??OTL logfile created on: 2012-09-02 11:32:06 - Run 2 OTL by OldTimer - Version 3.2.59.1 Folder = C:\Documents and Settings\Mama\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 767,49 Mb Total Physical Memory | 557,18 Mb Available Physical Memory | 72,60% Memory free 2,21 Gb Paging File | 1,98 Gb Available in Paging File | 89,88% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 20,00 Gb Total Space | 2,78 Gb Free Space | 13,91% Space Free | Partition Type: NTFS Drive D: | 97,00 Gb Total Space | 86,84 Gb Free Space | 89,52% Space Free | Partition Type: NTFS Drive F: | 149,05 Gb Total Space | 69,24 Gb Free Space | 46,45% Space Free | Partition Type: NTFS Drive H: | 32,04 Gb Total Space | 25,87 Gb Free Space | 80,75% Space Free | Partition Type: NTFS Computer Name: STEPHEN | User Name: Mama | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-09-02 11:31:55 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe PRC - [2012-07-05 22:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe PRC - [2012-06-06 21:33:42 | 001,564,872 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe PRC - [2012-04-16 12:01:20 | 000,784,792 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe PRC - [2008-04-14 22:51:18 | 001,553,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-04-16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-01-08 15:41:12 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll MOD - [2009-02-27 21:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SIODRV.dll -- (mfesmfk) SRV - [2012-08-26 21:04:25 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-07-05 22:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-06-16 09:06:21 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-04-16 12:01:20 | 000,784,792 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater) SRV - [2011-03-16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\usbaapl.sys -- (USBAAPL) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\snpstd3.sys -- (SNPSTD3) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\Mama\USTAWI~1\Temp\mbr.sys -- (mbr) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\HPZipr12.sys -- (HPZipr12) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\cmuda.sys -- (cmuda) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Running] -- C:\ComboFix\catchme.sys -- (catchme) DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs) DRV - [2011-11-14 01:54:20 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2011-11-14 01:54:20 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2010-03-01 12:43:16 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039bus.sys -- (s1039bus) DRV - [2010-03-01 12:43:12 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdm.sys -- (s1039mdm) DRV - [2010-03-01 12:43:12 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mgmt.sys -- (s1039mgmt) DRV - [2010-03-01 12:43:12 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039obex.sys -- (s1039obex) DRV - [2010-03-01 12:43:12 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdfl.sys -- (s1039mdfl) DRV - [2010-03-01 12:43:10 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039unic.sys -- (s1039unic) DRV - [2010-03-01 12:43:10 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039nd5.sys -- (s1039nd5) DRV - [2009-09-23 10:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-07-08 23:35:09 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2009-03-27 14:23:12 | 000,023,064 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER) DRV - [2009-02-26 00:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2008-09-24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) DRV - [2008-04-14 21:41:06 | 000,065,280 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\serial.sys -- (Serial) DRV - [2008-04-14 02:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-14 00:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) DRV - [2005-07-07 17:14:30 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17) DRV - [2005-01-10 19:15:30 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2005-01-10 19:15:24 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k) DRV - [2003-07-02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1) DRV - [2003-02-26 17:04:00 | 000,370,048 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\viaudios.sys -- (VIAudio) DRV - [2001-08-18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) DRV - [2001-08-17 21:19:20 | 000,096,256 | ---- | M] (Copyright (C) Creative Technology Ltd. 1994-2001) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctlsb16.sys -- (ctlsb16) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=2&systemid=410&sr=0&q={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={6FF0B581-506F-4AB3-83F8-80A4FFC3190E}&mid=b0366470fb5a47d08952d1a90a9384e3-06ce4fc639803a2e3563922518183d8e94088cb9&lang=en&ds=qw011&pr=sa&d=2012-07-03 21:44:39&v=11.1.0.12&sap=hp IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) IE - HKCU\..\SearchScopes,DefaultScope = {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=FV&apn_dtid=YYYYYYYYPL&apn_uid=b312e44d-2107-4f83-ba09-153dac3895a0&apn_sauid=BADBA569-1A07-4AA1-B356-4DD69F17D583 IE - HKCU\..\SearchScopes\{2E766A69-8936-4759-9A4E-2873EBA3B9D7}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms} IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={6FF0B581-506F-4AB3-83F8-80A4FFC3190E}&mid=b0366470fb5a47d08952d1a90a9384e3-06ce4fc639803a2e3563922518183d8e94088cb9&lang=en&ds=qw011&pr=sa&d=2012-07-03 21:44:39&v=11.1.0.12&sap=dsp&q={searchTerms} IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://dts.search-results.com/sr?src=ieb&appid=2&systemid=410&sr=0&q={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=FF&o=14594&locale=en_US&apn_uid=b312e44d-2107-4f83-ba09-153dac3895a0&apn_ptnrs=FV&apn_sauid=BADBA569-1A07-4AA1-B356-4DD69F17D583&apn_dtid=YYYYYYYYPL&&q=" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-01 11:43:23 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-17 17:44:24 | 000,000,000 | ---D | M] [2012-02-28 02:33:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Extensions [2012-07-08 08:56:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions [2012-02-28 02:33:52 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7} [2012-05-09 20:48:36 | 000,000,000 | ---D | M] (Page Speed) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97} [2012-07-08 08:57:08 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions\toolbar@ask.com [2012-07-08 08:57:08 | 000,002,322 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\searchplugins\askcom.xml [2012-02-28 02:33:37 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\searchplugins\Search_Results.xml [2012-05-17 08:16:03 | 001,335,949 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\MAMA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\LPF1LHUP.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI [2011-11-17 02:01:18 | 000,040,209 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\MAMA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\LPF1LHUP.DEFAULT\EXTENSIONS\INQUIRY@SHARELOVESTORY.COM.XPI [2012-06-28 17:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-07-03 21:44:34 | 000,003,750 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2012-02-28 02:33:37 | 000,002,515 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.ponawijaj.pl/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: http://www.ponawijaj.pl/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\21.0.1180.83\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\21.0.1180.83\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll CHR - Extension: Ask Toolbar = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaapoldfpilohhfkhihnhdckpackghi\7.15.4.24106_0\ CHR - Extension: YouTube = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Alexa Traffic Rank = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel\3.1_0\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: AdBlock = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.42_0\ CHR - Extension: Resolution Test = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\idhfcdbheobinplaamokffboaccidbal\2.0_0\ CHR - Extension: Savings-Slider = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk\2.1_0\ CHR - Extension: Sprawdzanie poczty Google = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\3.2_0\ CHR - Extension: Ti\u00EBsto = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh\2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-09-02 10:47:42 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software) O4 - HKCU..\Run: [screenshooter] C:\Program Files\ScreenShooter\screenshooter.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50875BFE-063E-4D85-8B0F-A57CB91BBEB0}: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bie|ca strona gB?wna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-05-08 22:19:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012-07-08 23:26:00 | 000,000,053 | ---- | M] () - C:\autorun.inf.vir -- [ NTFS ] O32 - AutoRun File - [2012-07-08 23:26:00 | 000,000,053 | ---- | M] () - D:\autorun.inf.vir -- [ NTFS ] O32 - AutoRun File - [2012-07-08 23:26:00 | 000,000,053 | ---- | M] () - F:\autorun.inf.vir -- [ NTFS ] O32 - AutoRun File - [2012-07-08 23:26:00 | 000,000,053 | ---- | M] () - H:\autorun.inf.vir -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk /p \??\C:) O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-09-02 11:31:57 | 000,598,528 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe [2012-09-02 11:29:51 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-09-02 10:48:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2012-09-02 10:22:51 | 000,000,000 | RHSD | C] -- C:\cmdcons [2012-09-02 10:14:42 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012-09-02 10:14:42 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012-09-02 10:14:42 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012-09-02 10:14:42 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012-09-02 10:10:49 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-09-02 10:10:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje wideo [2012-09-02 10:10:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moja muzyka [2012-09-02 10:10:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012-09-02 10:03:19 | 004,742,651 | R--- | C] (Swearware) -- C:\Documents and Settings\Mama\Pulpit\ComboFix.exe [2012-09-01 11:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Simply Super Software [2012-09-01 11:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Simply Super Software [2012-09-01 11:47:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Trojan Remover [2012-09-01 11:47:37 | 000,605,968 | ---- | C] (Igor Pavlov) -- C:\WINDOWS\System32\ztv7z.dll [2012-09-01 11:47:37 | 000,077,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ztvcabinet.dll [2012-09-01 11:47:35 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover [2012-09-01 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Simply Super Software [2012-09-01 11:42:36 | 018,554,720 | ---- | C] (Mozilla) -- C:\Documents and Settings\Mama\Pulpit\Firefox Setup 15.0.exe [2012-08-31 19:04:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Sony_Ericsson_W20_Zylo_service_manual [2012-08-27 16:04:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\City Interactive [2012-08-27 07:38:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\setunisko [2012-08-27 06:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Menu Start\Programy\Return to Castle Wolfenstein [2012-08-26 10:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Downloads [2012-08-24 21:23:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SEO Studio [2012-08-24 21:23:01 | 000,000,000 | ---D | C] -- C:\Program Files\SEO Studio [2012-08-24 21:22:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2012-08-24 17:40:23 | 001,645,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll [2012-08-24 17:40:19 | 000,000,000 | ---D | C] -- C:\Program Files\Axence [2012-08-17 17:44:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Menu Start\Programy\Winamp Detector Plug-in [2012-08-17 17:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2012-08-17 17:44:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp [2012-08-17 17:43:56 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2012-08-17 17:43:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Winamp [2012-08-17 13:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Sign in through Google 1.0.5.1 For IPB 3.3.x [2012-08-15 19:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Max Payne Savegames [2012-08-15 18:29:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Max Payne [2012-08-15 18:19:17 | 009,826,504 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2012-08-15 14:19:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{BC13C66E-D01E-4443-A1D1-35EEDF3A964A} [2012-08-15 14:18:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Native Instruments [2012-08-15 14:18:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2} [2012-08-15 14:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\Native Instruments [2012-08-15 14:18:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Native Instruments [2012-08-15 14:18:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Native Instruments [2012-08-09 10:07:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\ModPackBySiiJei [2012-08-09 10:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\MODIFICATIONPACK33x [2012-08-05 21:25:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Nowy folder [2012-08-04 01:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\forumcore [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-09-02 11:42:04 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2012-09-02 11:31:55 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe [2012-09-02 11:19:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-09-02 10:53:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1708537768-842925246-1004UA.job [2012-09-02 10:47:42 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2012-09-02 10:47:36 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job [2012-09-02 10:47:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-09-02 10:47:03 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys [2012-09-02 10:22:58 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2012-09-02 10:03:58 | 004,742,651 | R--- | M] (Swearware) -- C:\Documents and Settings\Mama\Pulpit\ComboFix.exe [2012-09-02 08:53:02 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1708537768-842925246-1004Core.job [2012-09-02 07:46:21 | 000,020,294 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Clipboard02.jpg [2012-09-01 11:47:39 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Trojan Remover.lnk [2012-09-01 11:43:01 | 018,554,720 | ---- | M] (Mozilla) -- C:\Documents and Settings\Mama\Pulpit\Firefox Setup 15.0.exe [2012-08-31 11:36:23 | 000,558,339 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\k,NTg2NDE0NDQsNDUxMTQzNTE=,f,miley_cyrus_i_smieszna_mina_.jpg [2012-08-31 11:36:23 | 000,037,679 | ---- | M] () -- C:\Documents and Settings\Mama\.recently-used.xbel [2012-08-31 11:14:40 | 000,198,656 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-31 07:19:10 | 000,138,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2012-08-31 07:19:10 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\PnkBstrK.sys [2012-08-31 07:18:50 | 000,189,248 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0 [2012-08-31 07:08:55 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-08-29 13:01:25 | 003,872,705 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Tony Igy - Endorphine(new!!!).mp3 [2012-08-29 08:38:22 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-08-28 22:41:41 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\o1vbxn9i.exe [2012-08-28 19:10:54 | 055,490,351 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\gitt.mp3 [2012-08-28 19:05:36 | 000,000,043 | -H-- | M] () -- C:\Documents and Settings\Mama\Moje dokumenty\POnawijaj(1).mp3.jpg [2012-08-27 19:48:18 | 000,005,600 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\emeryt.png [2012-08-27 16:35:08 | 012,834,247 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Code Black & Toneshifterz - GET YOUR HANDS UP & PARTY DOWN (Ft. S-Dee) (Mash-up).mp3 [2012-08-27 16:04:48 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Sniper - Art of Victory.lnk [2012-08-27 14:12:03 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Single Player).lnk [2012-08-27 09:07:42 | 071,992,006 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\gitst.mp3 [2012-08-27 06:25:36 | 000,000,810 | ---- | M] () -- C:\WINDOWS\Rtcw.INI [2012-08-27 06:25:36 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Multiplayer).lnk [2012-08-26 21:04:25 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-08-26 21:04:25 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-08-24 18:14:46 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-08-23 17:30:39 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Silent Hill 2 - Directors Cut.lnk [2012-08-22 11:54:54 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Google Chrome.lnk [2012-08-22 11:25:08 | 000,284,978 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\julian_2.jpg [2012-08-22 11:24:54 | 000,316,343 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\julian.jpg [2012-08-17 20:04:21 | 000,023,213 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\4_baner.png [2012-08-17 20:02:49 | 000,006,015 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\180px-Shrek_donkey.jpg [2012-08-17 19:03:27 | 081,136,535 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\set dBugi.mp3 [2012-08-17 17:44:24 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2012-08-17 17:43:15 | 002,994,238 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\K10 Official Video 2009.mp3 [2012-08-17 14:40:35 | 000,000,671 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Max Payne.lnk [2012-08-15 18:19:18 | 009,826,504 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2012-08-15 14:19:45 | 000,000,757 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Traktor.lnk [2012-08-13 09:26:45 | 005,276,348 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\PERFECT go[c. PEZET, FOKUS & PEJA - Kochaj mnie (Du-Rzy remix).mp3 [2012-08-13 09:20:17 | 000,003,928 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\svip.png [2012-08-13 09:13:02 | 000,003,427 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\vip.png [2012-08-13 09:11:33 | 000,004,230 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\mod.png [2012-08-09 09:05:05 | 004,123,617 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\bezimienni-walka.mp3 [2012-08-05 21:45:41 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Animation Shop 3.lnk [2012-08-04 18:22:34 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-09-02 10:22:58 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2012-09-02 10:22:53 | 000,262,400 | RHS- | C] () -- C:\cmldr [2012-09-02 10:14:42 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2012-09-02 10:14:42 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012-09-02 10:14:42 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012-09-02 10:14:42 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012-09-02 10:14:42 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012-09-02 07:46:21 | 000,020,294 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Clipboard02.jpg [2012-09-01 11:47:39 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Trojan Remover.lnk [2012-09-01 11:47:37 | 000,185,616 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar39.dll [2012-09-01 11:47:37 | 000,169,744 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll [2012-09-01 11:47:37 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll [2012-09-01 11:47:37 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll [2012-09-01 11:47:37 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll [2012-08-31 11:36:23 | 000,037,679 | ---- | C] () -- C:\Documents and Settings\Mama\.recently-used.xbel [2012-08-31 11:32:02 | 000,558,339 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\k,NTg2NDE0NDQsNDUxMTQzNTE=,f,miley_cyrus_i_smieszna_mina_.jpg [2012-08-31 07:19:10 | 000,138,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2012-08-31 07:19:10 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\PnkBstrK.sys [2012-08-31 07:18:50 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2012-08-31 07:18:50 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.ex0 [2012-08-31 07:18:47 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2012-08-31 07:18:46 | 000,837,192 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe [2012-08-29 13:01:17 | 003,872,705 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Tony Igy - Endorphine(new!!!).mp3 [2012-08-28 22:41:38 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\o1vbxn9i.exe [2012-08-28 19:05:36 | 000,000,043 | -H-- | C] () -- C:\Documents and Settings\Mama\Moje dokumenty\POnawijaj(1).mp3.jpg [2012-08-28 18:06:57 | 055,490,351 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\gitt.mp3 [2012-08-27 19:48:17 | 000,005,600 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\emeryt.png [2012-08-27 16:34:45 | 012,834,247 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Code Black & Toneshifterz - GET YOUR HANDS UP & PARTY DOWN (Ft. S-Dee) (Mash-up).mp3 [2012-08-27 16:04:47 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Sniper - Art of Victory.lnk [2012-08-27 08:17:42 | 071,992,006 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\gitst.mp3 [2012-08-27 06:25:36 | 000,000,652 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Single Player).lnk [2012-08-27 06:25:36 | 000,000,618 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Multiplayer).lnk [2012-08-27 06:19:13 | 000,000,810 | ---- | C] () -- C:\WINDOWS\Rtcw.INI [2012-08-23 17:30:39 | 000,000,759 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Silent Hill 2 - Directors Cut.lnk [2012-08-22 09:15:45 | 000,284,978 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\julian_2.jpg [2012-08-22 09:15:10 | 000,316,343 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\julian.jpg [2012-08-17 20:02:42 | 000,006,015 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\180px-Shrek_donkey.jpg [2012-08-17 18:43:13 | 000,023,213 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\4_baner.png [2012-08-17 17:59:27 | 081,136,535 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\set dBugi.mp3 [2012-08-17 17:44:24 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2012-08-17 17:38:11 | 002,994,238 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\K10 Official Video 2009.mp3 [2012-08-15 18:30:33 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Max Payne.lnk [2012-08-15 14:19:45 | 000,000,757 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Traktor.lnk [2012-08-13 09:26:37 | 005,276,348 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\PERFECT go[c. PEZET, FOKUS & PEJA - Kochaj mnie (Du-Rzy remix).mp3 [2012-08-13 09:20:17 | 000,003,928 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\svip.png [2012-08-13 09:13:02 | 000,003,427 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\vip.png [2012-08-13 09:11:33 | 000,004,230 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\mod.png [2012-08-09 09:04:50 | 004,123,617 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\bezimienni-walka.mp3 [2012-06-28 18:31:50 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2012-06-26 13:25:29 | 000,094,208 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\chrtmp [2012-06-03 13:41:58 | 000,078,085 | ---- | C] () -- C:\WINDOWS\System32\pattern.dat [2012-06-03 13:41:56 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll [2012-06-03 13:41:56 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\animation2.dll [2012-06-03 13:40:44 | 000,280,576 | ---- | C] () -- C:\WINDOWS\System32\pxd_kom.dll [2012-06-03 13:40:32 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fader.dll [2012-06-03 13:40:31 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\drumpad.dll [2012-06-03 13:40:30 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\BASSDEC.dll [2012-04-21 10:21:57 | 000,122,884 | ---- | C] () -- C:\WINDOWS\UnGins.exe [2012-02-28 02:23:37 | 000,000,612 | ---- | C] () -- C:\WINDOWS\mp3wavcon.ini [2012-02-28 02:18:35 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySmp3con.dat [2012-01-30 04:09:03 | 001,097,960 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2012-01-01 04:34:41 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\Mama\default.pls [2011-11-24 21:52:17 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-11-21 16:20:16 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2011-11-17 19:43:38 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-11-16 23:54:13 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat [2011-11-16 08:43:36 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\deluidrv.exe [2011-11-16 08:43:36 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\delentry.exe [2011-11-16 08:43:36 | 000,000,956 | ---- | C] () -- C:\WINDOWS\System32\iconcfg.ini [2011-11-15 23:15:57 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2011-11-15 23:15:28 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2011-11-15 22:57:03 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI [2011-11-15 22:57:03 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI [2011-11-15 22:57:00 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe [2011-11-15 22:57:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll [2011-11-15 22:57:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini [2011-11-15 22:47:06 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll [2011-11-15 00:13:52 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-11-14 13:07:58 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll [2011-11-11 09:40:20 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-11-11 09:40:17 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-11-11 09:40:17 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-11-11 09:40:16 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-09-12 15:53:06 | 000,000,493 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2010-04-22 19:37:23 | 000,022,812 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\m popek.dpit [2010-04-22 19:21:45 | 000,023,238 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\zj sadowscy.dpit [2010-04-11 18:19:35 | 000,038,946 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\gg popek.dpit [2010-02-24 21:42:28 | 000,038,946 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\Urząd Skarbowy 58-306 WaBłbrzych, ul. Uczniowska 21__2010-02-24 20-42-19.dpit [2009-06-01 21:52:32 | 000,198,656 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:47F1DFAC < End of report >