OTL logfile created on: 2012-09-02 19:58:28 - Run 3
OTL by OldTimer - Version 3.2.59.1     Folder = C:\Documents and Settings\Mama\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
767,49 Mb Total Physical Memory | 471,11 Mb Available Physical Memory | 61,38% Memory free
2,21 Gb Paging File | 1,98 Gb Available in Paging File | 89,71% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 20,00 Gb Total Space | 3,83 Gb Free Space | 19,13% Space Free | Partition Type: NTFS
Drive D: | 97,00 Gb Total Space | 86,82 Gb Free Space | 89,50% Space Free | Partition Type: NTFS
Drive F: | 149,05 Gb Total Space | 69,24 Gb Free Space | 46,45% Space Free | Partition Type: NTFS
Drive H: | 32,04 Gb Total Space | 25,87 Gb Free Space | 80,75% Space Free | Partition Type: NTFS
 
Computer Name: STEPHEN | User Name: Mama | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-09-02 11:31:55 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
PRC - [2012-08-27 16:55:22 | 003,165,456 | ---- | M] (Simply Super Software) -- C:\Program Files\Trojan Remover\Trjscan.exe
PRC - [2012-07-05 22:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
PRC - [2010-09-03 14:52:48 | 000,606,208 | ---- | M] () -- C:\Program Files\ScreenShooter\screenshooter.exe
PRC - [2008-04-14 22:51:18 | 001,553,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-04-16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-01-08 15:41:12 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2010-09-03 14:52:48 | 000,606,208 | ---- | M] () -- C:\Program Files\ScreenShooter\screenshooter.exe
MOD - [2010-09-03 14:50:48 | 002,537,472 | ---- | M] () -- C:\Program Files\ScreenShooter\QtCore4.dll
MOD - [2010-08-31 15:36:06 | 000,287,232 | ---- | M] () -- C:\Program Files\ScreenShooter\imageformats\qjpeg4.dll
MOD - [2010-08-31 11:49:22 | 009,812,992 | ---- | M] () -- C:\Program Files\ScreenShooter\QtGui4.dll
MOD - [2010-08-31 11:15:32 | 001,140,224 | ---- | M] () -- C:\Program Files\ScreenShooter\QtNetwork4.dll
MOD - [2009-06-22 20:42:42 | 000,043,008 | ---- | M] () -- C:\Program Files\ScreenShooter\libgcc_s_dw2-1.dll
MOD - [2009-01-10 12:32:40 | 000,011,362 | ---- | M] () -- C:\Program Files\ScreenShooter\mingwm10.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2012-08-26 21:04:25 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-07-05 22:07:00 | 000,161,704 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2011-03-16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2011-11-14 01:54:20 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011-11-14 01:54:20 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2010-03-01 12:43:16 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039bus.sys -- (s1039bus)
DRV - [2010-03-01 12:43:12 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2010-03-01 12:43:12 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV - [2010-03-01 12:43:12 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2010-03-01 12:43:12 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2010-03-01 12:43:10 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039unic.sys -- (s1039unic)
DRV - [2010-03-01 12:43:10 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039nd5.sys -- (s1039nd5)
DRV - [2009-09-23 10:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-07-08 23:35:09 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2009-03-27 14:23:12 | 000,023,064 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER)
DRV - [2009-02-26 00:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-09-24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM)
DRV - [2008-04-14 21:41:06 | 000,065,280 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\serial.sys -- (Serial)
DRV - [2008-04-14 02:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008-04-14 00:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2005-07-07 17:14:30 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2005-01-10 19:15:30 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005-01-10 19:15:24 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2003-07-02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1)
DRV - [2003-02-26 17:04:00 | 000,370,048 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\viaudios.sys -- (VIAudio)
DRV - [2001-08-18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001-08-17 21:19:20 | 000,096,256 | ---- | M] (Copyright (C) Creative Technology Ltd. 1994-2001) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctlsb16.sys -- (ctlsb16)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{2E766A69-8936-4759-9A4E-2873EBA3B9D7}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00:  File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-01 11:43:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-17 17:44:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: d:\Program Files\Mozilla Firefox\components [2012-09-02 18:49:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: d:\Program Files\Mozilla Firefox\plugins
 
[2012-02-28 02:33:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Extensions
[2012-09-02 19:54:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions
[2012-09-02 19:45:29 | 000,000,000 | ---D | M] (Page Speed) -- C:\Documents and Settings\Mama\Dane aplikacji\Mozilla\Firefox\Profiles\lpf1lhup.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
[2011-11-17 02:01:18 | 000,040,209 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\MAMA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\LPF1LHUP.DEFAULT\EXTENSIONS\INQUIRY@SHARELOVESTORY.COM.XPI
[2012-09-02 18:52:42 | 000,195,452 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\MAMA\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\LPF1LHUP.DEFAULT\EXTENSIONS\TOOLBAR-TBPLATFORM@ALEXA.COM.XPI
[2012-06-28 17:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaapoldfpilohhfkhihnhdckpackghi\7.15.4.24106_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel\3.1_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.42_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\idhfcdbheobinplaamokffboaccidbal\2.0_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk\2.1_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\3.2_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh\2_0\
CHR - Extension: No name found = C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2012-09-02 10:47:42 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKCU..\Run: [screenshooter] C:\Program Files\ScreenShooter\screenshooter.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{50875BFE-063E-4D85-8B0F-A57CB91BBEB0}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bie��ca strona g��wna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-05-08 22:19:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /p \??\C:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-09-02 19:35:23 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-09-02 11:31:57 | 000,598,528 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
[2012-09-02 11:29:51 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012-09-02 10:48:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012-09-02 10:22:51 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012-09-02 10:14:42 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012-09-02 10:14:42 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012-09-02 10:14:42 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012-09-02 10:14:42 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012-09-02 10:10:49 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012-09-02 10:10:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moje wideo
[2012-09-02 10:10:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Moja muzyka
[2012-09-02 10:10:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2012-09-02 10:03:19 | 004,742,651 | R--- | C] (Swearware) -- C:\Documents and Settings\Mama\Pulpit\ComboFix.exe
[2012-09-01 11:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Simply Super Software
[2012-09-01 11:47:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Dane aplikacji\Simply Super Software
[2012-09-01 11:47:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Trojan Remover
[2012-09-01 11:47:37 | 000,605,968 | ---- | C] (Igor Pavlov) -- C:\WINDOWS\System32\ztv7z.dll
[2012-09-01 11:47:37 | 000,077,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ztvcabinet.dll
[2012-09-01 11:47:35 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2012-09-01 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Simply Super Software
[2012-09-01 11:42:36 | 018,554,720 | ---- | C] (Mozilla) -- C:\Documents and Settings\Mama\Pulpit\Firefox Setup 15.0.exe
[2012-08-31 19:04:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Sony_Ericsson_W20_Zylo_service_manual
[2012-08-27 16:04:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\City Interactive
[2012-08-27 07:38:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\setunisko
[2012-08-27 06:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Menu Start\Programy\Return to Castle Wolfenstein
[2012-08-26 10:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Downloads
[2012-08-24 21:23:01 | 000,000,000 | ---D | C] -- C:\Program Files\SEO Studio
[2012-08-24 21:22:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2012-08-24 17:40:23 | 001,645,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll
[2012-08-24 17:40:19 | 000,000,000 | ---D | C] -- C:\Program Files\Axence
[2012-08-17 17:43:56 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2012-08-17 13:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Sign in through Google 1.0.5.1 For IPB 3.3.x
[2012-08-15 19:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Moje dokumenty\Max Payne Savegames
[2012-08-15 18:29:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Max Payne
[2012-08-15 18:19:17 | 009,826,504 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2012-08-09 10:07:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\ModPackBySiiJei
[2012-08-09 10:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\MODIFICATIONPACK33x
[2012-08-05 21:25:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\Nowy folder
[2012-08-04 01:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mama\Pulpit\forumcore
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-09-02 19:57:48 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2012-09-02 19:57:32 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-09-02 19:57:25 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2012-09-02 19:53:02 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1708537768-842925246-1004UA.job
[2012-09-02 19:19:01 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-09-02 19:04:21 | 000,511,265 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\adwcleaner.exe
[2012-09-02 18:49:29 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-09-02 18:32:29 | 000,037,037 | ---- | M] () -- C:\Documents and Settings\Mama\.recently-used.xbel
[2012-09-02 17:07:22 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-09-02 17:06:22 | 000,200,192 | ---- | M] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-09-02 14:12:13 | 000,010,144 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Clipboard02.jpg
[2012-09-02 11:31:55 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mama\Pulpit\OTL.exe
[2012-09-02 10:47:42 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012-09-02 10:22:58 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012-09-02 10:03:58 | 004,742,651 | R--- | M] (Swearware) -- C:\Documents and Settings\Mama\Pulpit\ComboFix.exe
[2012-09-02 08:53:02 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1708537768-842925246-1004Core.job
[2012-09-01 11:47:39 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Trojan Remover.lnk
[2012-09-01 11:43:01 | 018,554,720 | ---- | M] (Mozilla) -- C:\Documents and Settings\Mama\Pulpit\Firefox Setup 15.0.exe
[2012-08-31 11:36:23 | 000,558,339 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\k,NTg2NDE0NDQsNDUxMTQzNTE=,f,miley_cyrus_i_smieszna_mina_.jpg
[2012-08-31 07:19:10 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Mama\Dane aplikacji\PnkBstrK.sys
[2012-08-31 07:18:50 | 000,189,248 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2012-08-31 07:08:55 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-08-29 13:01:25 | 003,872,705 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Tony Igy - Endorphine(new!!!).mp3
[2012-08-29 08:38:22 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-08-28 22:41:41 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\o1vbxn9i.exe
[2012-08-28 19:10:54 | 055,490,351 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\gitt.mp3
[2012-08-28 19:05:36 | 000,000,043 | -H-- | M] () -- C:\Documents and Settings\Mama\Moje dokumenty\POnawijaj(1).mp3.jpg
[2012-08-27 19:48:18 | 000,005,600 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\emeryt.png
[2012-08-27 16:35:08 | 012,834,247 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Code Black & Toneshifterz - GET YOUR HANDS UP & PARTY DOWN (Ft. S-Dee) (Mash-up).mp3
[2012-08-27 16:04:48 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Sniper - Art of Victory.lnk
[2012-08-27 14:12:03 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Single Player).lnk
[2012-08-27 09:07:42 | 071,992,006 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\gitst.mp3
[2012-08-27 06:25:36 | 000,000,810 | ---- | M] () -- C:\WINDOWS\Rtcw.INI
[2012-08-27 06:25:36 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Multiplayer).lnk
[2012-08-26 21:04:25 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-08-26 21:04:25 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-08-23 17:30:39 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Silent Hill 2 - Directors Cut.lnk
[2012-08-22 11:54:54 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\Google Chrome.lnk
[2012-08-22 11:25:08 | 000,284,978 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\julian_2.jpg
[2012-08-22 11:24:54 | 000,316,343 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\julian.jpg
[2012-08-17 20:04:21 | 000,023,213 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\4_baner.png
[2012-08-17 20:02:49 | 000,006,015 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\180px-Shrek_donkey.jpg
[2012-08-17 19:03:27 | 081,136,535 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\set d�ugi.mp3
[2012-08-17 17:43:15 | 002,994,238 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\K10 Official Video 2009.mp3
[2012-08-17 14:40:35 | 000,000,671 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Max Payne.lnk
[2012-08-15 18:19:18 | 009,826,504 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2012-08-13 09:26:45 | 005,276,348 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\PERFECT go�c. PEZET, FOKUS & PEJA - Kochaj mnie (Du-Rzy remix).mp3
[2012-08-13 09:20:17 | 000,003,928 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\svip.png
[2012-08-13 09:13:02 | 000,003,427 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\vip.png
[2012-08-13 09:11:33 | 000,004,230 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\mod.png
[2012-08-09 09:05:05 | 004,123,617 | ---- | M] () -- C:\Documents and Settings\Mama\Pulpit\bezimienni-walka.mp3
[2012-08-05 21:45:41 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Animation Shop 3.lnk
[2012-08-04 18:22:34 | 000,000,349 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-09-02 19:04:20 | 000,511,265 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\adwcleaner.exe
[2012-09-02 18:32:29 | 000,037,037 | ---- | C] () -- C:\Documents and Settings\Mama\.recently-used.xbel
[2012-09-02 10:22:58 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012-09-02 10:22:53 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2012-09-02 10:14:42 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012-09-02 10:14:42 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012-09-02 10:14:42 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012-09-02 10:14:42 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012-09-02 10:14:42 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012-09-02 07:46:21 | 000,010,144 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Clipboard02.jpg
[2012-09-01 11:47:39 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Trojan Remover.lnk
[2012-09-01 11:47:37 | 000,185,616 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar39.dll
[2012-09-01 11:47:37 | 000,169,744 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2012-09-01 11:47:37 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2012-09-01 11:47:37 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2012-09-01 11:47:37 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2012-08-31 11:32:02 | 000,558,339 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\k,NTg2NDE0NDQsNDUxMTQzNTE=,f,miley_cyrus_i_smieszna_mina_.jpg
[2012-08-31 07:19:10 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\PnkBstrK.sys
[2012-08-31 07:18:50 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2012-08-29 13:01:17 | 003,872,705 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Tony Igy - Endorphine(new!!!).mp3
[2012-08-28 22:41:38 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\o1vbxn9i.exe
[2012-08-28 19:05:36 | 000,000,043 | -H-- | C] () -- C:\Documents and Settings\Mama\Moje dokumenty\POnawijaj(1).mp3.jpg
[2012-08-28 18:06:57 | 055,490,351 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\gitt.mp3
[2012-08-27 19:48:17 | 000,005,600 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\emeryt.png
[2012-08-27 16:34:45 | 012,834,247 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Code Black & Toneshifterz - GET YOUR HANDS UP & PARTY DOWN (Ft. S-Dee) (Mash-up).mp3
[2012-08-27 16:04:47 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Sniper - Art of Victory.lnk
[2012-08-27 08:17:42 | 071,992,006 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\gitst.mp3
[2012-08-27 06:25:36 | 000,000,652 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Single Player).lnk
[2012-08-27 06:25:36 | 000,000,618 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\Wolfenstein (Multiplayer).lnk
[2012-08-27 06:19:13 | 000,000,810 | ---- | C] () -- C:\WINDOWS\Rtcw.INI
[2012-08-23 17:30:39 | 000,000,759 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Silent Hill 2 - Directors Cut.lnk
[2012-08-22 09:15:45 | 000,284,978 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\julian_2.jpg
[2012-08-22 09:15:10 | 000,316,343 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\julian.jpg
[2012-08-17 20:02:42 | 000,006,015 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\180px-Shrek_donkey.jpg
[2012-08-17 18:43:13 | 000,023,213 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\4_baner.png
[2012-08-17 17:59:27 | 081,136,535 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\set d�ugi.mp3
[2012-08-17 17:38:11 | 002,994,238 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\K10 Official Video 2009.mp3
[2012-08-15 18:30:33 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Max Payne.lnk
[2012-08-13 09:26:37 | 005,276,348 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\PERFECT go�c. PEZET, FOKUS & PEJA - Kochaj mnie (Du-Rzy remix).mp3
[2012-08-13 09:20:17 | 000,003,928 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\svip.png
[2012-08-13 09:13:02 | 000,003,427 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\vip.png
[2012-08-13 09:11:33 | 000,004,230 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\mod.png
[2012-08-09 09:04:50 | 004,123,617 | ---- | C] () -- C:\Documents and Settings\Mama\Pulpit\bezimienni-walka.mp3
[2012-06-28 18:31:50 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2012-06-26 13:25:29 | 000,094,208 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\chrtmp
[2012-06-03 13:41:58 | 000,078,085 | ---- | C] () -- C:\WINDOWS\System32\pattern.dat
[2012-06-03 13:41:56 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll
[2012-06-03 13:41:56 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\animation2.dll
[2012-06-03 13:40:44 | 000,280,576 | ---- | C] () -- C:\WINDOWS\System32\pxd_kom.dll
[2012-06-03 13:40:32 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fader.dll
[2012-06-03 13:40:31 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\drumpad.dll
[2012-06-03 13:40:30 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\BASSDEC.dll
[2012-04-21 10:21:57 | 000,122,884 | ---- | C] () -- C:\WINDOWS\UnGins.exe
[2012-02-28 02:23:37 | 000,000,612 | ---- | C] () -- C:\WINDOWS\mp3wavcon.ini
[2012-02-28 02:18:35 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySmp3con.dat
[2012-01-30 04:09:03 | 001,097,960 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-01-01 04:34:41 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\Mama\default.pls
[2011-11-24 21:52:17 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011-11-21 16:20:16 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011-11-17 19:43:38 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-11-16 23:54:13 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2011-11-16 08:43:36 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\deluidrv.exe
[2011-11-16 08:43:36 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\delentry.exe
[2011-11-16 08:43:36 | 000,000,956 | ---- | C] () -- C:\WINDOWS\System32\iconcfg.ini
[2011-11-15 23:15:57 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2011-11-15 23:15:28 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2011-11-15 22:57:03 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2011-11-15 22:57:03 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2011-11-15 22:57:00 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2011-11-15 22:57:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2011-11-15 22:57:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2011-11-15 22:47:06 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll
[2011-11-15 00:13:52 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2011-11-14 13:07:58 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2011-11-11 09:40:20 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011-11-11 09:40:17 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-11-11 09:40:17 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011-11-11 09:40:16 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-09-12 15:53:06 | 000,000,493 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2010-04-22 19:37:23 | 000,022,812 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\m popek.dpit
[2010-04-22 19:21:45 | 000,023,238 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\zj sadowscy.dpit
[2010-04-11 18:19:35 | 000,038,946 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\gg popek.dpit
[2010-02-24 21:42:28 | 000,038,946 | ---- | C] () -- C:\Documents and Settings\Mama\Dane aplikacji\Urz�d Skarbowy 58-306 Wa�brzych, ul. Uczniowska 21__2010-02-24 20-42-19.dpit
[2009-06-01 21:52:32 | 000,200,192 | ---- | C] () -- C:\Documents and Settings\Mama\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:47F1DFAC
 
< End of report >