OTL logfile created on: 4/22/2013 10:24:25 PM - Run OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE Microsoft Windows XP Dodatek Service Pack 2 (Version = 5.1.2600) - Type = SYSTEM Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,023.00 Mb Total Physical Memory | 792.00 Mb Available Physical Memory | 77.00% Memory free 907.00 Mb Paging File | 847.00 Mb Available in Paging File | 93.00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 74.53 Gb Total Space | 16.67 Gb Free Space | 22.37% Space Free | Partition Type: NTFS Drive D: | 115.70 Gb Total Space | 12.02 Gb Free Space | 10.39% Space Free | Partition Type: NTFS Drive E: | 74.52 Gb Total Space | 11.13 Gb Free Space | 14.94% Space Free | Partition Type: NTFS Drive F: | 117.19 Gb Total Space | 19.35 Gb Free Space | 16.51% Space Free | Partition Type: NTFS Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: REATOGO | User Name: SYSTEM Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days Using ControlSet: ControlSet003 [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled] -- -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2013/02/05 11:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService) SRV - [2013/01/14 15:33:14 | 000,769,920 | ---- | M] (Enigma Software Group USA, LLC.) [Auto] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service) SRV - [2011/09/06 16:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2006/03/03 15:03:10 | 000,069,632 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand] -- -- (WDICA) DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | System] -- -- (i2omgmt) DRV - File not found [Kernel | System] -- -- (Changer) DRV - [2012/06/22 05:01:32 | 000,019,984 | ---- | M] () [File_System | On_Demand] -- C:\WINDOWS\system32\drivers\EsgScanner.sys -- (EsgScanner) DRV - [2012/04/12 15:20:12 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2012/03/06 12:48:54 | 007,101,032 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2012/01/30 20:15:42 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv) DRV - [2011/09/06 16:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011/09/06 16:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011/09/06 16:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011/09/06 16:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011/09/06 16:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011/09/06 16:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2011/09/06 16:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009/11/18 01:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009/11/18 01:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009/03/25 08:29:52 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2007/12/25 05:24:25 | 000,020,520 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2007/12/25 05:24:25 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2007/12/10 09:22:22 | 000,110,120 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017unic.sys -- (s3017unic) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM) DRV - [2007/12/10 09:22:22 | 000,100,648 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017obex.sys -- (s3017obex) DRV - [2007/12/10 09:22:20 | 000,104,616 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017mgmt.sys -- (s3017mgmt) Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM) DRV - [2007/12/10 09:22:20 | 000,025,512 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017nd5.sys -- (s3017nd5) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS) DRV - [2007/12/10 09:22:18 | 000,110,632 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017mdm.sys -- (s3017mdm) DRV - [2007/12/10 09:22:18 | 000,015,016 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017mdfl.sys -- (s3017mdfl) DRV - [2007/12/10 09:22:14 | 000,083,880 | R--- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3017bus.sys -- (s3017bus) Sony Ericsson Device 3017 driver (WDM) DRV - [2007/11/06 16:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2007/10/28 14:15:28 | 000,278,984 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2007/10/28 14:15:28 | 000,025,416 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2007/06/19 03:51:20 | 000,107,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm) DRV - [2007/06/19 03:51:18 | 000,013,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl) DRV - [2007/06/19 03:51:16 | 000,081,832 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM) DRV - [2007/04/03 07:57:54 | 000,099,080 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116unic.sys -- (s116unic) Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM) DRV - [2007/04/03 07:57:52 | 000,098,696 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116obex.sys -- (s116obex) DRV - [2007/04/03 07:57:52 | 000,023,176 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116nd5.sys -- (s116nd5) Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS) DRV - [2007/04/03 07:57:50 | 000,100,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116mgmt.sys -- (s116mgmt) Sony Ericsson Device 116 USB WMC Device Management Drivers (WDM) DRV - [2007/04/03 07:57:48 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116mdm.sys -- (s116mdm) DRV - [2007/04/03 07:57:48 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116mdfl.sys -- (s116mdfl) DRV - [2007/04/03 07:57:42 | 000,083,336 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s116bus.sys -- (s116bus) Sony Ericsson Device 116 driver (WDM) DRV - [2007/03/16 04:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel) DRV - [2006/11/02 10:51:58 | 000,013,560 | ---- | M] (Cyberlink Corp.) [Kernel | Auto] -- C:\Program Files\CyberLink\PowerDVD\000.fcl -- ({95808DC4-FA4A-4c74-92FE-5B863F82066B}) DRV - [2006/07/15 18:00:00 | 000,011,776 | ---- | M] () [Kernel | On_Demand] -- C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt -- (EverestDriver) DRV - [2006/03/22 01:24:02 | 000,018,944 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006/03/22 01:24:00 | 000,052,736 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2006/03/16 06:51:32 | 000,099,840 | R--- | M] (NVIDIA Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata) DRV - [2005/03/09 02:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004/08/03 16:59:52 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2002/10/04 04:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139) DRV - [2001/08/17 15:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\Administrator_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={E42A4E19-397D-4E08-8795-D188BD80DF96}&mid=8774629c08e647d0b2e7d14c1bacec45-06ce4fc639803a2e3563922518183d8e94088cb9&lang=pl&ds=xn011&pr=sa&d=2012-10-15 17:17:12&v=13.0.0.7&sap=hp IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\haker765_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\haker765_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\haker765_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKU\haker765_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 169.229.50.15:3128 IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\systemprofile_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\test_ON_C\..\URLSearchHook: {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) IE - HKU\test_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "" FF - prefs.js..browser.search.order.1: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: true FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}:6.0.31 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@kontakt.wp.pl/WPMSGPlugin,version=1.0.1: C:\Program Files\Spik\mozilla\npwpk.dll ( ) FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2768: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2826: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1578: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ayioia@yioe-.com: C:\Documents and Settings\haker765\Dane aplikacji\Mozilla\Firefox\Profiles\6ltwdkc6.default\extensions\ayioia@yioe-.com [2013/03/16 13:00:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.0.14\extensions\\Components: C:\Program Files\SeaMonkey\components [2011/05/10 13:18:39 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.0.14\extensions\\Plugins: C:\Program Files\SeaMonkey\plugins [2012/04/14 12:46:17 | 000,000,000 | ---D | M] [2010/01/14 18:40:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Extensions [2010/01/14 18:40:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Extensions\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a} [2013/03/16 13:00:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Firefox\Profiles\6ltwdkc6.default\extensions [2013/03/16 13:00:06 | 000,000,000 | ---D | M] (Browse2sauVe) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Firefox\Profiles\6ltwdkc6.default\extensions\ayioia@yioe-.com [2007/11/27 14:54:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Profiles\test\8fs56a95.slt\extensions [2007/11/27 14:54:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\Profiles\test\8fs56a95.slt\extensions\{f65bf62a-5ffc-4317-9612-38907a779583} [2013/04/11 11:57:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions [2010/01/16 01:46:07 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2010/09/03 17:29:56 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010/09/03 06:26:45 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(2) [2010/09/06 16:08:07 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8} [2010/09/03 06:26:47 | 000,000,000 | ---D | M] (JavaScript Debugger) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}(2) [2010/09/03 06:26:46 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Documents and Settings\haker765\Dane aplikacji\mozilla\SeaMonkey\Profiles\kkj1mb7d.default\extensions\inspector@mozilla(2).org [2012/02/23 11:12:35 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/01/27 16:30:06 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 2 BETA 1\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2012/02/23 11:13:20 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 2 BETA 1\EXTENSIONS\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012/03/24 08:25:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION O1 HOSTS File: ([2012/05/27 13:50:06 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (uTorrentControl_v6 Toolbar) - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) O2 - BHO: (FlashFXP Helper for Internet Explorer) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program Files\FlashFXP\IEFlash.dll (IniCom Networks, Inc.) O3 - HKLM\..\Toolbar: (uTorrentControl_v6 Toolbar) - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.) O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\haker765_ON_C..\Run: [MxDock] C:\Program Files\Maxthon3\Modules\MxDock\MxDock.exe () O4 - HKU\test_ON_C..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent Inc.) O4 - HKU\.DEFAULT..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe (Adobe Systems, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\Administrator_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\haker765_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\haker765_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKU\haker765_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O7 - HKU\haker765_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\systemprofile_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\test_ON_C\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\test_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} https://84.19.177.14:8098/tsweb/msrdp.cab (Microsoft RDP Client Control (redist)) O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/pi/components/bph/SignActivX.cab (SignActivX Control) O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Java Plug-in 1.5.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.160.170.92 88.156.222.92 82.139.8.40 O18 - Protocol\Handler\wpmsg {2E0AC5A0-3597-11D6-B3ED-0001021DC1C3} - C:\Program Files\Spik\url_wpmsg.dll () O20 - AppInit_DLLs: (acaptuser32.dll) - C:\WINDOWS\System32\acaptuser32.dll (Adobe Systems, Inc.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\haker765_ON_C Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\haker765_ON_C Winlogon: Shell - (C:\Documents and Settings\haker765\Dane aplikacji\skype.dat) - C:\Documents and Settings\haker765\Dane aplikacji\skype.dat () O24 - Desktop Components:0 () - file:///C:/DOCUME~1/haker765/USTAWI~1/Temp/msohtmlclip1/01/clip_image002.jpg O24 - Desktop Components:1 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: O24 - Desktop BackupWallPaper: O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/11/11 13:46:08 | 000,000,095 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011/03/22 16:44:24 | 000,081,957 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2009/01/16 13:56:45 | 000,000,000 | ---D | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009/01/16 13:56:46 | 000,000,000 | ---D | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009/01/16 13:56:45 | 000,000,000 | ---D | M] - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009/01/16 13:56:46 | 000,000,000 | ---D | M] - F:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{00bbf740-9ab2-11e1-853b-00055d4805b6}\Shell\AutoRun\command - "" = I:\urDrive.exe O33 - MountPoints2\{0e1d8242-16db-11e2-915d-00055d4805b6}\Shell\AutoRun\command - "" = I:\urDrive.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013/04/20 11:26:37 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2013/04/20 11:26:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\uTorrentControl_v6 [2013/04/20 11:26:22 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrentControl_v6 [2013/04/20 11:26:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\Conduit [2013/04/20 11:26:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\temp [2013/04/20 11:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Dane aplikacji\uTorrent [2013/04/20 11:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Moje dokumenty\Downloads [2013/04/20 11:08:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\Google [2013/04/20 11:03:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Dane aplikacji\DAEMON Tools Pro [2013/04/13 11:11:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\SpyHunter [2013/04/13 11:11:44 | 000,000,000 | ---D | C] -- C:\sh4ldr [2013/04/13 11:09:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\SpyHunter 4.12.13.4202 + Patch [2013/04/13 10:51:13 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013/04/22 14:57:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013/04/22 14:56:37 | 000,002,262 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013/04/21 09:52:11 | 000,503,974 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2013/04/21 09:52:11 | 000,447,704 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013/04/21 09:52:11 | 000,090,106 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2013/04/21 09:52:10 | 000,073,156 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013/04/20 15:11:00 | 000,001,040 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013/04/20 15:11:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013/04/20 11:25:48 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\test\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk [2013/04/20 11:25:47 | 000,000,676 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2013/04/20 11:16:50 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013/04/20 11:16:49 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/04/20 11:08:17 | 000,001,877 | ---- | M] () -- C:\Documents and Settings\test\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013/04/20 11:08:17 | 000,001,859 | ---- | M] () -- C:\Documents and Settings\test\Pulpit\Google Chrome.lnk [2013/04/20 11:03:54 | 000,181,423 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2013/04/16 08:47:02 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\haker765\Dane aplikacji\skype.ini [2013/04/13 11:11:54 | 000,002,031 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\SpyHunter.lnk [2013/04/13 11:09:36 | 000,006,656 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/04/01 07:36:38 | 000,058,368 | ---- | M] () -- C:\Documents and Settings\haker765\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/03/28 15:14:33 | 000,006,188 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2013/03/27 11:37:29 | 000,000,211 | RHS- | M] () -- C:\boot.ini [2013/03/25 18:04:35 | 000,000,000 | R--D | M] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013/04/20 11:25:47 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\test\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk [2013/04/20 11:25:47 | 000,000,676 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2013/04/20 11:16:45 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/04/20 11:03:11 | 000,001,877 | ---- | C] () -- C:\Documents and Settings\test\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013/04/20 11:03:10 | 000,001,859 | ---- | C] () -- C:\Documents and Settings\test\Pulpit\Google Chrome.lnk [2013/04/13 11:09:19 | 000,006,656 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/04/13 10:51:28 | 000,002,031 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\SpyHunter.lnk [2013/04/13 10:16:32 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\haker765\Dane aplikacji\skype.ini [2013/03/16 15:41:36 | 000,153,345 | ---- | C] () -- C:\WINDOWS\hpoins14.dat [2013/03/16 15:41:36 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat [2013/03/16 09:25:24 | 000,153,319 | ---- | C] () -- C:\WINDOWS\hpoins14.dat.temp [2013/03/16 09:25:24 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat.temp [2012/10/15 15:29:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\defogger_reenable [2012/07/20 13:53:00 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012/06/22 05:01:32 | 000,019,984 | ---- | C] () -- C:\WINDOWS\System32\ESGScanner.sys [2012/06/22 05:01:32 | 000,019,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\EsgScanner.sys [2012/05/30 03:07:54 | 000,021,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT [2012/05/28 17:28:16 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2012/05/28 12:12:49 | 000,000,020 | ---- | C] () -- C:\Documents and Settings\haker765\defogger_reenable [2012/04/13 09:26:04 | 000,167,062 | ---- | C] () -- C:\WINDOWS\hpwins12.dat [2012/04/13 09:22:29 | 000,009,847 | ---- | C] () -- C:\WINDOWS\hpwscr12.dat [2012/04/13 09:22:29 | 000,000,981 | ---- | C] () -- C:\WINDOWS\hpwmdl12.dat [2012/03/25 18:30:28 | 000,962,960 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2012/01/30 20:15:44 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2012/01/30 20:15:42 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll [2012/01/30 20:15:42 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll [2012/01/30 20:15:42 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll [2012/01/30 20:15:42 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll [2012/01/01 13:02:25 | 000,079,872 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011/11/05 05:15:47 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll [2011/11/05 05:15:46 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll [2011/11/05 05:15:46 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll [2011/09/19 14:20:41 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\memorybar.exe [2011/09/19 14:20:41 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\diskicon.exe [2011/09/19 14:03:57 | 000,000,001 | ---- | C] () -- C:\Documents and Settings\haker765\Ustawienia lokalne\Dane aplikacji\llftool.4.09.agreement [2010/03/05 11:00:07 | 000,709,641 | ---- | C] () -- C:\WINDOWS\unins000.exe [2010/03/05 11:00:07 | 000,044,049 | ---- | C] () -- C:\WINDOWS\unins000.dat [2009/11/18 16:34:29 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2009/06/14 16:13:57 | 000,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll [2009/06/07 10:24:04 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009/06/07 10:16:12 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009/06/04 10:41:53 | 000,000,085 | ---- | C] () -- C:\WINDOWS\Route.INI [2009/03/16 09:30:44 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\haker765\Dane aplikacji\PnkBstrK.sys [2009/03/16 09:30:02 | 002,246,144 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe [2009/01/28 14:50:44 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008/11/24 15:40:15 | 000,075,064 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2008/11/24 15:40:14 | 000,138,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008/11/24 15:40:08 | 000,189,784 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2008/11/01 16:21:41 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2008/11/01 16:21:14 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll [2008/11/01 16:21:14 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\avi.dll [2008/11/01 16:21:12 | 000,148,992 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll [2008/11/01 16:21:11 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll [2008/11/01 16:21:10 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll [2008/11/01 16:21:09 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ts.dll [2008/11/01 16:21:08 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2008/11/01 16:21:07 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [2008/11/01 16:20:54 | 000,456,192 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll [2008/11/01 16:20:52 | 000,119,296 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll [2008/11/01 16:20:51 | 003,569,152 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll [2008/11/01 16:20:37 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll [2008/11/01 16:20:37 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll [2008/11/01 16:20:36 | 000,102,912 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll [2008/11/01 16:20:35 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll [2008/11/01 16:20:34 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll [2008/11/01 16:20:34 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\ff_realaac.dll [2008/11/01 16:20:32 | 000,397,312 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll [2008/11/01 16:20:30 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll [2008/11/01 16:20:29 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll [2008/11/01 16:20:27 | 002,041,363 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll [2008/11/01 16:20:19 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2008/11/01 16:20:18 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll [2008/11/01 16:20:14 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2008/11/01 16:20:12 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [2008/07/20 04:54:57 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\haker765\Dane aplikacji\$_hpcst$.hpc [2008/07/03 09:54:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI [2008/05/27 13:13:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Infob.dat [2008/05/27 13:13:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Infoa.dat [2008/05/27 13:12:03 | 000,000,305 | ---- | C] () -- C:\WINDOWS\System32\treeinfo.dat [2008/05/24 08:47:00 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\haker765\default.pls [2008/05/16 08:01:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008/05/16 08:01:00 | 001,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2008/05/16 08:01:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008/05/16 08:01:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2008/05/16 08:01:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008/05/16 08:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008/05/16 08:01:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2008/05/16 08:01:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2008/05/16 08:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2008/04/25 12:40:39 | 000,001,486 | ---- | C] () -- C:\Documents and Settings\haker765\.recently-used.xbel [2008/04/24 12:58:55 | 000,000,254 | ---- | C] () -- C:\WINDOWS\phedit.ini [2008/04/24 12:45:41 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\msvcrt10.dll [2008/04/24 12:45:41 | 000,005,515 | ---- | C] () -- C:\WINDOWS\fmachine.ini [2008/04/02 10:55:01 | 000,119,700 | ---- | C] () -- C:\WINDOWS\hpoins11.dat [2008/01/06 12:52:42 | 000,000,823 | ---- | C] () -- C:\WINDOWS\ARPR.INI [2007/11/21 14:50:00 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2007/11/11 10:37:42 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007/11/06 16:19:28 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2007/10/28 14:15:28 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2007/10/28 14:15:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2007/10/16 12:15:09 | 000,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll [2007/08/14 11:33:20 | 000,061,504 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2007/07/18 14:52:51 | 000,000,017 | ---- | C] () -- C:\WINDOWS\Missing.ini [2007/07/06 07:49:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI [2007/06/06 09:17:10 | 000,013,840 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll [2007/05/15 06:03:00 | 000,000,650 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2007/05/04 13:51:03 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfot.dat [2007/05/04 13:51:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcreg.dat [2007/04/11 11:21:14 | 000,000,060 | ---- | C] () -- C:\WINDOWS\wininit.ini [2007/04/04 16:56:17 | 000,000,949 | ---- | C] () -- C:\WINDOWS\aiepr.ini [2007/03/12 01:06:01 | 000,001,137 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2007/02/08 14:17:34 | 000,041,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\Oreans.sys [2007/02/08 13:53:08 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2006/12/14 04:54:18 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2006/11/26 08:23:20 | 000,000,015 | ---- | C] () -- C:\WINDOWS\ASBG.dat [2006/11/11 17:12:38 | 000,000,049 | ---- | C] () -- C:\WINDOWS\iltwain.ini [2006/11/11 13:46:07 | 000,001,196 | ---- | C] () -- C:\WINDOWS\VFO.INI [2006/11/08 08:34:48 | 000,000,215 | ---- | C] () -- C:\WINDOWS\Mapa.INI [2006/09/07 10:48:30 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\RTELM.dll [2006/08/28 16:35:56 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006/08/23 13:42:12 | 000,000,029 | ---- | C] () -- C:\WINDOWS\SCNDRVU.INI [2006/08/22 11:57:15 | 000,003,276 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2006/08/21 03:45:21 | 000,009,728 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2006/08/21 03:29:07 | 000,000,032 | ---- | C] () -- C:\WINDOWS\tdlp32.ini [2006/08/18 05:56:31 | 000,058,368 | ---- | C] () -- C:\Documents and Settings\haker765\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2006/08/18 04:03:31 | 000,039,095 | ---- | C] () -- C:\WINDOWS\iccsigs.dat [2006/08/18 04:03:30 | 000,112,688 | ---- | C] () -- C:\WINDOWS\System32\shw32.dll [2006/08/18 02:43:28 | 000,002,739 | ---- | C] () -- C:\WINDOWS\System32\SvcPack.ini [2006/08/17 04:42:51 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2006/08/16 05:09:23 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\haker765\Dane aplikacji\mpauth.dat [2006/08/16 04:23:25 | 000,001,875 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini [2006/08/14 16:39:05 | 000,006,188 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2006/08/14 16:34:47 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2006/08/14 16:34:40 | 000,025,816 | ---- | C] () -- C:\WINDOWS\mozver.dat [2006/08/14 15:45:19 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2006/08/14 15:38:59 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2006/08/14 13:53:15 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\haker765\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2006/08/14 13:50:30 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2006/08/14 13:31:47 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2006/08/14 13:27:22 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2006/08/14 13:22:37 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2006/08/14 13:21:48 | 000,307,600 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2005/07/19 05:51:06 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\gif89.dll [2005/07/18 11:46:08 | 000,074,240 | ---- | C] () -- C:\WINDOWS\System32\zlibvb.dll [2005/02/09 18:29:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\meritmgr.exe [2004/09/23 18:31:08 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll [2004/08/02 08:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/07/29 12:08:30 | 000,024,633 | ---- | C] () -- C:\WINDOWS\php.ini [2002/11/08 14:04:42 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\qtmlClient.dll [2002/09/17 18:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe [2002/06/25 02:28:18 | 000,000,473 | ---- | C] () -- C:\WINDOWS\my.ini [2001/10/26 11:30:20 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2001/10/26 10:49:46 | 000,087,040 | ---- | C] () -- C:\Documents and Settings\haker765\Dane aplikacji\skype.dat [2001/10/26 10:15:16 | 000,503,974 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001/10/26 10:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001/10/26 10:15:16 | 000,090,106 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001/10/26 10:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001/08/23 07:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/23 07:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001/08/17 15:30:24 | 000,447,704 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001/08/17 15:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001/08/17 15:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001/08/17 15:30:22 | 000,073,156 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001/08/17 15:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001/07/21 20:41:32 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2001/07/21 16:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001/07/21 16:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001/07/21 16:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2001/07/06 21:00:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [color=#E56717]========== LOP Check ==========[/color] [2012/10/15 11:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\DAEMON Tools Pro [2010/01/28 14:08:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\.wtw [2006/12/22 09:07:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Aston [2012/04/07 14:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\DAEMON Tools Lite [2012/04/12 15:20:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\DAEMON Tools Pro [2007/03/19 13:56:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Diino [2007/07/06 12:27:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Emisja [2006/08/14 16:51:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\FlashFXP [2008/09/22 11:26:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\FMA [2008/06/11 10:56:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\foobar2000 [2008/03/02 12:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\GetRightToGo [2008/04/25 12:40:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\gtk-2.0 [2009/03/16 09:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\id Software [2010/07/27 14:29:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\ipla [2008/11/24 15:37:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Leadertech [2013/04/11 12:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Maxthon3 [2008/07/26 16:28:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Moyea [2007/05/10 05:09:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\MusicIP [2012/11/11 16:47:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\NapiProjekt [2009/09/27 12:45:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Passware [2007/01/06 15:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\POLENG4 [2007/06/05 11:28:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\ppstream [2010/07/16 14:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Publish Providers [2012/04/14 12:48:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\RayV [2012/03/24 16:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Samsung [2010/07/16 14:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Sony [2006/08/14 17:04:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Spik [2012/04/24 10:28:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\TeamViewer [2007/07/06 07:47:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Teleca [2012/03/25 05:45:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\Temp [2013/04/13 10:02:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\haker765\Dane aplikacji\uTorrent [2013/04/20 11:03:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\DAEMON Tools Pro [2007/11/27 13:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\MusicIP [2007/11/11 10:37:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\Spik [2013/04/20 13:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\uTorrent [2010/12/30 10:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2013/03/19 11:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Browse2sauVe [2008/11/21 05:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters [2008/05/13 13:20:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CORE [2012/04/07 14:38:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2007/10/28 13:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro [2013/03/19 11:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2009/05/18 12:00:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010/04/18 08:22:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2006/11/11 13:44:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle [2006/11/11 13:45:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle Studio [2008/09/14 15:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RTE [2012/03/24 08:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung [2007/03/04 18:00:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SecurStar [2013/03/16 15:03:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SoftSafe [2010/07/16 14:19:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony [2007/12/30 13:47:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\stamina [2013/03/16 18:13:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:373E1720 < End of report >