OTL logfile created on: 2011-11-07 04:55:08 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Bartek\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1013,95 Mb Total Physical Memory | 477,48 Mb Available Physical Memory | 47,09% Memory free 2,38 Gb Paging File | 1,83 Gb Available in Paging File | 76,57% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 111,78 Gb Total Space | 15,04 Gb Free Space | 13,46% Space Free | Partition Type: NTFS Computer Name: KORCZ-5413A76BD | User Name: Bartek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-11-07 04:47:57 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL.exe PRC - [2011-10-20 23:14:41 | 000,947,056 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2011-09-06 21:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2011-09-06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-02-01 03:02:26 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe PRC - [2008-02-01 03:00:54 | 003,661,824 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\postgres.exe PRC - [2008-01-31 17:29:06 | 000,196,608 | R--- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe PRC - [2004-03-04 13:47:30 | 000,266,240 | ---- | M] () -- C:\Program Files\NetMeter\NetMeter.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-11-06 20:43:39 | 001,608,192 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11110602\algo.dll MOD - [2011-11-03 17:42:38 | 000,239,432 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11110602\aswRep.dll MOD - [2010-08-20 06:10:39 | 005,969,360 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2004-03-04 13:47:30 | 000,266,240 | ---- | M] () -- C:\Program Files\NetMeter\NetMeter.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2011-09-06 21:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2008-02-01 03:02:26 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe -- (pgsql-8.3) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-09-06 21:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011-09-06 21:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011-09-06 21:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011-09-06 21:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011-09-06 21:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011-09-06 21:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2011-09-06 21:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009-03-23 10:25:54 | 000,029,696 | ---- | M] (Kerio Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\kvnet.sys -- (kvnet) DRV - [2008-08-14 16:54:18 | 001,318,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416) DRV - [2008-04-28 19:22:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey) DRV - [2008-04-14 00:10:52 | 000,149,376 | ---- | M] (M-Systems) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tffsport.sys -- (tffsport) DRV - [2008-04-13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-11-01 07:26:36 | 000,989,696 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2007-11-01 07:25:32 | 000,211,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2007-11-01 07:25:22 | 000,731,520 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2007-10-04 10:35:54 | 000,651,776 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CHDAud.sys -- (CnxtHdAudAddService) DRV - [2007-07-12 10:49:16 | 000,096,384 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2006-12-07 17:27:38 | 000,499,456 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MRVW245.sys -- (MRVW245) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT3031817 IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\URLSearchHook: {32b29df0-2237-4370-9a29-37cebb730e9b} - C:\Program Files\FreeSoundRecorder\prxtbFree.dll (Conduit Ltd.) IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\URLSearchHook: {5c5b9468-d672-4eb7-b52f-b5afabf28c5b} - C:\Program Files\SFT_Polska\prxtbSFT0.dll (Conduit Ltd.) IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\URLSearchHook: {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - C:\Program Files\Brothersoft\prxtbBro2.dll (Conduit Ltd.) IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Java Deployment Toolkit 6.0.250.6 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U25 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: avast! WebRep = C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\ O1 HOSTS File: ([2011-10-27 21:11:17 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O2 - BHO: (FreeSoundRecorder Toolbar) - {32b29df0-2237-4370-9a29-37cebb730e9b} - C:\Program Files\FreeSoundRecorder\prxtbFree.dll (Conduit Ltd.) O2 - BHO: (SFT_Polska Toolbar) - {5c5b9468-d672-4eb7-b52f-b5afabf28c5b} - C:\Program Files\SFT_Polska\prxtbSFT0.dll (Conduit Ltd.) O2 - BHO: (Brothersoft Toolbar) - {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - C:\Program Files\Brothersoft\prxtbBro2.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (FreeSoundRecorder Toolbar) - {32b29df0-2237-4370-9a29-37cebb730e9b} - C:\Program Files\FreeSoundRecorder\prxtbFree.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (SFT_Polska Toolbar) - {5c5b9468-d672-4eb7-b52f-b5afabf28c5b} - C:\Program Files\SFT_Polska\prxtbSFT0.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Brothersoft Toolbar) - {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - C:\Program Files\Brothersoft\prxtbBro2.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\Toolbar\WebBrowser: (FreeSoundRecorder Toolbar) - {32B29DF0-2237-4370-9A29-37CEBB730E9B} - C:\Program Files\FreeSoundRecorder\prxtbFree.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\Toolbar\WebBrowser: (SFT_Polska Toolbar) - {5C5B9468-D672-4EB7-B52F-B5AFABF28C5B} - C:\Program Files\SFT_Polska\prxtbSFT0.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\..\Toolbar\WebBrowser: (Brothersoft Toolbar) - {E8DE9422-3B2C-4243-BF6F-235DA84D8EF8} - C:\Program Files\Brothersoft\prxtbBro2.dll (Conduit Ltd.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003..\Run: [C:\Program Files\NetMeter\NetMeter.exe] C:\Program Files\NetMeter\NetMeter.exe () O4 - Startup: C:\Documents and Settings\Bartek\Menu Start\Programy\Autostart\_uninst_73203391.lnk = File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1220945662-1580818891-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Bartek\Pulpit\PartyPoker.lnk File not found O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Bartek\Pulpit\PartyPoker.lnk File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1282285546281 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A29872A3-4095-4419-A858-1B00352BE247}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CE266130-6DBA-4311-BA96-04B297ED2F48}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7045BF3-AA0C-4DB1-A080-D8CDBBCFBFB3}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EB4A6DA1-8FAB-4DD1-A22D-7B0835F80814}: DhcpNameServer = 192.168.1.254 O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Bartek\Moje dokumenty\Moje obrazy\Tapety\windows_mac_wallpaper_by_aeidolf2.PNG O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-08-20 04:38:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-05-17 20:24:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Menu Start\Programy\IVONA [2012-05-17 20:23:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ivona [2012-01-21 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\IVONA [2011-11-17 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Menu Start\Programy\ivo [2011-11-07 04:47:55 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL.exe [2011-11-02 23:53:03 | 000,000,000 | --SD | C] -- C:\WINDOWS\Cookies [2011-11-02 23:38:59 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2011-11-02 23:16:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp [2011-11-02 22:53:21 | 000,000,000 | ---D | C] -- C:\Qoobox [2011-11-02 21:39:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files [2011-11-02 20:10:41 | 000,000,000 | ---D | C] -- C:\Program Files\Hitman Pro 3.5 [2011-11-02 20:10:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Hitman Pro 3.5 [2011-11-02 20:09:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hitman Pro [2011-11-02 17:59:27 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2011-10-29 17:23:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\SFT_Polska [2011-10-29 14:32:15 | 000,504,404 | ---- | C] (SERIALGAMES Inc.) -- C:\WINDOWS\Found Screensaver 2Uninst.exe [2011-10-29 12:59:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus [2011-10-29 12:59:39 | 000,320,856 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2011-10-29 12:59:39 | 000,020,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2011-10-29 12:59:36 | 000,034,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2011-10-29 12:59:35 | 000,442,200 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2011-10-29 12:59:35 | 000,052,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2011-10-29 12:59:34 | 000,110,552 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2011-10-29 12:59:34 | 000,104,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2011-10-29 12:59:33 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2011-10-29 12:59:22 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2011-10-29 12:59:21 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2011-10-27 21:18:15 | 000,133,208 | ---- | C] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\73203391.sys [2011-10-27 20:48:20 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2011-10-27 20:48:20 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2011-10-27 20:48:20 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2011-10-27 20:48:20 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2011-10-27 20:48:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2011-10-27 20:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bartek\Menu Start\Programy\Narzędzia administracyjne [2011-10-27 19:06:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2011-10-27 19:05:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton [2011-10-27 19:05:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller [2011-10-27 17:54:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2011-10-27 17:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome [2011-10-27 17:49:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2011-10-27 17:48:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2011-10-27 17:42:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software [2011-10-27 17:30:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\Ahead [2011-10-27 17:29:34 | 000,089,184 | ---- | C] (Ahead Software AG and its licensors) -- C:\WINDOWS\System32\drivers\imagedrv.sys [2011-10-27 17:29:34 | 000,057,344 | ---- | C] (Ahead Software AG) -- C:\WINDOWS\System32\ImageDrive.cpl [2011-10-27 17:29:24 | 000,569,344 | ---- | C] (Pegasus Software,LLC) -- C:\WINDOWS\System32\imagr5.dll [2011-10-27 17:29:24 | 000,544,768 | ---- | C] (Pegasus Software, LLC) -- C:\WINDOWS\System32\imagx5.dll [2011-10-27 17:29:24 | 000,283,920 | ---- | C] (Pegasus Software, LLC) -- C:\WINDOWS\System32\ImagXpr5.dll [2011-10-27 17:29:24 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe [2011-10-27 17:29:24 | 000,038,912 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\picn20.dll [2011-10-27 17:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2011-10-27 17:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [2011-10-27 02:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Atheros [2011-10-27 02:26:56 | 001,318,464 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\athw.sys [2011-10-27 01:58:53 | 000,028,544 | ---- | C] (Inprocomm, Inc.) -- C:\WINDOWS\System32\drivers\callistx.sys [2011-10-25 04:37:28 | 000,103,424 | ---- | C] (Brontes Processing) -- C:\WINDOWS\System32\presenter_nat.dll [2011-10-25 04:37:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Brontes Processing [2011-10-24 03:37:37 | 000,000,000 | ---D | C] -- C:\449856cceae65aaa1cfdf6d23e [2011-10-24 02:02:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2011-10-24 02:01:33 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2011-10-24 02:00:40 | 000,019,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2011-10-23 21:33:23 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros [2011-10-23 18:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\RadarSync [2011-10-23 12:18:00 | 000,516,224 | ---- | C] (Marvell Semiconductor, Inc) -- C:\WINDOWS\System32\Mrvw243.sys [2011-10-23 12:18:00 | 000,499,456 | ---- | C] (Marvell Semiconductor, Inc) -- C:\WINDOWS\System32\Mrvw245.sys [2011-10-23 12:17:59 | 000,516,224 | ---- | C] (Marvell Semiconductor, Inc) -- C:\WINDOWS\System32\drivers\Mrvw243.sys [2011-10-23 12:17:59 | 000,499,456 | ---- | C] (Marvell Semiconductor, Inc) -- C:\WINDOWS\System32\drivers\MRVW245.sys [2011-10-23 12:17:59 | 000,015,872 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\GTNDIS5.sys [2011-10-23 12:17:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Linksys Wireless-N USB Network Adapter WUSB300N [2011-10-23 12:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\Linksys [2011-10-19 01:42:11 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936} [2011-10-19 01:03:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bartek\Pulpit\Poker [2011-10-19 00:51:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bartek\Moje dokumenty\Ważne pliki [2011-10-19 00:50:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bartek\Moje dokumenty\Programy [2011-10-19 00:48:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Bartek\Moje dokumenty\Foldery [2011-10-16 21:41:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\n7-89-o9-3r-4t-r9 [2011-10-16 21:41:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Dane aplikacji\GameHouse [2011-10-16 20:26:12 | 000,086,016 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe [2011-10-16 20:25:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ActiveSync [2011-10-16 20:24:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\SFT_Polska [2011-10-16 20:24:52 | 000,000,000 | ---D | C] -- C:\Program Files\SFT_Polska [2011-10-16 20:17:03 | 000,000,000 | ---D | C] -- C:\Program Files\Handmark [2011-10-11 01:35:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Free Sound Recorder [2011-10-11 01:35:47 | 001,212,416 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioInformation2.dll [2011-10-11 01:35:47 | 000,602,112 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioTransform2.dll [2011-10-11 01:35:47 | 000,479,232 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualization2.dll [2011-10-11 01:35:47 | 000,458,752 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioRecord2.dll [2011-10-11 01:35:47 | 000,458,752 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioPlayer2.dll [2011-10-11 01:35:47 | 000,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTTextToAudio2.dll [2011-10-11 01:35:47 | 000,348,160 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMAFile2.dll [2011-10-11 01:35:46 | 001,986,560 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioFile2.dll [2011-10-11 01:35:46 | 000,880,640 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioEditor2.dll [2011-10-11 01:35:46 | 000,835,584 | ---- | C] (NCT) -- C:\WINDOWS\System32\NCTAudioCDGrabber2.dll [2011-10-11 01:35:46 | 000,000,000 | ---D | C] -- C:\Program Files\Free Sound Recorder [2011-10-08 11:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\PokerTracker 3 [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-11-07 04:47:57 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bartek\Pulpit\OTL.exe [2011-11-07 04:05:07 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-11-06 23:27:35 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-11-06 23:27:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-11-06 23:08:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-11-06 22:13:42 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Bartek\Pulpit\huo6lriy.exe [2011-11-04 17:21:28 | 000,557,334 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-11-04 17:21:28 | 000,495,022 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-11-04 17:21:28 | 000,105,566 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-11-04 17:21:28 | 000,084,806 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-11-02 20:13:38 | 000,023,624 | ---- | M] () -- C:\WINDOWS\System32\drivers\hitmanpro35.sys [2011-10-29 17:23:04 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2011-10-29 14:32:15 | 000,690,267 | ---- | M] () -- C:\WINDOWS\Found Screensaver 2.scr [2011-10-29 14:32:15 | 000,504,404 | ---- | M] (SERIALGAMES Inc.) -- C:\WINDOWS\Found Screensaver 2Uninst.exe [2011-10-29 12:59:35 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011-10-27 21:18:56 | 000,000,835 | ---- | M] () -- C:\Documents and Settings\Bartek\Menu Start\Programy\Autostart\_uninst_73203391.lnk [2011-10-27 21:11:17 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2011-10-27 20:45:46 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) -- C:\WINDOWS\System32\drivers\73203391.sys [2011-10-27 17:31:06 | 000,000,043 | ---- | M] () -- C:\END [2011-10-25 04:37:28 | 000,103,424 | ---- | M] (Brontes Processing) -- C:\WINDOWS\System32\presenter_nat.dll [2011-10-24 18:07:23 | 000,188,928 | ---- | M] () -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-10-24 03:39:45 | 000,122,136 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-10-24 03:32:08 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-10-23 12:17:27 | 000,001,044 | ---- | M] () -- C:\WINDOWS\System32\WLAN.INI [2011-10-16 20:26:01 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\Bartek\Dane aplikacji\$_hpcst$.hpc [2011-10-08 11:03:34 | 000,004,951 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\bltofzsb.qlf [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-11-06 22:13:42 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Bartek\Pulpit\huo6lriy.exe [2011-11-02 20:10:42 | 000,023,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\hitmanpro35.sys [2011-10-29 14:32:14 | 000,690,267 | ---- | C] () -- C:\WINDOWS\Found Screensaver 2.scr [2011-10-27 21:18:56 | 000,000,835 | ---- | C] () -- C:\Documents and Settings\Bartek\Menu Start\Programy\Autostart\_uninst_73203391.lnk [2011-10-27 20:48:20 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011-10-27 20:48:20 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011-10-27 20:48:20 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2011-10-27 20:48:20 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2011-10-27 20:48:20 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2011-10-27 17:49:20 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-10-27 17:49:19 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-10-27 17:30:00 | 000,000,043 | ---- | C] () -- C:\END [2011-10-23 12:18:00 | 000,008,491 | ---- | C] () -- C:\WINDOWS\System32\mrvw245.cat [2011-10-23 12:18:00 | 000,008,491 | ---- | C] () -- C:\WINDOWS\System32\drivers\mrvw245.cat [2011-10-23 12:17:59 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll [2011-10-23 12:17:59 | 000,031,930 | ---- | C] () -- C:\WINDOWS\System32\GTNDIS3.VXD [2011-10-23 12:17:25 | 000,001,044 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI [2011-10-16 20:26:01 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Bartek\Dane aplikacji\$_hpcst$.hpc [2011-10-11 01:35:47 | 000,113,486 | ---- | C] () -- C:\WINDOWS\System32\NCTWMAProfiles.prx [2011-10-08 11:03:34 | 000,004,951 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\bltofzsb.qlf [2011-08-25 19:50:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI [2011-04-10 21:25:05 | 000,000,387 | ---- | C] () -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\postgresinstall.bat [2011-01-09 17:09:34 | 000,000,230 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini [2011-01-09 17:09:34 | 000,000,094 | ---- | C] () -- C:\WINDOWS\brpcfx.ini [2011-01-09 17:09:14 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI [2011-01-09 17:09:13 | 000,000,404 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI [2011-01-09 17:03:49 | 000,000,050 | ---- | C] () -- C:\WINDOWS\System32\bridf08b.dat [2011-01-09 17:03:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\brdfxspd.dat [2011-01-09 16:58:35 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini [2010-12-20 11:09:28 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-12-16 14:49:33 | 000,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010-12-02 17:39:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PCFriend.INI [2010-09-12 23:17:23 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2010-08-29 19:33:13 | 000,009,964 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2010-08-21 01:46:19 | 000,188,928 | ---- | C] () -- C:\Documents and Settings\Bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-20 07:01:15 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin [2010-08-20 06:23:46 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-08-20 06:22:26 | 000,122,136 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-08-20 04:41:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-08-20 04:35:18 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008-04-14 22:16:20 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2006-12-31 06:57:08 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2001-10-26 19:15:16 | 000,557,334 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 19:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 19:15:16 | 000,105,566 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 19:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-08-23 16:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 16:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-18 00:30:24 | 000,495,022 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-18 00:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-18 00:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-18 00:30:22 | 000,084,806 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-18 00:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-07-22 01:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-22 01:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001-07-22 01:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [1998-10-11 01:07:38 | 000,088,576 | ---- | C] () -- C:\WINDOWS\System32\Iticheck.dll [color=#E56717]========== LOP Check ==========[/color] [2011-10-27 17:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2011-10-29 12:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2010-12-13 12:28:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2011-10-25 04:37:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Brontes Processing [2011-01-09 19:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\f-secure [2011-02-05 19:08:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\fssg [2010-08-20 06:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2011-11-02 20:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hitman Pro [2010-08-20 05:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Innovative Solutions [2011-06-03 21:07:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-10-16 21:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\n7-89-o9-3r-4t-r9 [2011-01-21 18:02:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2011-06-03 21:08:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2011-10-02 22:40:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ScanSoft [2011-10-03 21:49:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-10-19 01:56:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2011-01-09 17:31:15 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} [2011-10-19 01:42:11 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936} [2010-08-21 16:28:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010-12-13 12:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Babylon [2010-12-28 00:29:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\F-Secure [2011-03-13 11:48:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Free Sound Recorder [2011-06-13 20:20:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Gadu-Gadu 10 [2011-10-16 21:41:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\GameHouse [2011-09-12 01:19:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\ipla [2011-10-03 18:27:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\IVONA Player [2010-12-27 23:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Kerio [2011-03-12 20:26:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\MP3AudioRecorder [2010-08-21 15:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\OpenFM [2010-09-02 12:27:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Opera [2011-06-03 21:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\RDRM [2011-03-12 20:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\ScanSoft [2010-09-12 21:18:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Software Informer [2011-06-07 13:24:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\Thinstall [2011-10-19 01:45:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bartek\Dane aplikacji\TuneUp Software [2011-01-10 17:36:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software [color=#E56717]========== Purity Check ==========[/color] < End of report >