OTL logfile created on: 2010-11-15 09:43:27 - Run 2
OTL by OldTimer - Version 3.2.17.3     Folder = C:\Documents and Settings\admin\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1 023,00 Mb Total Physical Memory | 458,00 Mb Available Physical Memory | 45,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38,33 Gb Total Space | 8,20 Gb Free Space | 21,40% Space Free | Partition Type: NTFS
Drive D: | 38,33 Gb Total Space | 10,60 Gb Free Space | 27,66% Space Free | Partition Type: NTFS
Drive F: | 3,79 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: BRAVO2500 | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010-11-15 09:41:30 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Moje dokumenty\Downloads\OTL (1).exe
PRC - [2010-11-12 11:00:24 | 001,193,416 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Security\unins000.exe
PRC - [2010-11-12 11:00:24 | 001,193,416 | ---- | M] (PC Tools) -- C:\Documents and Settings\admin\Ustawienia lokalne\temp\_iu14D2N.tmp
PRC - [2010-11-01 22:36:03 | 000,974,904 | ---- | M] (Google Inc.) -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2008-04-21 13:11:37 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-09 10:49:48 | 003,945,800 | ---- | M] (Paessler GmbH) -- C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
PRC - [2007-05-11 02:06:00 | 000,341,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
PRC - [2005-05-10 14:18:30 | 000,024,576 | ---- | M] (Oki Data Corporation) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\OPHALDCS.EXE
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010-11-15 09:41:30 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\admin\Moje dokumenty\Downloads\OTL (1).exe
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2004-08-25 19:23:14 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows Script\Windows Script Control\msscript.ocx
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010-09-29 16:00:56 | 001,145,304 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\PC Tools Security\pctsSvc.exe -- (sdCoreService)
SRV - [2010-03-15 14:02:36 | 000,366,840 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\PC Tools Security\pctsAuxs.exe -- (sdAuxService)
SRV - [2008-09-08 06:59:00 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-04-16 12:17:51 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008-04-14 18:20:33 | 000,035,328 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\WINDOWS\System32\iprip.dll -- (Iprip)
SRV - [2008-04-09 10:49:48 | 003,945,800 | ---- | M] (Paessler GmbH) [Auto | Running] -- C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe -- (PRTGService)
SRV - [2007-07-26 09:37:30 | 000,024,576 | ---- | M] ( ) [Auto | Stopped] -- c:\Program Files\PrintSuperVision\www\bin\PrintSuperVisor.exe -- (PrintSuperVisor)
SRV - [2007-07-26 09:37:30 | 000,020,480 | ---- | M] ( ) [Auto | Stopped] -- C:\Program Files\PrintSuperVision\www\bin\PSVWebServer.exe -- (PSVWebServer)
SRV - [2006-07-26 11:03:30 | 000,443,904 | ---- | M] () [Auto | Stopped] -- C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe -- (prtgwatchservice)
SRV - [2005-05-10 14:18:30 | 000,024,576 | ---- | M] (Oki Data Corporation) [Auto | Running] -- C:\WINDOWS\system32\spool\drivers\w32x86\3\OPHALDCS.EXE -- (DCSLoader)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\VcommMgr.sys -- (VcommMgr)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\VComm.sys -- (VComm)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\lgusbmodem.sys -- (USBModem)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\lgusbdiag.sys -- (UsbDiag)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\lgusbbus.sys -- (usbbus)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev)
DRV - File not found [Kernel | Disabled | Running] -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\btcusb.sys -- (Btcsrusb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\btnetdrv.sys -- (BT)
DRV - [2010-08-18 13:51:26 | 000,237,632 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\PCTCore.sys -- (PCTCore)
DRV - [2010-07-16 14:59:54 | 000,656,320 | ---- | M] (PC Tools) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pctEFA.sys -- (pctEFA)
DRV - [2010-07-16 14:59:54 | 000,338,880 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\pctDS.sys -- (pctDS)
DRV - [2008-12-07 11:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008-07-31 19:45:42 | 000,020,616 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008-07-02 13:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008-04-13 19:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2007-10-25 12:13:44 | 004,027,456 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006-03-24 18:14:46 | 000,033,536 | ---- | M] (Advanced Card Systems Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a38usb.sys -- (ACSSCR)
DRV - [2004-08-03 23:35:04 | 000,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004-08-03 23:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2001-08-17 21:49:10 | 000,026,624 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irstusb.sys -- (STIrUsb)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-299502267-484763869-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.ask.com?o=15446&l=dis"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {eaf8a4ef-d221-45ca-9deb-d0934b45fa34}:1.3.0.3
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-10-05 10:04:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-10-05 10:04:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-11-08 10:13:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
 
[2010-09-15 09:16:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Extensions
[2010-09-15 09:16:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010-11-09 11:27:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\extensions
[2010-11-09 11:27:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-10-12 14:19:58 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009-06-02 09:20:50 | 000,000,000 | ---D | M] (OggX (powered by TIME S.A.)) -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}
[2010-10-12 14:20:20 | 000,002,565 | ---- | M] () -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\searchplugins\askcom.xml
[2009-12-22 13:24:40 | 000,001,201 | ---- | M] () -- C:\Documents and Settings\admin\Dane aplikacji\Mozilla\Firefox\Profiles\umwnss8d.default\searchplugins\winamp-search.xml
[2010-11-09 11:27:41 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-09-22 15:14:56 | 000,000,000 | ---D | M] (BlueSoleil Extension) -- C:\Program Files\Mozilla Firefox\extensions\{231D7D17-4F1B-4933-AB61-E502DB82FD11}
[2008-02-07 10:47:37 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010-11-08 14:24:37 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2009-06-25 18:23:47 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\searchme@searchme.com
[2009-01-28 19:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll
[2009-03-13 10:39:56 | 000,002,494 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\searchme.xml
 
O1 HOSTS File: ([2010-11-12 11:46:08 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Narzedzie WebPrint) - {3E558823-0ED3-41E4-8DC6-15F055ABF468} - C:\Program Files\Okidata\Web Print\wpbase.dll ()
O3 - HKU\S-1-5-21-299502267-484763869-725345543-1005\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-299502267-484763869-725345543-1005..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\admin\Menu Start\Programy\Autostart\OpenOffice.ux.pl 2.3.1.lnk = C:\Program Files\OpenOffice.ux.pl 2.3.1\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\admin\Menu Start\Programy\Autostart\RegVac.lnk = C:\Program Files\RegVac Registry Cleaner\regvac.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\OKI LPR Utility.lnk = C:\Program Files\Okidata\OKI LPR Utility\Okilpr.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-299502267-484763869-725345543-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-299502267-484763869-725345543-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-10-25 11:49:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005-10-12 08:36:14 | 000,000,059 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-11-12 15:44:45 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-12 12:57:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\Malwarebytes
[2010-11-12 12:57:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-11-12 12:57:13 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-11-12 12:57:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-11-12 12:57:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-11-12 11:34:27 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-11-12 11:26:57 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-11-12 11:26:57 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-11-12 11:26:57 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-11-12 11:26:57 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-11-12 11:26:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-11-12 11:15:09 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-11-12 11:03:15 | 000,656,320 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctEFA.sys
[2010-11-12 11:03:15 | 000,338,880 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctDS.sys
[2010-11-12 11:03:14 | 000,249,616 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys
[2010-11-12 11:03:11 | 000,237,632 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys
[2010-11-12 11:03:10 | 000,159,936 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys
[2010-11-12 11:02:51 | 000,123,712 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplfw.sys
[2010-11-12 11:02:51 | 000,087,400 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-PacketFilter.sys
[2010-11-12 11:02:51 | 000,031,960 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-DNS.sys
[2010-11-12 11:02:47 | 000,070,536 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplsg.sys
[2010-11-12 11:02:27 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Security
[2010-11-12 11:02:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2010-11-12 11:02:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\PC Tools
[2010-11-12 10:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Tools
[2010-11-08 13:54:43 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2010-10-22 11:05:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2010-10-22 11:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton
[2010-10-22 11:05:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller
[2010-10-20 11:05:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\WinPatrol
[2010-10-20 11:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\BillP Studios
[2010-10-19 10:46:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\admin\Dane aplikacji\GFC Trader
[2010-10-19 09:50:31 | 000,000,000 | ---D | C] -- C:\Program Files\GFC Markets MetaTrader
[2010-10-19 09:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\GFC Trader
[2010-10-18 12:38:22 | 000,000,000 | ---D | C] -- C:\$AVG
[2010-10-18 11:57:58 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2010-10-18 11:57:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9
[2010-10-18 11:02:23 | 000,000,000 | ---D | C] -- C:\output
[2010-10-18 10:57:48 | 000,000,000 | R--D | C] -- C:\Documents and Settings\admin\Moje dokumenty\Moje wideo
[1998-08-24 07:31:44 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-11-15 09:33:48 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{5193DD0F-FA6B-456A-BAE0-8E9435CCEA38}.job
[2010-11-15 09:14:00 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-484763869-725345543-1005UA.job
[2010-11-14 18:00:00 | 000,000,442 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2010-11-14 10:14:00 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-484763869-725345543-1005Core.job
[2010-11-12 12:57:16 | 000,000,702 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-12 11:46:08 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010-11-12 11:34:32 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010-11-12 11:20:59 | 000,002,627 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010-11-12 11:20:52 | 000,000,028 | ---- | M] () -- C:\WINDOWS\S4.INI
[2010-11-12 11:03:30 | 000,673,970 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2010-11-12 11:03:09 | 000,001,688 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Spyware Doctor.lnk
[2010-11-12 10:57:18 | 000,507,360 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\sdsetup_aff.exe
[2010-11-12 09:38:24 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-12 09:38:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-12 09:38:09 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys
[2010-11-10 14:53:58 | 000,000,904 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2010-11-09 16:51:52 | 000,000,019 | ---- | M] () -- C:\WINDOWS\Courses.INI
[2010-11-09 15:58:31 | 000,159,227 | ---- | M] () -- C:\WEEKEND_MAJWY.jpg
[2010-11-09 10:51:09 | 000,507,531 | ---- | M] () -- C:\riviera.jpg
[2010-11-08 15:20:44 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-08 14:49:35 | 000,522,052 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-08 14:49:35 | 000,462,760 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-08 14:49:35 | 000,098,332 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-08 14:49:35 | 000,080,032 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-08 14:12:00 | 000,001,428 | ---- | M] () -- C:\WINDOWS\unins000.dat
[2010-11-08 01:20:24 | 000,089,088 | ---- | M] () -- C:\WINDOWS\MBR.exe
[2010-10-28 08:46:43 | 000,048,656 | ---- | M] () -- C:\pedzaca_wieza.jpg
[2010-10-19 09:50:37 | 000,001,600 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GFC Markets MetaTrader.lnk
[2010-10-19 09:45:02 | 000,001,579 | ---- | M] () -- C:\Documents and Settings\admin\Pulpit\GFC Trader.lnk
[2010-10-18 13:39:06 | 000,022,528 | -H-- | M] () -- C:\photothumb.db
[2010-10-18 11:54:33 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-10-18 11:52:02 | 000,000,657 | ---- | M] () -- C:\WINDOWS\unins001.dat
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-11-12 12:57:16 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-11-12 11:34:32 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-11-12 11:34:30 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2010-11-12 11:26:57 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-11-12 11:26:57 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-11-12 11:26:57 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-11-12 11:26:57 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-11-12 11:26:57 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-11-12 11:03:18 | 000,673,970 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2010-11-12 11:03:09 | 000,001,688 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Spyware Doctor.lnk
[2010-11-12 10:57:23 | 000,507,360 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\sdsetup_aff.exe
[2010-11-09 15:58:29 | 000,159,227 | ---- | C] () -- C:\WEEKEND_MAJWY.jpg
[2010-11-09 10:51:07 | 000,507,531 | ---- | C] () -- C:\riviera.jpg
[2010-11-08 11:40:31 | 1073,270,784 | -HS- | C] () -- C:\hiberfil.sys
[2010-10-28 08:46:32 | 000,048,656 | ---- | C] () -- C:\pedzaca_wieza.jpg
[2010-10-19 14:27:53 | 000,001,600 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GFC Markets MetaTrader.lnk
[2010-10-19 09:45:02 | 000,001,579 | ---- | C] () -- C:\Documents and Settings\admin\Pulpit\GFC Trader.lnk
[2010-10-18 11:52:01 | 000,000,657 | ---- | C] () -- C:\WINDOWS\unins001.dat
[2010-10-18 11:51:59 | 000,001,428 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2010-10-15 09:37:10 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010-09-30 08:47:07 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Printout.012.INI
[2010-03-30 12:17:30 | 000,001,401 | ---- | C] () -- C:\WINDOWS\aopr.ini
[2010-03-26 09:44:08 | 000,000,137 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-03-24 11:49:29 | 000,000,139 | ---- | C] () -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-03-24 11:49:05 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-02-01 14:56:54 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Printout.009.INI
[2009-12-08 11:44:03 | 000,000,019 | ---- | C] () -- C:\WINDOWS\Courses.INI
[2009-12-07 09:55:25 | 000,000,028 | ---- | C] () -- C:\WINDOWS\S4.INI
[2009-12-01 12:14:54 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Printout.008.INI
[2009-08-31 07:50:04 | 000,000,081 | ---- | C] () -- C:\WINDOWS\BsMobileModel.ini
[2009-07-29 12:19:01 | 000,000,066 | ---- | C] () -- C:\WINDOWS\JcAdmin32.ini
[2009-07-21 12:22:02 | 000,000,356 | ---- | C] () -- C:\WINDOWS\OPHJ.INI
[2009-06-17 13:02:46 | 000,030,088 | ---- | C] () -- C:\WINDOWS\System32\drivers\btnetBus.sys
[2009-04-23 12:32:05 | 000,002,984 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\KGyGaAvL.sys
[2009-04-23 12:32:05 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\AAD89CBDA8.sys
[2009-04-03 14:23:27 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2009-04-03 14:23:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2009-04-03 14:23:27 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
[2009-03-09 10:07:57 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Printout.007.INI
[2008-11-12 16:42:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CorelDrw.INI
[2008-10-09 11:30:16 | 000,062,464 | ---- | C] () -- C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-09-23 10:52:47 | 000,000,104 | RHS- | C] () -- C:\WINDOWS\System32\A8BD9CD8AA.sys
[2008-09-23 10:23:12 | 000,004,912 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2008-06-07 15:16:22 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-05-23 13:46:51 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Printout.006.INI
[2008-04-23 13:17:31 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Printout.005.INI
[2008-04-09 14:28:08 | 000,003,619 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008-04-08 14:36:14 | 000,000,319 | ---- | C] () -- C:\WINDOWS\PSADMIN.INI
[2008-03-28 13:52:11 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Printout.004.INI
[2008-03-28 10:24:28 | 000,088,064 | ---- | C] () -- C:\WINDOWS\System32\Bmp2Jpeg.dll
[2008-02-19 14:48:55 | 000,000,904 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2008-02-19 14:38:22 | 000,002,627 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2008-02-18 10:26:34 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Printout.003.INI
[2008-02-06 15:19:48 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2008-02-06 12:16:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008-02-04 18:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2007-11-12 13:11:47 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Printout.002.INI
[2007-10-30 12:30:37 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-10-30 11:22:46 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\sh33w32.dll
[2007-10-30 11:05:23 | 000,000,174 | ---- | C] () -- C:\WINDOWS\OPHA.INI
[2007-10-25 13:39:36 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007-10-25 12:20:11 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2007-10-25 12:19:58 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006-10-27 15:26:56 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2005-08-09 19:10:54 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\usbr38.dll
[2004-09-29 10:41:10 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-11-12 10:58:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\BitTorrent
[2010-10-01 11:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Canon
[2009-02-16 13:32:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Cartall
[2008-02-06 14:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\FMA
[2008-01-22 09:58:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Gadu-Gadu
[2010-10-19 10:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\GFC Trader
[2009-01-13 12:58:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\LG Electronics
[2010-07-08 12:29:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Nokia
[2010-11-12 10:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\OpenOffice.ux.pl2
[2008-07-12 12:58:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\PC Suite
[2008-04-08 14:13:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\PCToolsFirewallPlus
[2008-04-08 14:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\PCToolsSpamMonitorPlus
[2008-02-08 15:40:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Programer
[2008-02-06 12:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Teleca
[2010-09-15 09:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\Thunderbird
[2010-10-20 11:06:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\WinPatrol
[2009-04-23 10:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\admin\Dane aplikacji\XnView
[2009-01-20 10:12:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Altova
[2010-10-18 11:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-10-22 11:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9
[2010-07-20 11:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Cached Installations
[2010-01-20 13:06:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJEGV
[2009-08-06 15:31:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJScan
[2009-08-24 11:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2010-07-20 11:01:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
[2008-07-12 12:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-11-12 15:54:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2008-07-24 14:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Voyager.com
[2008-07-17 11:31:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\PC Suite
[2009-07-29 14:03:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Spyware Terminator
[2008-03-21 15:09:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Teleca
[2010-10-08 16:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Thunderbird
[2010-11-14 18:00:00 | 000,000,442 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Registration.job
[2010-08-27 03:34:05 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Update Version2.job
[2010-11-15 09:33:48 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{5193DD0F-FA6B-456A-BAE0-8E9435CCEA38}.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 169 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CEB1746D
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:430C6D84
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DBBD301A

< End of report >