OTL logfile created on: 2011-10-30 11:44:41 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Users\usero\Desktop\anty
 Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1022,43 Mb Total Physical Memory | 425,27 Mb Available Physical Memory | 41,59% Memory free
2,00 Gb Paging File | 1,20 Gb Available in Paging File | 59,96% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 51,37 Gb Total Space | 35,43 Gb Free Space | 68,97% Space Free | Partition Type: NTFS
Drive D: | 1,78 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: USERO-KOMPUTER | User Name: usero | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-10-30 11:42:15 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\usero\Desktop\anty\OTL.exe
PRC - [2011-10-17 16:40:12 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
PRC - [2010-11-20 21:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010-11-20 21:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-03-02 11:34:45 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-10-17 16:40:12 | 000,058,288 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\System32\rpcnet.exe -- (rpcnet) Remote Procedure Call (RPC)
SRV - [2011-09-06 14:25:19 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-06-26 06:45:56 | 000,256,000 | R--- | M] () [Auto | Stopped] -- C:\ComboFix\pev.3XE -- (PEVSystemStart)
SRV - [2009-07-14 01:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009-07-14 01:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 01:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 01:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-06-15 14:55:00 | 000,300,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-07-22 17:27:04 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Users\usero\AppData\Local\Temp\HBCD\SuperAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2011-05-06 12:30:00 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdrvio.sys -- (pwdrvio)
DRV - [2011-05-06 12:29:50 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdspio.sys -- (pwdspio)
DRV - [2010-11-20 21:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 21:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 21:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 21:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 21:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 21:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010-11-20 21:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 21:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-07-15 06:44:20 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2010-07-15 06:44:20 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2009-12-03 14:48:44 | 000,625,224 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009-07-13 22:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009-07-13 22:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Sterownik karty Intel(R)
DRV - [2009-03-06 09:52:00 | 007,545,088 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007-03-21 20:02:04 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-02-24 12:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007-01-23 14:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-2785155147-2867817701-537577627-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-2785155147-2867817701-537577627-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "iMesh Web Search"
FF - prefs.js..browser.search.order.1: "iMesh Web Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.startup.homepage: "http://www.wp.pl/"
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:5.4
FF - prefs.js..extensions.enabledItems: {2832ABCD-4444-1012-2D45-132D5447C445}:1.0.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.9
FF - prefs.js..extensions.enabledItems: {C20C76E7-E8F7-4109-8498-CF3B2CA4E570}:4.0
FF - prefs.js..keyword.URL: "http://search.imesh.com/web?src=ffb&systemid=1&q="
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.23\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-10-30 00:18:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.23\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-10-30 00:18:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
 
[2011-10-30 00:32:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\usero\AppData\Roaming\mozilla\Extensions
[2011-10-30 00:33:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\usero\AppData\Roaming\mozilla\Firefox\Profiles\5dltnddl.default\extensions
[2011-10-30 00:32:58 | 000,000,000 | ---D | M] (Beemp3 Search ToolBar) -- C:\Users\usero\AppData\Roaming\mozilla\Firefox\Profiles\5dltnddl.default\extensions\{2832ABCD-4444-1012-2D45-132D5447C445}
[2011-10-30 00:32:59 | 000,000,000 | ---D | M] (Easy YouTube Video Downloader) -- C:\Users\usero\AppData\Roaming\mozilla\Firefox\Profiles\5dltnddl.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2011-10-30 00:33:00 | 000,000,000 | ---D | M] (Ling Toolbar) -- C:\Users\usero\AppData\Roaming\mozilla\Firefox\Profiles\5dltnddl.default\extensions\{C20C76E7-E8F7-4109-8498-CF3B2CA4E570}
[2011-10-30 00:33:00 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\usero\AppData\Roaming\mozilla\Firefox\Profiles\5dltnddl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010-09-02 08:09:28 | 000,002,486 | ---- | M] () -- C:\Users\usero\AppData\Roaming\Mozilla\Firefox\Profiles\5dltnddl.default\searchplugins\iMeshWebSearch.xml
[2011-10-30 00:18:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-02-18 21:46:44 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010-12-12 09:05:50 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2010-12-12 09:05:50 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2010-09-02 08:09:28 | 000,002,486 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\iMeshWebSearch.xml
[2010-12-12 09:05:50 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2010-12-12 09:05:50 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2010-12-12 09:05:50 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2010-12-12 09:05:50 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2011-10-29 16:59:32 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2785155147-2867817701-537577627-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2785155147-2867817701-537577627-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2785155147-2867817701-537577627-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A5C061DB-D413-4F16-8604-FBFC24EE3375}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C996B836-8D96-4278-B267-D83DD14D1690}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.7601.21795_none_d1d8e899c56b92ab\urlmon.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Users\usero\AppData\Local\Temp\HBCD\SuperAntiSpyware\SASWINLO.DLL) - C:\Users\usero\AppData\Local\Temp\HBCD\SuperAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Users\usero\AppData\Local\Temp\HBCD\SuperAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-02-22 16:32:54 | 000,000,168 | R--- | M] () - D:\autorun -- [ CDFS ]
O32 - AutoRun File - [2011-08-22 17:49:28 | 000,000,128 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-10-30 10:57:52 | 000,000,000 | ---D | C] -- C:\Users\usero\DoctorWeb
[2011-10-30 10:37:42 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011-10-30 10:37:41 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Roaming\SUPERAntiSpyware.com
[2011-10-30 10:25:10 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011-10-30 10:05:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2011-10-30 10:05:15 | 002,334,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011-10-30 10:05:06 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011-10-30 10:05:05 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011-10-30 10:04:59 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011-10-30 10:04:58 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011-10-30 10:04:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011-10-30 10:04:58 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011-10-30 10:04:56 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011-10-30 10:04:56 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011-10-30 10:03:26 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2011-10-30 10:03:25 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011-10-30 10:03:25 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011-10-30 10:03:24 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011-10-30 10:03:20 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2011-10-30 10:03:19 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011-10-30 10:03:19 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011-10-30 10:03:19 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011-10-30 10:03:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011-10-30 10:03:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011-10-30 10:03:14 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2011-10-30 10:03:05 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011-10-30 10:03:04 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011-10-30 10:03:03 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011-10-30 10:03:03 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011-10-30 10:03:02 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011-10-30 09:53:21 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2011-10-30 09:53:21 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2011-10-30 09:53:21 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2011-10-30 09:53:21 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2011-10-30 09:53:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2011-10-30 09:50:52 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011-10-30 09:50:52 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011-10-30 09:50:49 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2011-10-30 01:58:36 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2011-10-30 01:46:54 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Roaming\Malwarebytes
[2011-10-30 01:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011-10-30 01:42:37 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011-10-30 01:37:24 | 000,000,000 | ---D | C] -- C:\Users\usero\Desktop\anty
[2011-10-30 01:02:26 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011-10-30 00:51:33 | 000,000,000 | -H-D | C] -- C:\$WINDOWS.~Q
[2011-10-30 00:49:03 | 000,000,000 | -H-D | C] -- C:\$INPLACE.~TR
[2011-10-30 00:12:01 | 000,000,000 | --SD | C] -- C:\Users\usero\AppData\Roaming\Microsoft
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Videos
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Saved Games
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Pictures
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Music
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Links
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Favorites
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Downloads
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Documents
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\Desktop
[2011-10-30 00:12:01 | 000,000,000 | R--D | C] -- C:\Users\usero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Ustawienia lokalne
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\AppData\Local\Temporary Internet Files
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Szablony
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\SendTo
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Recent
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\PrintHood
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\NetHood
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Documents\Moje wideo
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Documents\Moje obrazy
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Moje dokumenty
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Documents\Moja muzyka
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Menu Start
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\AppData\Local\Historia
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Dane aplikacji
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\AppData\Local\Dane aplikacji
[2011-10-30 00:12:01 | 000,000,000 | -HSD | C] -- C:\Users\usero\Cookies
[2011-10-30 00:12:01 | 000,000,000 | -H-D | C] -- C:\Users\usero\AppData
[2011-10-30 00:12:01 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Local\Temp
[2011-10-30 00:12:01 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Local\Microsoft
[2011-10-30 00:12:01 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Roaming\Media Center Programs
[2011-10-30 00:09:11 | 001,108,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpluir.dll
[2011-10-30 00:09:11 | 000,797,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe
[2011-10-30 00:09:11 | 000,420,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl
[2011-10-30 00:09:10 | 000,453,152 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe
[2011-10-30 00:05:49 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011-10-29 21:02:39 | 000,000,000 | ---D | C] -- C:\z c
[2011-10-29 17:47:37 | 000,000,000 | ---D | C] -- C:\ProgramData\GroupPolicy
[2011-10-29 16:48:19 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011-10-29 16:48:19 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011-10-29 16:48:19 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011-10-29 16:48:13 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011-10-29 16:48:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-10-29 14:49:27 | 000,000,000 | ---D | C] -- C:\bd_logs
[2011-10-18 17:16:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Premium
[2011-10-18 17:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2011-10-17 16:40:41 | 000,058,288 | ---- | C] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
[2011-10-17 16:40:41 | 000,058,288 | ---- | C] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.dll
[2011-10-17 16:40:13 | 000,013,160 | ---- | C] (Absolute Software Corp.) -- C:\Windows\System32\Upgrd.exe
[2011-10-04 17:00:21 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011-10-04 17:00:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011-10-04 17:00:11 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011-10-02 17:04:38 | 000,000,000 | ---D | C] -- C:\Users\usero\AppData\Local\Knowledge Solutions
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-10-30 11:47:34 | 001,310,720 | -HS- | M] () -- C:\Users\usero\NTUSER.DAT
[2011-10-30 11:32:33 | 000,014,592 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-10-30 11:32:33 | 000,014,592 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-10-30 11:31:35 | 000,017,408 | ---- | M] () -- C:\Windows\System32\rpcnetp.exe
[2011-10-30 11:31:33 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.dll
[2011-10-30 11:31:28 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011-10-30 11:31:18 | 000,341,864 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011-10-30 11:31:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-10-30 11:30:48 | 804,069,376 | -HS- | M] () -- C:\hiberfil.sys
[2011-10-30 11:28:22 | 001,667,972 | -H-- | M] () -- C:\Users\usero\AppData\Local\IconCache.db
[2011-10-30 10:49:20 | 000,714,252 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011-10-30 10:49:20 | 000,630,826 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-10-30 10:49:20 | 000,143,242 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011-10-30 10:49:20 | 000,112,336 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-10-30 10:49:19 | 001,596,078 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2011-10-30 10:26:55 | 197,680,416 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011-10-30 09:54:03 | 000,000,000 | ---- | M] () -- C:\Users\usero\defogger_reenable
[2011-10-30 01:58:51 | 000,000,020 | -HS- | M] () -- C:\Users\usero\ntuser.ini
[2011-10-30 01:50:17 | 000,084,896 | ---- | M] () -- C:\Users\usero\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-10-30 01:32:56 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011-10-30 01:02:12 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2011-10-30 00:50:30 | 000,185,589 | ---- | M] () -- C:\Windows\System32\license.rtf
[2011-10-30 00:41:33 | 000,021,616 | ---- | M] () -- C:\Windows\System32\emptyregdb.dat
[2011-10-30 00:12:05 | 000,524,288 | -HS- | M] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2011-10-30 00:12:05 | 000,524,288 | -HS- | M] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2011-10-30 00:12:05 | 000,065,536 | -HS- | M] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2011-10-30 00:10:30 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
[2011-10-29 23:13:06 | 000,002,544 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011-10-29 23:13:06 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2011-10-29 23:08:54 | 000,000,604 | -H-- | M] () -- C:\Windows\EPMBatch.ept
[2011-10-29 17:43:29 | 001,422,657 | ---- | M] () -- C:\regdll.bat
[2011-10-29 17:24:11 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2011-10-29 16:59:32 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011-10-29 10:32:41 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011-10-23 15:51:50 | 000,043,093 | ---- | M] () -- C:\Users\usero\Desktop\img13355.fryzury-srednie.194165.jpg
[2011-10-17 16:40:21 | 000,013,160 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\Upgrd.exe
[2011-10-17 16:40:12 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
[2011-10-17 16:36:49 | 000,017,408 | ---- | M] () -- C:\Windows\System32\rpcnetp.dll
[2011-10-01 02:42:56 | 001,638,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-10-30 09:54:03 | 000,000,000 | ---- | C] () -- C:\Users\usero\defogger_reenable
[2011-10-30 02:17:15 | 001,667,972 | -H-- | C] () -- C:\Users\usero\AppData\Local\IconCache.db
[2011-10-30 02:00:19 | 000,001,421 | ---- | C] () -- C:\Users\usero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011-10-30 01:58:51 | 000,000,020 | -HS- | C] () -- C:\Users\usero\ntuser.ini
[2011-10-30 01:50:17 | 000,084,896 | ---- | C] () -- C:\Users\usero\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-10-30 00:52:29 | 804,069,376 | -HS- | C] () -- C:\hiberfil.sys
[2011-10-30 00:41:33 | 000,021,616 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2011-10-30 00:12:01 | 000,524,288 | -HS- | C] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2011-10-30 00:12:01 | 000,524,288 | -HS- | C] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2011-10-30 00:12:01 | 000,065,536 | -HS- | C] () -- C:\Users\usero\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2011-10-30 00:12:00 | 001,310,720 | -HS- | C] () -- C:\Users\usero\NTUSER.DAT
[2011-10-30 00:11:21 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011-10-30 00:11:10 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011-10-30 00:10:30 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
[2011-10-29 23:07:41 | 000,000,604 | -H-- | C] () -- C:\Windows\EPMBatch.ept
[2011-10-29 23:05:55 | 002,217,088 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2011-10-29 23:05:55 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2011-10-29 23:05:55 | 000,014,848 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2011-10-29 23:05:55 | 000,013,192 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2011-10-29 23:05:55 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2011-10-29 23:05:13 | 000,747,592 | ---- | C] () -- C:\Windows\System32\pwNative.exe
[2011-10-29 23:05:13 | 000,016,472 | ---- | C] () -- C:\Windows\System32\pwdrvio.sys
[2011-10-29 23:05:02 | 000,011,104 | ---- | C] () -- C:\Windows\System32\pwdspio.sys
[2011-10-29 20:00:33 | 000,036,864 | ---- | C] () -- C:\Windows\StmClean.exe
[2011-10-29 17:37:07 | 001,422,657 | ---- | C] () -- C:\regdll.bat
[2011-10-29 17:15:55 | 000,002,544 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011-10-29 17:15:55 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2011-10-29 16:48:19 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011-10-29 16:48:19 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011-10-29 16:48:19 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011-10-29 16:48:19 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011-10-29 16:48:19 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011-10-29 13:35:11 | 197,680,416 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011-10-23 15:51:48 | 000,043,093 | ---- | C] () -- C:\Users\usero\Desktop\img13355.fryzury-srednie.194165.jpg
[2011-10-17 16:36:49 | 000,017,408 | ---- | C] () -- C:\Windows\System32\rpcnetp.dll
[2011-10-17 16:35:52 | 000,017,408 | ---- | C] () -- C:\Windows\System32\rpcnetp.exe
[2011-04-12 05:08:42 | 000,714,252 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2011-04-12 05:08:42 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2011-04-12 05:08:42 | 000,143,242 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2011-04-12 05:08:42 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2011-03-10 14:49:13 | 000,172,121 | ---- | C] () -- C:\Windows\hppins20.dat
[2011-03-10 14:49:13 | 000,006,259 | ---- | C] () -- C:\Windows\hppmdl20.dat
[2010-11-20 21:29:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010-11-20 21:29:20 | 000,053,600 | ---- | C] () -- C:\Windows\System32\dosx.exe
[2010-11-20 21:01:02 | 001,596,078 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-08-08 10:53:49 | 000,000,050 | ---- | C] () -- C:\Windows\Winamp.ini
[2010-08-08 10:53:39 | 000,000,041 | ---- | C] () -- C:\Windows\winampa.ini
[2010-07-21 19:26:53 | 000,111,913 | ---- | C] () -- C:\Users\usero\AppData\Roaming\NMM-MetaData.db
[2010-07-20 07:23:45 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010-07-14 19:53:13 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2009-12-02 17:39:02 | 020,317,504 | ---- | C] () -- C:\Windows\System32\TrueSuiteCoInst02020000.dll
[2009-07-14 04:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 04:33:53 | 000,341,864 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-07-14 02:05:48 | 000,630,826 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009-07-14 02:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009-07-14 02:05:48 | 000,112,336 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009-07-14 02:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009-07-14 02:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009-07-14 02:04:57 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2009-07-14 02:04:23 | 000,000,478 | ---- | C] () -- C:\Windows\win.ini
[2009-07-14 02:04:23 | 000,000,215 | ---- | C] () -- C:\Windows\system.ini
[2009-07-14 02:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009-07-13 23:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-13 23:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009-07-13 21:41:05 | 000,000,718 | ---- | C] () -- C:\Windows\System32\mscdexnt.exe
[2009-07-13 21:41:04 | 000,002,842 | ---- | C] () -- C:\Windows\System32\redir.exe
[2009-07-13 21:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\share.exe
[2009-07-13 21:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\fastopen.exe
[2009-07-13 21:41:01 | 000,019,694 | ---- | C] () -- C:\Windows\System32\GRAPHICS.COM
[2009-07-13 21:40:59 | 000,014,710 | ---- | C] () -- C:\Windows\System32\KB16.COM
[2009-07-13 21:40:57 | 000,007,052 | ---- | C] () -- C:\Windows\System32\nlsfunc.exe
[2009-07-13 21:40:57 | 000,001,131 | ---- | C] () -- C:\Windows\System32\LOADFIX.COM
[2009-07-13 21:40:56 | 000,039,274 | ---- | C] () -- C:\Windows\System32\mem.exe
[2009-07-13 21:40:54 | 000,011,753 | ---- | C] () -- C:\Windows\System32\setver.exe
[2009-07-13 21:40:52 | 000,020,634 | ---- | C] () -- C:\Windows\System32\debug.exe
[2009-07-13 21:40:51 | 000,008,424 | ---- | C] () -- C:\Windows\System32\exe2bin.exe
[2009-07-13 21:40:50 | 000,012,642 | ---- | C] () -- C:\Windows\System32\edlin.exe
[2009-07-13 21:40:49 | 000,012,498 | ---- | C] () -- C:\Windows\System32\append.exe
[2009-07-13 21:40:48 | 000,050,648 | ---- | C] () -- C:\Windows\System32\COMMAND.COM
[2009-07-13 21:40:44 | 000,027,097 | ---- | C] () -- C:\Windows\System32\country.sys
[2009-07-13 21:40:43 | 000,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS
[2009-07-13 21:40:43 | 000,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS
[2009-07-13 21:40:41 | 000,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS
[2009-07-13 21:40:40 | 000,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS
[2009-07-13 21:40:39 | 000,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS
[2009-07-13 21:40:35 | 000,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS
[2009-07-13 21:40:31 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS
[2009-07-13 21:40:27 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS
[2009-07-13 21:40:23 | 000,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS
[2009-07-13 21:40:19 | 000,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS
[2009-07-13 21:40:17 | 000,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS
[2009-07-13 21:40:15 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS
[2009-07-13 21:40:13 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS
[2009-07-13 21:40:11 | 000,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS
[2009-07-13 21:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll
[2009-07-13 20:29:46 | 000,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll
[2009-06-10 21:42:32 | 000,069,886 | ---- | C] () -- C:\Windows\System32\edit.com
[2009-06-10 21:39:59 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini
[2009-06-10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-10-30 00:32:51 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\Ashampoo
[2011-10-30 00:32:51 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\Gadu-Gadu
[2011-10-30 00:32:52 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\GlarySoft
[2011-10-30 00:33:01 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\Nokia
[2011-10-30 00:33:01 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\Nokia Multimedia Player
[2011-10-30 00:33:01 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\PC Suite
[2011-10-30 00:33:01 | 000,000,000 | ---D | M] -- C:\Users\usero\AppData\Roaming\uTorrent
[2009-07-14 04:53:46 | 000,005,064 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >