OTL logfile created on: 2012-01-01 11:11:31 - Run 1
OTL by OldTimer - Version 3.2.31.0     Folder = C:\Documents and Settings\User\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1015,48 Mb Total Physical Memory | 532,96 Mb Available Physical Memory | 52,48% Memory free
2,39 Gb Paging File | 1,98 Gb Available in Paging File | 83,08% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 68,36 Gb Total Space | 47,94 Gb Free Space | 70,12% Space Free | Partition Type: NTFS
Drive D: | 80,68 Gb Total Space | 78,35 Gb Free Space | 97,11% Space Free | Partition Type: NTFS
Drive E: | 29,29 Gb Total Space | 8,20 Gb Free Space | 27,98% Space Free | Partition Type: NTFS
Drive F: | 45,23 Gb Total Space | 34,26 Gb Free Space | 75,75% Space Free | Partition Type: NTFS
Drive O: | 87,78 Gb Total Space | 48,78 Gb Free Space | 55,57% Space Free | Partition Type: NTFS
 
Computer Name: STACJA7 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-12-30 20:08:27 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2011-08-03 14:23:54 | 000,828,944 | ---- | M] (GlavSoft LLC.) -- C:\Program Files\TightVNC\tvnserver.exe
PRC - [2011-01-12 15:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2011-01-12 15:41:24 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009-01-28 13:59:46 | 001,077,248 | ---- | M] (Oberthur Technologies) -- C:\Program Files\Oberthur Technologies\AuthentIC Webpack\AuthManagerV3.exe
PRC - [2009-01-19 09:22:06 | 000,143,360 | ---- | M] (Oberthur Technologies) -- C:\Program Files\Oberthur Technologies\AuthentIC Webpack\OcsCertSynchronizer.exe
PRC - [2008-04-25 07:30:10 | 000,249,856 | ---- | M] (Aladdin Knowledge Systems Ltd.) -- C:\WINDOWS\system32\nhsrvice.exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-03-19 11:30:46 | 002,558,464 | ---- | M] (Aladdin Knowledge Systems Ltd.) -- C:\WINDOWS\system32\hasplms.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-08-03 14:23:58 | 000,069,136 | ---- | M] () -- C:\Program Files\TightVNC\screenhooks.dll
MOD - [2009-02-27 19:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2006-12-03 13:53:06 | 000,126,464 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-08-03 14:23:54 | 000,828,944 | ---- | M] (GlavSoft LLC.) [Auto | Running] -- C:\Program Files\TightVNC\tvnserver.exe -- (tvnserver)
SRV - [2011-01-12 15:44:02 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2011-01-12 15:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-04-25 07:30:10 | 000,249,856 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Auto | Running] -- C:\WINDOWS\System32\nhsrvice.exe -- (HASP Loader)
SRV - [2008-03-19 11:30:46 | 002,558,464 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Auto | Running] -- C:\WINDOWS\System32\hasplms.exe -- (hasplms)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-08-08 17:22:10 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2011-06-14 12:38:12 | 006,359,656 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2011-06-13 04:03:54 | 000,306,664 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2010-12-21 14:04:06 | 000,141,264 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010-12-21 14:04:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010-12-21 12:47:38 | 000,094,872 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2010-04-03 10:02:54 | 000,240,608 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0150.sys -- (RsFx0150)
DRV - [2009-12-15 23:37:14 | 000,038,016 | ---- | M] (Advanced Card Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a38ccid.sys -- (A38CCID)
DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008-04-13 23:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2008-03-18 14:09:16 | 000,350,720 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2008-02-11 14:55:04 | 000,586,240 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2007-07-23 13:12:44 | 000,046,336 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\akshhl.sys -- (akshhl)
DRV - [2007-07-05 13:16:56 | 000,238,976 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp)
DRV - [2007-07-05 13:16:56 | 000,014,976 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb)
DRV - [2006-05-30 09:48:54 | 000,066,384 | ---- | M] () [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\nlem32nt.sys -- (nlem32nt)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-08-06 12:15:45 | 000,000,000 | ---D | M]
 
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: Gmail = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\
 
O1 HOSTS File: ([2011-12-16 11:46:16 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [AuthentIC Manager] AuthManagerV3.exe File not found
O4 - HKLM..\Run: [Certificate Synchronizer] OcsCertSynchronizer.exe File not found
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [tvncontrol] C:\Program Files\TightVNC\tvnserver.exe (GlavSoft LLC.)
O4 - Startup: C:\Documents and Settings\User\Menu Start\Programy\Autostart\mapuj.bat ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DD042F09-7C76-4B08-959D-5D155A756D34}: NameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-08-06 10:40:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007-04-17 13:33:04 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-01-01 11:11:14 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-12-31 20:57:55 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\Recent
[2011-12-30 21:52:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
[2011-12-30 21:51:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Adobe
[2011-12-30 21:50:13 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2011-12-30 21:50:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011-12-30 21:45:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\IECompatCache
[2011-12-30 21:45:22 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\PrivacIE
[2011-12-30 21:41:24 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\IETldCache
[2011-12-30 21:30:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011-12-30 21:30:44 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011-12-30 21:30:33 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011-12-30 21:30:33 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011-12-30 21:30:32 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011-12-30 21:30:31 | 011,081,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011-12-30 21:30:30 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011-12-30 21:30:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011-12-30 21:29:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011-12-30 21:25:04 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011-12-30 21:24:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011-12-30 21:23:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011-12-30 21:22:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2011-12-30 21:18:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage
[2011-12-30 00:55:01 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011-12-17 12:24:54 | 000,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2011-12-17 12:23:27 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011-12-17 12:18:42 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2011-12-17 12:10:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011-12-16 12:11:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
[2011-12-16 12:08:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SAP Business One
[2011-12-16 12:06:50 | 000,000,000 | ---D | C] -- C:\Program Files\Business Objects
[2011-12-16 11:59:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Local Settings
[2011-12-16 11:58:28 | 000,000,000 | ---D | C] -- C:\Program Files\SAP
[2011-12-16 11:51:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011-12-16 11:51:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2011-12-16 11:50:08 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011-12-16 11:49:37 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2011-12-16 11:49:33 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2011-12-16 11:46:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011-12-09 08:55:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011-12-09 08:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\TightVNC
[2011-12-09 08:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\TightVNC
[2011-12-09 08:49:50 | 000,000,000 | ---D | C] -- C:\Program Files\TightVNC
[2011-12-09 08:49:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TightVNC
[2011-12-08 11:23:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-01-01 11:09:27 | 000,000,460 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{DB7B55C9-ECA9-4DE9-92F5-01FCC2B2EF82}.job
[2012-01-01 10:36:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-1788223648-1801674531-1004UA.job
[2011-12-31 22:19:44 | 000,001,760 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SAP.RDP
[2011-12-31 22:19:18 | 000,000,556 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\IteCom.lnk
[2011-12-31 21:21:22 | 000,000,012 | ---- | M] () -- C:\WINDOWS\System32\haspaddr.dat
[2011-12-31 21:21:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-12-31 21:21:11 | 000,304,416 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-12-31 20:52:16 | 000,565,372 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-12-31 20:52:16 | 000,506,338 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-12-31 20:52:16 | 000,113,484 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-12-31 20:52:16 | 000,095,586 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-12-31 20:51:17 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-12-31 16:36:00 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-1788223648-1801674531-1004Core.job
[2011-12-30 21:52:41 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2011-12-30 21:24:58 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011-12-30 21:24:58 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011-12-30 21:23:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-12-30 20:08:27 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-12-30 00:40:53 | 000,361,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys
[2011-12-30 00:30:25 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011-12-29 19:35:52 | 000,000,042 | ---- | M] () -- C:\Documents and Settings\User\Dane aplikacji\PSPath.ini
[2011-12-22 09:06:56 | 000,000,084 | ---- | M] () -- C:\WINDOWS\InsRpPrint.INI
[2011-12-16 12:08:44 | 000,000,848 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\SAP Business One.lnk
[2011-12-16 11:46:16 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-12-15 14:38:15 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-12-14 08:25:59 | 000,015,161 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Dekr_Sp2.dbf
[2011-12-05 14:15:45 | 000,004,900 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\DKTechnology_ZUS_2011-11.xml
[2011-12-05 14:07:42 | 000,003,664 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\DKTechnology_ZUS_2011-10.xml
[2011-12-05 10:12:02 | 000,001,486 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Kalkulator.lnk
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-12-31 22:19:44 | 000,001,760 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SAP.RDP
[2011-12-31 22:19:18 | 000,000,556 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\IteCom.lnk
[2011-12-31 21:21:11 | 000,304,416 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-12-30 21:52:41 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2011-12-30 21:45:39 | 000,000,460 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{DB7B55C9-ECA9-4DE9-92F5-01FCC2B2EF82}.job
[2011-12-30 21:23:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-12-16 12:08:44 | 000,000,848 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\SAP Business One.lnk
[2011-10-14 08:21:11 | 000,393,256 | ---- | C] () -- C:\WINDOWS\System32\CNQ2414N.DAT
[2011-08-22 14:23:45 | 000,000,084 | ---- | C] () -- C:\WINDOWS\InsRpPrint.INI
[2011-08-10 11:50:39 | 000,000,179 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2011-08-09 13:43:55 | 000,434,176 | ---- | C] () -- C:\WINDOWS\System32\ZSHP1018.EXE
[2011-08-08 17:22:09 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\hdduinst.exe
[2011-08-08 17:17:53 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\PSPath.ini
[2011-08-08 17:13:51 | 000,000,383 | ---- | C] () -- C:\WINDOWS\System32\haspdos.sys
[2011-08-08 16:41:41 | 000,000,258 | ---- | C] () -- C:\WINDOWS\acpr.ini
[2011-08-08 16:37:02 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\Acpr.ini
[2011-08-08 09:43:01 | 000,000,012 | ---- | C] () -- C:\WINDOWS\System32\haspaddr.dat
[2011-08-08 08:28:13 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNWISE.EXE
[2011-08-08 08:28:09 | 000,066,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\nlem32nt.sys
[2011-08-08 08:28:08 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\nlem32nt.dll
[2011-08-08 08:28:08 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\nlem32me.dll
[2011-08-08 08:28:08 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\secbuild.dll
[2011-08-08 08:28:08 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\nlem32nw.dll
[2011-08-08 08:28:08 | 000,024,064 | ---- | C] () -- C:\WINDOWS\System32\sectools.dll
[2011-08-06 12:32:04 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011-08-06 12:21:43 | 000,002,583 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2011-08-06 11:26:15 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2011-08-06 11:25:39 | 000,081,936 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2011-08-06 10:42:19 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011-08-06 10:38:21 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-04-15 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008-04-15 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008-04-15 13:00:00 | 000,565,372 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2008-04-15 13:00:00 | 000,506,338 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008-04-15 13:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2008-04-15 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008-04-15 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008-04-15 13:00:00 | 000,113,484 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2008-04-15 13:00:00 | 000,095,586 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008-04-15 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008-04-15 13:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2008-04-15 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008-04-15 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008-04-15 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008-04-15 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008-04-15 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003-10-29 23:00:00 | 000,256,512 | ---- | C] () -- C:\WINDOWS\System32\kc32.dll
[2003-10-29 23:00:00 | 000,048,128 | ---- | C] () -- C:\WINDOWS\System32\wrkgadm.exe
[2003-10-29 23:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-08-06 12:15:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2011-08-09 14:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InsERT
[2011-08-25 07:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\InsERT GT
[2011-08-08 17:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org
[2011-12-09 08:54:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TightVNC
[2012-01-01 11:09:27 | 000,000,460 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{DB7B55C9-ECA9-4DE9-92F5-01FCC2B2EF82}.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\User\Pulpit\KADRY ITECOM.pif:SummaryInformation

< End of report >