OTL logfile created on: 2012-07-09 13:19:28 - Run 2
OTL by OldTimer - Version 3.2.53.1     Folder = C:\Documents and Settings\TATA\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1022,42 Mb Total Physical Memory | 533,68 Mb Available Physical Memory | 52,20% Memory free
2,40 Gb Paging File | 2,03 Gb Available in Paging File | 84,69% Paging File free
Paging file location(s): c:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 3,54 Gb Free Space | 36,26% Space Free | Partition Type: NTFS
Drive D: | 68,36 Gb Total Space | 14,27 Gb Free Space | 20,88% Space Free | Partition Type: NTFS
Drive E: | 48,82 Gb Total Space | 5,55 Gb Free Space | 11,37% Space Free | Partition Type: NTFS
Drive F: | 68,36 Gb Total Space | 1,98 Gb Free Space | 2,90% Space Free | Partition Type: NTFS
Drive G: | 37,48 Gb Total Space | 14,66 Gb Free Space | 39,12% Space Free | Partition Type: NTFS
 
Computer Name: KS-9CD9EF | User Name: TATA | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-09 11:35:54 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\TATA\Pulpit\OTL(Pobierz.pl).exe
PRC - [2012-06-21 08:22:49 | 000,874,384 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012-04-04 18:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2012-03-07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011-08-02 09:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- D:\DAEMON Tools Lite\DTLite.exe
PRC - [2010-12-09 12:45:58 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- D:\Winamp\winampa.exe
PRC - [2010-09-03 14:52:48 | 000,606,208 | ---- | M] () -- G:\ScreenShooter\screenshooter.exe
PRC - [2009-12-03 11:12:12 | 000,976,320 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
PRC - [2009-01-09 20:53:06 | 007,418,368 | ---- | M] (OpenOffice.org) -- D:\Open Office\OpenOffice.org 3\program\soffice.bin
PRC - [2009-01-09 20:53:02 | 007,424,000 | ---- | M] (OpenOffice.org) -- D:\Open Office\OpenOffice.org 3\program\soffice.exe
PRC - [2004-08-04 02:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-07-09 09:37:38 | 001,781,248 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12070900\algo.dll
MOD - [2010-09-03 14:52:48 | 000,606,208 | ---- | M] () -- G:\ScreenShooter\screenshooter.exe
MOD - [2010-09-03 14:50:48 | 002,537,472 | ---- | M] () -- G:\ScreenShooter\QtCore4.dll
MOD - [2010-08-31 15:36:06 | 000,287,232 | ---- | M] () -- G:\ScreenShooter\imageformats\qjpeg4.dll
MOD - [2010-08-31 11:49:22 | 009,812,992 | ---- | M] () -- G:\ScreenShooter\QtGui4.dll
MOD - [2010-08-31 11:15:32 | 001,140,224 | ---- | M] () -- G:\ScreenShooter\QtNetwork4.dll
MOD - [2009-06-22 20:42:42 | 000,043,008 | ---- | M] () -- G:\ScreenShooter\libgcc_s_dw2-1.dll
MOD - [2009-01-10 12:32:40 | 000,011,362 | ---- | M] () -- G:\ScreenShooter\mingwm10.dll
MOD - [2008-07-29 13:55:14 | 000,969,728 | ---- | M] () -- D:\Open Office\OpenOffice.org 3\program\libxml2.dll
MOD - [2007-08-14 14:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007-07-12 14:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007-07-12 14:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
MOD - [2007-04-19 07:26:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2007-04-19 07:26:00 | 000,212,992 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll
MOD - [2007-01-31 12:33:24 | 000,032,768 | ---- | M] () -- C:\Program Files\Vtune\TBPanelExt.dll
MOD - [2004-08-04 02:44:04 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012-06-18 02:05:48 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-04-04 18:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-04-01 01:54:54 | 000,024,616 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2012-04-01 01:54:54 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2012-03-07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012-03-07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012-03-07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012-03-07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012-03-07 01:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012-03-07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-03-07 00:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012-02-13 01:18:03 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2009-05-20 07:22:44 | 001,872,192 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmudax3.sys -- (cmuda3)
DRV - [2008-02-12 04:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm)
DRV - [2008-02-05 02:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2)
DRV - [2007-03-16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2006-12-14 10:44:06 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006-11-02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006-06-19 00:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-06-25 02:42:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: D:\Mozilla\components [2012-06-18 02:05:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: D:\Mozilla\plugins
 
[2012-04-25 12:58:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\TATA\Dane aplikacji\Mozilla\Extensions
[2012-06-08 17:59:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\TATA\Dane aplikacji\Mozilla\Firefox\Profiles\5jkl5yj9.default\extensions
[2012-06-08 17:59:17 | 000,000,000 | ---D | M] (LightShot (screenshot tool)) -- C:\Documents and Settings\TATA\Dane aplikacji\Mozilla\Firefox\Profiles\5jkl5yj9.default\extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Search the web (Babylon) (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&babsrc=SP_def&affID=111247&tt=220212_cp1
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\19.0.1084.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\19.0.1084.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 6.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = D:\PFiles\Plugins\np-mswmp.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: Download Accelerator Plus (DAP) = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ffdcfjdljhbehggjdkdioajnknjcpbjb\2.0.10_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1407_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of 
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2001-10-26 21:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [WinampAgent] D:\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] D:\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [GoogleDriveSync] C:\Program Files\Google\Drive\googledrivesync.exe (Google)
O4 - HKCU..\Run: [screenshooter] G:\ScreenShooter\screenshooter.exe ()
O4 - Startup: C:\Documents and Settings\TATA\Menu Start\Programy\Autostart\OpenOffice.org 3.0.lnk = D:\Open Office\OpenOffice.org 3\program\quickstart.exe ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Clean Traces - G:\Program Files\DAP\Privacy Package\dapcleanerie.htm ()
O8 - Extra context menu item: &Download with &DAP - G:\Program Files\DAP\dapextie.htm ()
O8 - Extra context menu item: Download &all with DAP - G:\Program Files\DAP\dapextie2.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.1.5
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C8067018-E504-4E95-8C79-B1D1F90F27C7}: DhcpNameServer = 10.10.1.5
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-02-03 17:04:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-09 13:11:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Dane aplikacji\Google
[2012-07-09 12:59:51 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-07-09 11:35:50 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\TATA\Pulpit\OTL(Pobierz.pl).exe
[2012-07-06 10:00:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Dane aplikacji\Winamp
[2012-07-05 20:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\Quakenet
[2012-07-05 20:00:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\Rizon
[2012-07-04 13:11:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\checkts
[2012-07-04 12:42:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2012-07-03 10:11:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\Nowy folder (2)
[2012-07-03 10:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\kon333
[2012-07-01 11:48:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Moje dokumenty\GTA San Andreas User Files
[2012-06-29 12:39:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\Nowy folder
[2012-06-27 21:53:21 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-06-20 14:30:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Chromium
[2012-06-20 14:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Sports Interactive
[2012-06-20 14:27:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\Sports Interactive
[2012-06-20 14:27:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Dane aplikacji\Sports Interactive
[2012-06-15 20:33:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\com.konami.pes2012
[2012-06-13 21:46:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\TATA\Pulpit\IRC(QuakeNet)
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-09 13:16:21 | 000,088,723 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2012-07-09 13:15:45 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-07-09 13:15:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-07-09 13:13:39 | 000,618,655 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\adwcleaner.exe
[2012-07-09 13:09:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-07-09 13:07:16 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-07-09 12:59:36 | 000,000,383 | ---- | M] () -- C:\WINDOWS\System\Cmicnfg3.ini
[2012-07-09 12:46:11 | 000,000,246 | ---- | M] () -- C:\WINDOWS\Cmicnfg3.ini.cfl
[2012-07-09 12:46:05 | 000,000,134 | ---- | M] () -- C:\WINDOWS\Cmicnfg3.ini.imi
[2012-07-09 12:29:52 | 001,565,975 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\adobe.reader.v.10.0.0.apk
[2012-07-09 12:16:22 | 030,127,205 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\1 - Lądowanie w Andach.pdf
[2012-07-09 11:35:54 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\TATA\Pulpit\OTL(Pobierz.pl).exe
[2012-07-09 11:29:56 | 000,486,654 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-07-09 11:29:56 | 000,293,288 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-07-09 11:29:56 | 000,082,946 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-07-09 11:29:56 | 000,035,162 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-07-07 12:01:40 | 000,164,479 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\xiu3.rtf
[2012-07-07 09:51:18 | 000,000,277 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\odp.rtf
[2012-07-06 22:07:41 | 000,181,351 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\xiu2.rtf
[2012-07-06 18:53:12 | 000,003,778 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\asdasd.rtf
[2012-07-06 10:06:33 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-07-05 23:18:16 | 000,183,016 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\RD.rtf
[2012-07-05 21:46:58 | 000,103,797 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\xiu.rtf
[2012-07-05 21:42:19 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\sp.rtf
[2012-07-05 21:37:04 | 000,014,043 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\art.rtf
[2012-07-05 14:52:26 | 013,389,231 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Advanced Civilization (1995 - Microprose ).rar
[2012-07-05 14:51:20 | 005,658,983 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Championship_manager2.zip
[2012-07-05 14:47:56 | 001,061,489 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\AnDOSBox.v113.apk
[2012-07-05 11:23:18 | 000,057,320 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\nanto.rtf
[2012-07-04 13:23:33 | 001,140,244 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\aDosBox.apk
[2012-07-04 13:10:13 | 000,234,116 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\checkts.rar
[2012-07-04 13:03:54 | 000,057,684 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Terminal Emulator.apk
[2012-07-04 11:44:51 | 000,056,995 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\mirela.jpg
[2012-07-04 11:44:51 | 000,014,965 | ---- | M] () -- C:\Documents and Settings\TATA\.recently-used.xbel
[2012-07-04 11:43:12 | 000,026,137 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\mi.jpg
[2012-07-04 11:33:33 | 000,139,391 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\i1205312.jpg
[2012-07-01 18:53:53 | 000,213,054 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\swieszewo.rtf
[2012-07-01 14:24:11 | 000,033,696 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Prop.rtf
[2012-07-01 11:49:05 | 000,000,570 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do gta_sa.lnk
[2012-07-01 11:39:52 | 000,494,660 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\gta_san_andreas_pl.rar
[2012-06-30 23:10:10 | 000,060,210 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\shaql.rtf
[2012-06-30 23:09:37 | 000,103,905 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Deanb.rtf
[2012-06-30 22:23:52 | 000,005,064 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\asd.rtf
[2012-06-30 14:32:49 | 000,000,482 | ---- | M] () -- C:\WINDOWS\eReg.dat
[2012-06-30 12:42:58 | 000,000,343 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do Pulpit.lnk
[2012-06-30 12:42:08 | 000,003,889 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\GM.rtf
[2012-06-30 12:25:15 | 000,006,955 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\CAS.rtf
[2012-06-29 12:39:37 | 000,007,423 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\CAS2.rtf
[2012-06-28 11:43:58 | 000,153,405 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Obraz 002.jpg
[2012-06-28 11:41:20 | 000,152,698 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Obraz 001.jpg
[2012-06-28 11:40:15 | 000,055,702 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Obraz.jpg
[2012-06-27 15:59:46 | 002,750,454 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\sky_107.bmp
[2012-06-25 10:39:47 | 000,000,501 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\SPAM.rtf
[2012-06-25 02:42:11 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-06-24 18:00:45 | 000,000,207 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\ks.rtf
[2012-06-24 13:35:06 | 000,000,525 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Dokument2.rtf
[2012-06-23 12:55:26 | 000,008,169 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Dokument.rtf
[2012-06-22 20:50:07 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Gra_ _2_.rtf
[2012-06-22 19:26:42 | 000,000,505 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do fm.lnk
[2012-06-20 12:00:32 | 000,014,709 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\logo.jpg
[2012-06-20 11:59:03 | 000,075,698 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\pieniądze.jpeg
[2012-06-20 11:54:44 | 000,001,792 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\def.jpg
[2012-06-20 11:54:36 | 000,050,903 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\pieniądze-pan-duza.jpg
[2012-06-18 14:10:31 | 000,121,258 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\dean.rtf
[2012-06-16 16:01:53 | 000,029,883 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\zachod2.jpg
[2012-06-15 22:02:21 | 000,652,721 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\zachod.xcf
[2012-06-15 21:32:09 | 000,090,121 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\zachod.jpg
[2012-06-14 20:53:44 | 000,276,015 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\Bez nazwy.xcf
[2012-06-14 20:48:05 | 000,108,659 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\14_06_20sss12__20_40_48.jpg
[2012-06-14 20:47:44 | 000,041,851 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_47_44.jpg
[2012-06-14 20:40:48 | 000,111,995 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_40_48.jpg
[2012-06-14 20:37:06 | 000,015,190 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_37_06.jpg
[2012-06-14 20:34:57 | 000,003,632 | ---- | M] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_34_57.jpg
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-07-09 13:13:38 | 000,618,655 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\adwcleaner.exe
[2012-07-09 12:29:45 | 001,565,975 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\adobe.reader.v.10.0.0.apk
[2012-07-09 11:59:21 | 030,127,205 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\1 - Lądowanie w Andach.pdf
[2012-07-07 12:01:40 | 000,164,479 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\xiu3.rtf
[2012-07-07 09:51:18 | 000,000,277 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\odp.rtf
[2012-07-06 22:07:41 | 000,181,351 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\xiu2.rtf
[2012-07-06 18:53:12 | 000,003,778 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\asdasd.rtf
[2012-07-05 23:18:16 | 000,183,016 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\RD.rtf
[2012-07-05 21:46:58 | 000,103,797 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\xiu.rtf
[2012-07-05 21:42:19 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\sp.rtf
[2012-07-05 21:37:04 | 000,014,043 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\art.rtf
[2012-07-05 14:50:11 | 005,658,983 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Championship_manager2.zip
[2012-07-05 14:50:04 | 013,389,231 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Advanced Civilization (1995 - Microprose ).rar
[2012-07-05 14:47:49 | 001,061,489 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\AnDOSBox.v113.apk
[2012-07-05 11:23:18 | 000,057,320 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\nanto.rtf
[2012-07-04 13:23:25 | 001,140,244 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\aDosBox.apk
[2012-07-04 13:10:11 | 000,234,116 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\checkts.rar
[2012-07-04 13:03:54 | 000,057,684 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Terminal Emulator.apk
[2012-07-04 11:44:51 | 000,056,995 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\mirela.jpg
[2012-07-04 11:44:51 | 000,014,965 | ---- | C] () -- C:\Documents and Settings\TATA\.recently-used.xbel
[2012-07-04 11:43:12 | 000,026,137 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\mi.jpg
[2012-07-04 11:33:33 | 000,139,391 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\i1205312.jpg
[2012-07-01 18:53:53 | 000,213,054 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\swieszewo.rtf
[2012-07-01 14:24:11 | 000,033,696 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Prop.rtf
[2012-07-01 11:49:05 | 000,000,570 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do gta_sa.lnk
[2012-07-01 11:40:03 | 000,000,141 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\www.Portal24h.pl - spolszczenia.url
[2012-07-01 11:39:51 | 000,494,660 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\gta_san_andreas_pl.rar
[2012-06-30 23:09:37 | 000,103,905 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Deanb.rtf
[2012-06-30 22:59:37 | 000,060,210 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\shaql.rtf
[2012-06-30 22:23:52 | 000,005,064 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\asd.rtf
[2012-06-30 14:32:49 | 000,000,482 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2012-06-30 12:42:58 | 000,000,343 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do Pulpit.lnk
[2012-06-30 12:42:08 | 000,003,889 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\GM.rtf
[2012-06-29 12:39:37 | 000,007,423 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\CAS2.rtf
[2012-06-28 11:43:44 | 000,153,405 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Obraz 002.jpg
[2012-06-28 11:41:03 | 000,152,698 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Obraz 001.jpg
[2012-06-28 11:40:07 | 000,055,702 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Obraz.jpg
[2012-06-27 15:59:45 | 002,750,454 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\sky_107.bmp
[2012-06-25 12:31:24 | 000,006,955 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\CAS.rtf
[2012-06-25 10:39:47 | 000,000,501 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\SPAM.rtf
[2012-06-24 18:00:45 | 000,000,207 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\ks.rtf
[2012-06-24 13:35:06 | 000,000,525 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Dokument2.rtf
[2012-06-23 12:55:26 | 000,008,169 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Dokument.rtf
[2012-06-22 20:50:07 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Gra_ _2_.rtf
[2012-06-22 19:26:42 | 000,000,505 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Skrót do fm.lnk
[2012-06-20 12:00:32 | 000,014,709 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\logo.jpg
[2012-06-20 11:59:02 | 000,075,698 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\pieniądze.jpeg
[2012-06-20 11:54:44 | 000,001,792 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\def.jpg
[2012-06-20 11:54:35 | 000,050,903 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\pieniądze-pan-duza.jpg
[2012-06-18 14:10:31 | 000,121,258 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\dean.rtf
[2012-06-16 16:01:53 | 000,029,883 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\zachod2.jpg
[2012-06-15 21:32:20 | 000,652,721 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\zachod.xcf
[2012-06-15 21:32:09 | 000,090,121 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\zachod.jpg
[2012-06-14 20:53:44 | 000,276,015 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\Bez nazwy.xcf
[2012-06-14 20:48:05 | 000,108,659 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\14_06_20sss12__20_40_48.jpg
[2012-06-14 20:47:49 | 000,041,851 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_47_44.jpg
[2012-06-14 20:40:53 | 000,111,995 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_40_48.jpg
[2012-06-14 20:37:13 | 000,015,190 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_37_06.jpg
[2012-06-14 20:35:05 | 000,003,632 | ---- | C] () -- C:\Documents and Settings\TATA\Pulpit\14_06_2012__20_34_57.jpg
[2012-05-21 14:02:20 | 000,069,336 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-04-05 10:19:46 | 000,109,216 | ---- | C] () -- C:\WINDOWS\System32\EasyHook64.dll
[2012-04-05 10:19:46 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\EasyHook32.dll
[2012-03-04 13:35:00 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-03-01 15:53:24 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2012-03-01 15:53:24 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2012-02-09 04:47:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EEventManager.INI
[2012-02-03 18:19:24 | 000,021,504 | ---- | C] () -- C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-02-03 18:19:24 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\TATA\Ustawienia lokalne\Dane aplikacji\{B9C535E4-579C-477B-9943-4007011D217B}
[2012-02-03 17:48:49 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-02-03 17:46:04 | 000,114,176 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-02-03 17:31:16 | 000,544,768 | R--- | C] () -- C:\WINDOWS\System32\Cmeaupci.exe
[2012-02-03 17:31:16 | 000,000,246 | ---- | C] () -- C:\WINDOWS\Cmicnfg3.ini.cfl
[2012-02-03 17:30:46 | 000,299,008 | R--- | C] () -- C:\WINDOWS\System32\CmiInstallResAll.dll
[2012-02-03 17:30:46 | 000,002,123 | R--- | C] () -- C:\WINDOWS\Cmicnfg3.ini.cfg
[2012-02-03 17:30:46 | 000,000,134 | ---- | C] () -- C:\WINDOWS\Cmicnfg3.ini.imi
[2012-02-03 17:30:41 | 000,002,641 | R--- | C] () -- C:\WINDOWS\cmudax3.ini
[2012-02-03 17:16:33 | 001,626,112 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2012-02-03 17:16:33 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2012-02-03 17:16:33 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2012-02-03 17:16:33 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2012-02-03 17:16:32 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2012-02-03 17:16:32 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2012-02-03 17:16:32 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2012-02-03 17:16:32 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2012-02-03 17:16:32 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2012-02-03 17:16:32 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2012-02-03 17:16:32 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2012-02-03 17:07:09 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-02-03 17:02:04 | 000,023,016 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-02-03 17:10:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2012-02-13 01:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-02-09 03:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EPSON
[2012-02-03 18:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2012-02-03 18:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2012-05-01 19:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2012-05-21 14:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony
[2012-04-05 10:19:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit
[2012-06-20 11:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012-04-02 07:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\DAEMON Tools Lite
[2012-04-02 18:32:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Epson
[2012-04-28 11:37:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Gadu-Gadu 10
[2012-07-04 11:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\gtk-2.0
[2007-01-01 00:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\hellomoto
[2012-04-02 18:19:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Internet Explorer
[2012-05-01 19:46:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\OpenFM
[2012-04-14 21:21:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\OpenOffice.org
[2012-04-02 19:38:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Opera
[2012-06-08 16:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Oracle
[2012-05-21 15:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Publish Providers
[2012-05-21 15:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Sony
[2012-05-21 12:10:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Sony Setup
[2012-06-20 14:27:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\TATA\Dane aplikacji\Sports Interactive
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CB0AACC9
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:553CA6CA

< End of report >