OTL logfile created on: 2012-07-10 10:38:37 - Run 3 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Documents and Settings\R2D2\Pulpit Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 958,42 Mb Total Physical Memory | 680,16 Mb Available Physical Memory | 70,97% Memory free 2,35 Gb Paging File | 2,14 Gb Available in Paging File | 90,95% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 7,98 Gb Free Space | 20,43% Space Free | Partition Type: NTFS Drive D: | 59,63 Gb Total Space | 22,31 Gb Free Space | 37,41% Space Free | Partition Type: NTFS Drive I: | 9,77 Gb Total Space | 8,38 Gb Free Space | 85,77% Space Free | Partition Type: NTFS Drive J: | 19,53 Gb Total Space | 8,55 Gb Free Space | 43,75% Space Free | Partition Type: NTFS Computer Name: KOMPUTER | User Name: R2D2 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-09 18:55:15 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\R2D2\Pulpit\OTL_3.2.53.1.exe PRC - [2012-04-04 18:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe PRC - [2010-04-07 22:57:42 | 000,099,896 | R--- | M] (HP) -- C:\WINDOWS\system32\HPSIsvc.exe PRC - [2010-03-24 16:42:10 | 000,599,328 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe PRC - [2009-10-30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2009-10-24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe PRC - [2009-08-04 18:21:58 | 000,030,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe PRC - [2009-06-24 11:57:04 | 000,136,704 | ---- | M] (HP) -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe PRC - [2009-05-14 19:07:12 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe PRC - [2007-01-04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe PRC - [2006-03-02 14:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-02-20 21:29:04 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll MOD - [2012-02-20 21:28:42 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll MOD - [2010-03-15 18:14:50 | 011,791,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\50ea744ffc3cb7f09b027fd6c5c93b2b\System.Web.ni.dll MOD - [2010-03-15 18:14:39 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a9e71dda6389403be4db7b567592e3b8\System.ServiceProcess.ni.dll MOD - [2010-03-15 18:13:37 | 001,711,104 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\5b3d048d8c003d743ea5e72caf07773a\Microsoft.VisualBasic.ni.dll MOD - [2010-03-15 16:18:53 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\01dc643b54310ebc5ab7e4696df426bc\System.Runtime.Serialization.Formatters.Soap.ni.dll MOD - [2010-03-15 16:18:51 | 012,428,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9a254c455892c02355ab0ab0f0727c5b\System.Windows.Forms.ni.dll MOD - [2010-03-15 16:18:37 | 005,449,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\36f3953f24d4f0b767bf172331ad6f3e\System.Xml.ni.dll MOD - [2010-03-15 16:18:32 | 000,970,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb4cb21d14767292e079366a5d3d76cd\System.Configuration.ni.dll MOD - [2010-03-15 16:18:21 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\6978f2e90f13bc720d57fa6895c911e2\System.Drawing.ni.dll MOD - [2010-03-15 16:17:09 | 007,867,392 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aa7926460a336408c8041330ad90929d\System.ni.dll MOD - [2010-03-15 16:17:03 | 011,485,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll MOD - [2010-03-15 16:16:20 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_pl_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll MOD - [2010-03-15 16:16:18 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2010-03-15 16:13:22 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2010-03-06 09:40:57 | 000,081,920 | R--- | M] () -- C:\WINDOWS\system32\mvusbews.dll MOD - [2010-03-04 17:55:34 | 000,147,456 | ---- | M] () -- C:\WINDOWS\system32\HP1100LM.DLL MOD - [2010-03-04 17:55:14 | 000,069,632 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\HP1100PP.dll MOD - [2009-08-04 18:23:16 | 000,063,032 | ---- | M] () -- C:\Program Files\HP\HP UT LEDM\bin\HPTools.dll MOD - [2009-08-04 18:23:02 | 000,075,320 | ---- | M] () -- C:\Program Files\HP\HP UT LEDM\bin\HPToolkit.dll MOD - [2009-08-04 18:22:32 | 000,678,968 | ---- | M] () -- C:\Program Files\HP\HP UT LEDM\bin\LEDMXMLObjects.dll MOD - [2009-08-04 18:22:16 | 000,136,248 | ---- | M] () -- C:\Program Files\HP\HP UT LEDM\bin\DMBaseObjects.dll MOD - [2006-03-02 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-06-17 15:33:12 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-04-04 18:47:32 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2010-04-07 22:57:42 | 000,099,896 | R--- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPSIsvc.exe -- (HPSIService) SRV - [2009-10-24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider) SRV - [2009-06-24 11:57:04 | 000,136,704 | ---- | M] (HP) [Auto | Running] -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service) SRV - [2009-05-14 19:07:12 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe -- (ABBYY.Licensing.PDFTransformer.Classic.3.0) SRV - [2007-12-10 14:59:04 | 000,353,280 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007-01-04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (ao0gdnoz) DRV - [2010-03-06 09:40:57 | 000,017,408 | R--- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mvusbews.sys -- (mvusbews) DRV - [2009-12-17 17:49:19 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2008-01-10 03:34:57 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp) DRV - [2007-07-16 23:29:33 | 000,017,432 | ---- | M] (Hewlett Packard) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hpfxbulk.sys -- (HPFXBULK) DRV - [2007-07-12 11:03:42 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\asusgsb.sys -- (asusgsb) DRV - [2007-07-12 11:03:38 | 000,012,288 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO) DRV - [2007-01-29 18:12:52 | 000,018,432 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AsusVRC.sys -- (ASUSVRC) DRV - [2006-10-18 21:12:16 | 000,012,664 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2006-10-18 11:39:58 | 000,017,920 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\xfilt.sys -- (xfilt) DRV - [2006-10-17 14:22:26 | 000,009,216 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32) DRV - [2006-06-16 13:56:38 | 000,083,968 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2005-06-09 08:35:40 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService) DRV - [2004-10-27 16:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService) DRV - [2004-08-13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) DRV - [2003-08-04 14:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2003-02-21 15:38:04 | 000,017,504 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gt680x.sys -- (GT680x) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-436374069-1993962763-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKU\S-1-5-21-436374069-1993962763-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-436374069-1993962763-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: onet-branding@flock.com:0.2 FF - prefs.js..extensions.enabledItems: {b01bf10c-302a-11da-b67b-000d60ca027b}:2.5.3 FF - prefs.js..network.proxy.http: "156.17.97.110" FF - prefs.js..network.proxy.http_port: 80 FF - prefs.js..network.proxy.no_proxies_on: "" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Flock 2.5.3\extensions\\Components: C:\Program Files\Flock\components [2012-05-31 10:55:26 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Flock 2.5.3\extensions\\Plugins: C:\Program Files\Flock\plugins [2012-05-31 10:55:26 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-17 15:33:15 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-05-31 11:01:22 | 000,000,000 | ---D | M] [2010-10-03 01:06:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\R2D2\Dane aplikacji\Mozilla\Extensions [2010-10-03 01:06:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\R2D2\Dane aplikacji\Mozilla\Extensions\{a463f10c-3994-11da-9945-000d60ca027b} [2012-06-08 21:34:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\R2D2\Dane aplikacji\Mozilla\Firefox\Profiles\1atvgjr8.default\extensions [2011-08-18 18:21:24 | 000,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\R2D2\Dane aplikacji\Mozilla\Firefox\Profiles\1atvgjr8.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492} [2012-06-08 01:07:40 | 000,000,000 | ---D | M] (YouTube to ALLPlayer) -- C:\Documents and Settings\R2D2\Dane aplikacji\Mozilla\Firefox\Profiles\1atvgjr8.default\extensions\YouTubetoALL@ALLPlayer.org [2012-05-19 13:02:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions File not found (No name found) -- C:\PROGRA~1\FLOCK\EXTENSIONS\ONET-BRANDING@FLOCK.COM [2012-06-17 15:33:14 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-06-17 15:33:08 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-06-17 15:33:08 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-06-17 15:33:08 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-06-17 15:33:08 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-06-17 15:33:08 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-06-17 15:33:08 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - Extension: No name found = C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: No name found = C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: No name found = C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-07-09 14:47:21 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll File not found O2 - BHO: (YouTube To ALLPlayer) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Program Files\ALLPlayer\YouTubeToALLPlayer.dll (ALLPlayer.org) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O3 - HKU\S-1-5-21-436374069-1993962763-839522115-1004\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found. O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [AsusStartupHelp] C:\Program Files\ASUS\AASP\1.00.24\AsRunHelp.exe () O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows (R) Server 2003 DDK provider) O4 - HKLM..\Run: [HPUsageTracking] c:\Program Files\HP\HP UT\bin\hppusg.exe (Hewlett-Packard Company) O4 - HKLM..\Run: [HPUsageTrackingLEDM] C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe (Hewlett-Packard Company) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [Onet.pl AutoUpdate] C:\Program Files\Common Files\Onet.pl\AutoUpdate.exe (Onet.pl) O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKU\S-1-5-21-436374069-1993962763-839522115-1004..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" File not found O4 - HKU\S-1-5-21-436374069-1993962763-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-436374069-1993962763-839522115-1004..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - HKU\S-1-5-21-436374069-1993962763-839522115-1004..\Run: [Philips Intelligent Agent] NOT_IN_USE_DUMMY_PATH File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-436374069-1993962763-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-436374069-1993962763-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-436374069-1993962763-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-436374069-1993962763-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Konwertuj do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html File not found O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html File not found O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do istniejącego pliku PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html File not found O8 - Extra context menu item: Konwertuj wybrane łącza do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html File not found O8 - Extra context menu item: Konwertuj zaznaczenie do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html File not found O8 - Extra context menu item: Konwertuj zaznaczenie do istniejącego pliku PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html File not found O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.152.34 194.204.159.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BF27CEE2-3877-4096-A46A-FFDBA19AA778}: DhcpNameServer = 194.204.152.34 194.204.159.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-02-27 22:02:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-10 10:24:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\R2D2\Recent [2012-07-10 09:48:02 | 000,000,000 | ---D | C] -- C:\_OTL [2012-07-09 18:55:14 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\R2D2\Pulpit\OTL_3.2.53.1.exe [2012-07-09 18:55:11 | 000,000,000 | ---D | C] -- C:\Program Files\v9Soft [2012-07-09 18:07:55 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-07-09 16:27:07 | 010,063,000 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\R2D2\Pulpit\mbam-setup-1.61.0.1400.exe [2012-07-09 16:09:38 | 001,973,368 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\R2D2\Pulpit\avg_remover_stf_x86_2012_2125.exe [2012-07-09 16:07:01 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\R2D2\Pulpit\24960-OTL.exe [2012-07-09 14:38:16 | 000,000,000 | RHSD | C] -- C:\cmdcons [2012-07-09 14:36:26 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012-07-09 14:36:26 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012-07-09 14:36:26 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012-07-09 14:36:26 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012-07-09 14:35:50 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-07-09 14:35:45 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2012-07-09 14:35:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012-07-09 14:34:32 | 004,573,972 | R--- | C] (Swearware) -- C:\Documents and Settings\R2D2\Pulpit\ComboFix.exe [2012-07-09 14:04:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys [2012-07-09 14:03:58 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys [2012-07-09 14:03:38 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys [2012-07-06 09:34:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\R2D2\Pulpit\STYLSAF [2012-07-04 09:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\R2D2\Pulpit\SZKOLENIA CZER-LIP [2012-06-22 21:35:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\R2D2\Pulpit\SERIALSE [2012-06-17 17:24:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\R2D2\Pulpit\Creative_Business_Card_Vol02-PIXEDEN [2012-06-14 18:05:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\Sun [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-10 10:41:02 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-436374069-1993962763-839522115-1004UA.job [2012-07-10 10:36:32 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-07-10 10:29:17 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012-07-10 10:29:09 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2012-07-10 10:29:06 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-07-10 10:24:08 | 007,340,032 | -H-- | M] () -- C:\Documents and Settings\R2D2\NTUSER.DAT [2012-07-10 10:24:08 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\R2D2\ntuser.ini [2012-07-10 10:23:58 | 004,312,986 | -H-- | M] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\IconCache.db [2012-07-10 09:54:14 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-07-10 02:55:01 | 001,562,608 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\LISTE-1.pdf [2012-07-10 02:27:42 | 000,331,880 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\katalog - Bezpieczenstwo.pdf [2012-07-10 02:24:27 | 000,245,742 | ---- | M] () -- C:\Documents and Settings\R2D2\Moje dokumenty\BHP NA BUDQWIE.pdf [2012-07-10 02:18:44 | 000,137,891 | ---- | M] () -- C:\Documents and Settings\R2D2\Moje dokumenty\file_4b0543027ad83.pdf [2012-07-10 01:28:36 | 000,512,183 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\plan2012.pdf [2012-07-10 01:27:44 | 002,530,480 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\material48.pdf [2012-07-10 01:27:02 | 000,212,151 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\autogaz.pdf [2012-07-09 23:37:41 | 000,129,570 | ---- | M] () -- C:\Documents and Settings\R2D2\Moje dokumenty\Warunki_techniczne_KMN-impreza_biletowana.pdf [2012-07-09 18:55:15 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\R2D2\Pulpit\OTL_3.2.53.1.exe [2012-07-09 18:53:52 | 001,236,992 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\otl_pcworld_downloader_40500_pc.exe [2012-07-09 16:41:37 | 000,618,655 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\adwcleaner.exe [2012-07-09 16:27:17 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\R2D2\Pulpit\mbam-setup-1.61.0.1400.exe [2012-07-09 16:09:39 | 001,973,368 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\R2D2\Pulpit\avg_remover_stf_x86_2012_2125.exe [2012-07-09 16:07:01 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\R2D2\Pulpit\24960-OTL.exe [2012-07-09 15:17:27 | 000,069,581 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2012-07-09 14:47:31 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2012-07-09 14:47:21 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2012-07-09 14:38:29 | 000,000,420 | RHS- | M] () -- C:\boot.ini [2012-07-09 14:34:44 | 004,573,972 | R--- | M] (Swearware) -- C:\Documents and Settings\R2D2\Pulpit\ComboFix.exe [2012-07-09 12:41:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-436374069-1993962763-839522115-1004Core.job [2012-07-09 12:25:00 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012-07-08 02:47:01 | 757,829,018 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\Reunion.avi [2012-07-05 00:50:49 | 565,628,928 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\Game.of.Thrones.S02E02.PL.HDTV.XviD.avi [2012-07-03 03:08:30 | 000,018,432 | ---- | M] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-01 16:44:43 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\Google Chrome.lnk [2012-06-17 17:25:07 | 001,647,534 | ---- | M] () -- C:\Documents and Settings\R2D2\Pulpit\Creative_Business_Card_Vol03-PIXEDEN.zip [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-10 02:55:01 | 001,562,608 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\LISTE-1.pdf [2012-07-10 02:27:41 | 000,331,880 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\katalog - Bezpieczenstwo.pdf [2012-07-10 02:24:27 | 000,245,742 | ---- | C] () -- C:\Documents and Settings\R2D2\Moje dokumenty\BHP NA BUDQWIE.pdf [2012-07-10 02:18:44 | 000,137,891 | ---- | C] () -- C:\Documents and Settings\R2D2\Moje dokumenty\file_4b0543027ad83.pdf [2012-07-10 01:28:35 | 000,512,183 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\plan2012.pdf [2012-07-10 01:27:44 | 002,530,480 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\material48.pdf [2012-07-10 01:27:02 | 000,212,151 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\autogaz.pdf [2012-07-09 23:37:41 | 000,129,570 | ---- | C] () -- C:\Documents and Settings\R2D2\Moje dokumenty\Warunki_techniczne_KMN-impreza_biletowana.pdf [2012-07-09 18:53:51 | 001,236,992 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\otl_pcworld_downloader_40500_pc.exe [2012-07-09 16:41:37 | 000,618,655 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\adwcleaner.exe [2012-07-09 14:38:29 | 000,000,304 | ---- | C] () -- C:\Boot.bak [2012-07-09 14:38:20 | 000,262,400 | RHS- | C] () -- C:\cmldr [2012-07-09 14:36:26 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2012-07-09 14:36:26 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012-07-09 14:36:26 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012-07-09 14:36:26 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012-07-09 14:36:26 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012-07-09 14:30:33 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-07-08 00:43:23 | 757,829,018 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\Reunion.avi [2012-07-04 23:41:37 | 565,628,928 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\Game.of.Thrones.S02E02.PL.HDTV.XviD.avi [2012-07-03 02:21:09 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk [2012-06-17 17:25:04 | 001,647,534 | ---- | C] () -- C:\Documents and Settings\R2D2\Pulpit\Creative_Business_Card_Vol03-PIXEDEN.zip [2012-02-20 15:21:07 | 000,000,040 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI [2011-10-28 15:15:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\{37678261-A40F-40CA-A750-EF2B3CD20193} [2011-10-23 15:15:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\{95EF6172-3F2E-406A-9A1F-294BCD28094A} [2011-09-09 12:07:42 | 000,631,065 | ---- | C] () -- C:\Documents and Settings\R2D2\Wydruk faksu na całej stronie.pdf [2011-06-20 00:24:53 | 000,000,665 | ---- | C] () -- C:\WINDOWS\System32\hppapr11.dat [2011-06-20 00:23:41 | 000,182,963 | ---- | C] () -- C:\WINDOWS\hppins11.dat [2011-06-20 00:23:41 | 000,005,707 | ---- | C] () -- C:\WINDOWS\hppmdl11.dat [2011-06-19 22:20:27 | 000,000,144 | ---- | C] () -- C:\WINDOWS\Readiris.ini [2011-03-25 04:08:44 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-01-05 17:19:46 | 001,511,424 | ---- | C] () -- C:\WINDOWS\System32\HP1100SM.EXE [2011-01-05 17:19:46 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\HP1100LM.DLL [2011-01-05 17:19:46 | 000,049,664 | R--- | C] () -- C:\WINDOWS\System32\HP1100SMs.dll [2011-01-05 17:19:33 | 000,081,920 | R--- | C] () -- C:\WINDOWS\System32\mvusbews.dll [2011-01-05 17:18:05 | 000,284,160 | R--- | C] () -- C:\WINDOWS\System32\mvhlewsi.dll [2010-12-16 12:48:25 | 000,000,148 | ---- | C] () -- C:\WINDOWS\konwerter.INI [2010-11-22 01:05:08 | 000,000,608 | -HS- | C] () -- C:\WINDOWS\System32\winzvprt5.sys [2010-11-22 00:58:02 | 000,000,056 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini [2010-06-26 00:38:45 | 000,000,283 | ---- | C] () -- C:\Documents and Settings\R2D2\Dane aplikacji\DarkAdapted Preferences [2010-05-10 19:28:06 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\R2D2\Dane aplikacji\default.rss [2010-05-10 19:28:06 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\R2D2\Dane aplikacji\downloads.m3u [2010-03-15 16:15:23 | 000,254,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-12-07 18:24:46 | 000,167,162 | ---- | C] () -- C:\Documents and Settings\R2D2\Ćwiczenie2.pdf [2008-05-01 02:36:45 | 000,000,110 | ---- | C] () -- C:\Documents and Settings\R2D2\default.pls [2008-03-12 19:27:34 | 000,123,504 | ---- | C] () -- C:\Documents and Settings\R2D2\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-03-04 11:53:43 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-03-01 00:51:40 | 000,001,851 | ---- | C] () -- C:\Documents and Settings\R2D2\.plugin140_03.trace [2008-02-28 01:02:03 | 000,000,149 | ---- | C] () -- C:\Documents and Settings\R2D2\Dane aplikacji\mainhst.zgh [2008-02-27 22:16:13 | 004,312,986 | -H-- | C] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-02-27 22:07:49 | 000,123,504 | ---- | C] () -- C:\Documents and Settings\R2D2\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-02-27 22:07:22 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\R2D2\ntuser.ini [2008-02-27 22:07:21 | 007,340,032 | -H-- | C] () -- C:\Documents and Settings\R2D2\NTUSER.DAT [color=#E56717]========== LOP Check ==========[/color] [2010-08-26 19:35:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2009-12-17 17:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-03-15 11:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2009-12-03 09:29:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\FarmFrenzy3 [2010-05-03 14:21:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2008-02-28 16:17:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-01-10 17:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-12-07 15:28:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2008-02-28 16:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2008-04-28 21:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Philips Intelligent Agent [2010-12-16 14:41:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WA-PRO [2008-08-13 23:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip [2011-05-21 14:27:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2008-11-27 11:49:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Softland [2010-08-26 19:37:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Ashampoo [2011-03-18 23:39:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\AutoUpdate [2011-02-27 14:35:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\BESTplayer [2011-12-08 13:18:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\DAEMON Tools Lite [2010-03-15 11:06:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\eXPert PDF Editor [2011-03-18 23:39:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Flircik [2010-10-03 01:06:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Flock [2008-02-28 00:06:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Gadu-Gadu [2010-01-10 17:44:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Gadu-Gadu 10 [2008-02-28 01:54:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\InterVideo [2010-01-24 00:33:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\ipla [2010-04-08 19:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Listing Factory 2009 [2010-09-28 12:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Netscape [2008-02-28 16:20:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Nokia [2008-10-15 18:39:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Opera [2012-05-31 11:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\Oracle [2008-02-28 16:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\PC Suite [2008-10-09 18:08:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\TuxPaint [2009-08-19 19:17:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\uTorrent [2010-12-16 11:50:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\R2D2\Dane aplikacji\WA-PRO [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Files - Unicode (All) ==========[/color] [2009-01-20 23:59:05 | 000,019,968 | ---- | M] ()(C:\Documents and Settings\R2D2\Moje dokumenty\? ? ????.doc) -- C:\Documents and Settings\R2D2\Moje dokumenty\я в шоке.doc [2009-01-20 23:59:04 | 000,019,968 | ---- | C] ()(C:\Documents and Settings\R2D2\Moje dokumenty\? ? ????.doc) -- C:\Documents and Settings\R2D2\Moje dokumenty\я в шоке.doc [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 48 bytes -> C:\Documents and Settings\All Users\DRM:مهندسة < End of report >