -- C:\WINDOWS\System32\noise.kor
[2011-10-12 20:17:02 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\korwbrkr.lex
[2011-10-12 20:17:02 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011-10-12 20:17:02 | 000,002,060 | ---- | C] () -- C:\WINDOWS\System32\noise.jpn
[2011-10-12 20:16:53 | 000,211,938 | ---- | C] () -- C:\WINDOWS\System32\lcphrase.tbl
[2011-10-12 20:16:53 | 000,146,126 | ---- | C] () -- C:\WINDOWS\System32\array30.tab
[2011-10-12 20:16:53 | 000,110,566 | ---- | C] () -- C:\WINDOWS\System32\arphr.tbl
[2011-10-12 20:16:53 | 000,018,600 | ---- | C] () -- C:\WINDOWS\System32\arrayhw.tab
[2011-10-12 20:16:53 | 000,016,312 | ---- | C] () -- C:\WINDOWS\System32\arptr.tbl
[2011-10-12 20:16:52 | 000,116,285 | ---- | C] () -- C:\WINDOWS\System32\msdayi.tbl
[2011-10-12 20:16:52 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\acode.tbl
[2011-10-12 20:16:52 | 000,044,370 | ---- | C] () -- C:\WINDOWS\System32\a234.tbl
[2011-10-12 20:16:52 | 000,043,242 | ---- | C] () -- C:\WINDOWS\System32\phoncode.tbl
[2011-10-12 20:16:52 | 000,024,114 | ---- | C] () -- C:\WINDOWS\System32\lcptr.tbl
[2011-10-12 20:16:52 | 000,004,071 | ---- | C] () -- C:\WINDOWS\System32\phon.tbl
[2011-10-12 20:16:52 | 000,002,714 | ---- | C] () -- C:\WINDOWS\System32\phonptr.tbl
[2011-10-12 20:16:52 | 000,001,460 | ---- | C] () -- C:\WINDOWS\System32\a15.tbl
[2011-10-12 20:16:52 | 000,000,700 | ---- | C] () -- C:\WINDOWS\System32\dayiptr.tbl
[2011-10-12 20:16:52 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\dayiphr.tbl
[2011-10-12 20:16:48 | 001,783,864 | ---- | C] () -- C:\WINDOWS\System32\WINPY.MB
[2011-10-12 20:16:48 | 001,564,868 | ---- | C] () -- C:\WINDOWS\System32\WINSP.MB
[2011-10-12 20:16:48 | 001,223,500 | ---- | C] () -- C:\WINDOWS\System32\WINZM.MB
[2011-10-12 20:16:44 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011-10-12 20:16:44 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011-09-21 17:52:34 | 000,169,087 | ---- | C] () -- C:\WINDOWS\hpoins27.dat
[2011-09-21 17:52:33 | 000,000,932 | ---- | C] () -- C:\WINDOWS\hpomdl27.dat
[2011-05-13 20:13:32 | 000,000,126 | ---- | C] () -- C:\WINDOWS\_delis43.ini
[2011-04-08 16:35:12 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\pxhpinst.exe
[2011-04-08 16:34:58 | 000,000,155 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2011-04-05 19:37:36 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD-Start.INI
[2011-04-03 09:42:35 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011-03-30 10:27:10 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011-03-29 08:26:22 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-03-29 08:26:22 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2011-03-28 21:17:58 | 000,085,728 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2011-03-28 19:32:28 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2011-03-28 19:25:47 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011-03-28 19:24:23 | 000,156,360 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-03-28 18:55:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011-03-28 18:40:23 | 000,122,880 | ---- | C] () -- C:\Documents and Settings\Michal\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-03-28 18:34:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011-03-28 18:30:18 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011-03-27 14:46:53 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2010-04-02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2005-12-07 12:31:00 | 000,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2004-08-02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001-10-26 19:30:20 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001-10-26 18:15:16 | 000,490,284 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2001-10-26 18:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2001-10-26 18:15:16 | 000,083,660 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2001-10-26 18:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2001-08-23 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001-08-23 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001-08-17 23:30:24 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001-08-17 23:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001-08-17 23:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001-08-17 23:30:22 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001-08-17 23:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001-07-22 00:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001-07-22 00:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001-07-22 00:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[1999-01-22 20:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-07-06 17:59:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
[2011-05-21 15:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-07-06 18:00:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2011-05-21 15:00:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM
[2011-06-05 23:30:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SharkTime Software
[2011-09-07 19:34:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2011-03-28 22:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\.wtw
[2011-07-11 00:05:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\AIMP3
[2011-05-07 20:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\Broad Intelligence
[2011-06-05 22:59:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\GHISLER
[2011-05-14 14:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\IObit
[2011-05-21 15:00:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\ipla
[2011-10-16 22:02:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\Mp3tag
[2011-05-12 18:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\Mumble
[2011-05-29 19:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\MusicBrainz
[2011-09-07 16:53:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\Opera
[2011-07-06 20:51:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\PC Suite
[2011-05-29 17:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\TagScanner
[2011-10-18 12:19:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\uTorrent
[2011-08-01 20:50:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Michal\Dane aplikacji\XMedia Recode
[2011-06-04 13:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\AIMP3
[2011-03-29 08:36:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Artogon
[2011-07-06 18:14:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Datalayer
[2011-06-24 07:51:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Frogwares
[2011-04-08 15:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Gadu-Gadu
[2011-03-30 10:25:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\mojosoft
[2011-07-06 18:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Nokia
[2011-07-06 18:14:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Nokia Multimedia Player
[2011-07-06 17:59:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\PC Suite
[2011-04-08 15:30:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\Silver Style Entertainment
[2011-10-16 18:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\TagScanner
[2011-10-17 21:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rafal\Dane aplikacji\uTorrent
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:28BEC2EC

< End of report >