OTL logfile created on: 2013-09-09 17:46:37 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Usher\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,14 Gb Available Physical Memory | 71,50% Memory free 5,84 Gb Paging File | 5,10 Gb Available in Paging File | 87,42% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 49,81 Gb Total Space | 0,65 Gb Free Space | 1,31% Space Free | Partition Type: NTFS Drive D: | 183,08 Gb Total Space | 22,76 Gb Free Space | 12,43% Space Free | Partition Type: NTFS Drive G: | 226,11 Gb Total Space | 60,17 Gb Free Space | 26,61% Space Free | Partition Type: NTFS Computer Name: USHER-0DC2E976A | User Name: OMAM | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-09-09 17:39:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Usher\Pulpit\OTL.exe PRC - [2013-08-18 16:33:54 | 000,276,376 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2013-05-21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe PRC - [2010-09-13 20:02:44 | 000,399,872 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Program Files\UPHClean\uphclean.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-08-18 16:33:54 | 003,551,640 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2013-07-16 22:52:30 | 016,166,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll MOD - [2012-05-30 08:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\wincfi39.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-09-06 22:55:40 | 000,565,672 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2013-07-16 22:52:30 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-07-02 23:20:19 | 000,182,184 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2013-05-21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS) SRV - [2013-02-10 05:20:28 | 001,266,464 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2010-09-13 20:02:44 | 000,399,872 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Auto | Running] -- C:\Program Files\UPHClean\uphclean.exe -- (UPHClean) SRV - [2008-10-20 22:18:26 | 000,071,096 | ---- | M] () [On_Demand | Stopped] -- D:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\wdcsam.sys -- (WDC_SAM) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\usbser_lowerflt.sys -- (upperdev) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ccdcmb.sys -- (nmwcd) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ftser2k.sys -- (FTSER2K) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | Boot | Stopped] -- System32\drivers\BootDefragDriver.sys -- (BootDefragDriver) DRV - [2013-09-04 00:26:28 | 001,097,816 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20130903.002\BHDrvx86.sys -- (BHDrvx86) DRV - [2013-08-30 12:38:37 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130909.001\NAVEX15.SYS -- (NAVEX15) DRV - [2013-08-30 12:38:37 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130909.001\NAVENG.SYS -- (NAVENG) DRV - [2013-08-27 07:22:14 | 000,376,920 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2013-08-27 07:22:14 | 000,108,120 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2013-08-21 08:27:48 | 000,380,832 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20130905.001\IDSXpx86.sys -- (IDSxpx86) DRV - [2013-07-15 03:29:14 | 000,039,048 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd) DRV - [2013-06-24 11:41:40 | 000,406,104 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2013-06-19 08:02:17 | 000,142,496 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2013-05-23 07:25:28 | 000,934,488 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\symefa.sys -- (SymEFA) DRV - [2013-05-21 07:02:00 | 000,367,704 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\symds.sys -- (SymDS) DRV - [2013-05-16 07:02:14 | 000,603,224 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\srtsp.sys -- (SRTSP) DRV - [2013-04-25 02:43:56 | 000,396,760 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\symtdi.sys -- (SYMTDI) DRV - [2013-04-16 04:41:14 | 000,134,744 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\ccsetx86.sys -- (ccSet_NIS) DRV - [2013-03-05 04:14:18 | 000,044,064 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP) DRV - [2013-03-05 04:14:18 | 000,044,064 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM) DRV - [2013-03-05 03:39:19 | 000,175,264 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\ironx86.sys -- (SymIRON) DRV - [2013-03-05 03:21:35 | 000,032,344 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1404000.028\srtspx.sys -- (SRTSPX) DRV - [2011-03-18 18:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2010-11-17 00:04:47 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2010-11-09 10:17:35 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2010-11-02 20:36:26 | 006,188,648 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2010-03-15 12:38:44 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdm.sys -- (s1039mdm) DRV - [2010-03-15 12:38:44 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039unic.sys -- (s1039unic) DRV - [2010-03-15 12:38:44 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mgmt.sys -- (s1039mgmt) DRV - [2010-03-15 12:38:44 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039obex.sys -- (s1039obex) DRV - [2010-03-15 12:38:44 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039bus.sys -- (s1039bus) DRV - [2010-03-15 12:38:44 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039nd5.sys -- (s1039nd5) DRV - [2010-03-15 12:38:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdfl.sys -- (s1039mdfl) DRV - [2009-11-18 08:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009-11-18 08:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009-07-13 16:51:12 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB) DRV - [2009-01-21 19:03:34 | 000,049,904 | ---- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BVRPMPR5.SYS -- (BVRPMPR5) DRV - [2008-10-10 21:37:42 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2008-05-27 11:41:46 | 000,122,152 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdm.sys -- (s0017mdm) DRV - [2008-05-27 11:41:46 | 000,117,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017unic.sys -- (s0017unic) DRV - [2008-05-27 11:41:46 | 000,111,912 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017obex.sys -- (s0017obex) DRV - [2008-05-27 11:41:46 | 000,090,536 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017bus.sys -- (s0017bus) DRV - [2008-05-27 11:41:46 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mdfl.sys -- (s0017mdfl) DRV - [2008-05-27 11:41:44 | 000,115,496 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017mgmt.sys -- (s0017mgmt) DRV - [2008-05-27 11:41:44 | 000,025,768 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0017nd5.sys -- (s0017nd5) DRV - [2008-05-16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) DRV - [2008-05-16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) DRV - [2008-05-16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl) DRV - [2008-05-16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm) DRV - [2008-05-16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) DRV - [2008-05-16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex) DRV - [2008-05-16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) DRV - [2008-05-06 19:10:42 | 000,035,072 | ---- | M] (Fuzhou Rockchip Electronics Co,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rockusb27.sys -- (rockusb27) DRV - [2008-05-02 06:15:44 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- D:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5) DRV - [2008-01-22 14:28:54 | 000,132,904 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv) DRV - [2008-01-22 14:28:52 | 000,011,304 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv) DRV - [2007-10-11 11:10:52 | 000,030,008 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ET5Drv.sys -- (ET5Drv) DRV - [2006-06-06 15:37:12 | 000,046,208 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore) DRV - [2006-06-06 15:37:10 | 000,011,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum) DRV - [2006-06-06 15:37:10 | 000,006,400 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid) DRV - [2004-03-09 12:18:09 | 000,065,504 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02) DRV - [2004-03-09 11:45:49 | 000,077,184 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06) DRV - [2003-12-01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01) DRV - [2003-09-06 14:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1) DRV - [2002-09-16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [2002-01-12 17:30:34 | 000,003,567 | ---- | M] (Beyond Logic http://www.beyondlogic.org) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PortTalk.sys -- (PortTalk) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.delta-search.com/?affID=121631&tt=gc_&babsrc=HP_ss&mntrId=E895001FD08C1128 IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www1.delta-search.com/?q={searchTerms}&affID=121631&tt=gc_&babsrc=SP_ss&mntrId=E895001FD08C1128 IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7GGLD_en&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKU\S-1-5-21-606747145-1229272821-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultthis.engineName: "Free Lunch Design Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1708250&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/" FF - prefs.js..extensions.enabledAddons: %7B4BBDD651-70CF-4821-84F8-2B918CF89CA3%7D:7.1.0 FF - prefs.js..extensions.enabledAddons: %7B6614d11d-d21d-b211-ae23-815234e1ebb5%7D:2.7.5 FF - prefs.js..extensions.enabledAddons: %7B64161300-e22b-11db-8314-0800200c9a66%7D:0.9.6.14 FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.14 FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.7 FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20130402 FF - prefs.js..extensions.enabledAddons: firegestures%40xuldev.org:1.6.22 FF - prefs.js..extensions.enabledAddons: %7BBBDA0591-3099-440a-AA10-41764D9DB4DB%7D:12.0.0.380%20-%201 FF - prefs.js..extensions.enabledAddons: %7B2D3F3651-74B9-4795-BDEC-6DA2F431CB62%7D:2013.4.2.2 FF - prefs.js..extensions.enabledAddons: djziggy%40gmail.com:2.0.8 FF - prefs.js..extensions.enabledItems: fastdial@telega.phpnet.us:3.4 FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.6.1 FF - prefs.js..extensions.enabledItems: ietab@ip.cn:1.98.20110322 FF - prefs.js..extensions.enabledItems: {4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2 FF - prefs.js..extensions.enabledItems: {6614d11d-d21d-b211-ae23-815234e1ebb5}:1.0.23 FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20110323 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.5 FF - prefs.js..extensions.enabledItems: {6D5C8FC4-DE46-41bf-9092-93F0F78E9115}:2.1.0.51 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: {285da7e0-729d-11db-9fe1-0800200c9a66}:2.20091201 FF - prefs.js..extensions.enabledItems: {3713a489-0634-4472-8456-dc7abd7eba00}:1.3.1 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: File not found FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: G:\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.99\npGoogleUpdate3.dll File not found FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.99\npGoogleUpdate3.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\ [2013-09-09 17:34:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.6.0.43\coFFFw\ FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFFPlgn\ [2012-11-21 18:22:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-08-18 16:33:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-08-18 16:33:49 | 000,000,000 | ---D | M] [2010-01-08 10:32:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Extensions [2010-01-08 10:32:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2013-05-22 00:17:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions [2009-07-23 11:03:09 | 000,000,000 | ---D | M] (Site Launcher) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{20291fcc-1471-46c8-8213-5911f5ce6d67}(2) [2013-01-16 18:53:07 | 000,000,000 | ---D | M] (FEBE) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2009-07-23 11:03:09 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2) [2013-04-17 18:21:48 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2009-07-23 11:03:13 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}(2) [2013-03-17 20:47:54 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2009-07-23 11:03:13 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2) [2009-07-23 11:03:14 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(2) [2013-02-07 18:10:47 | 000,000,000 | ---D | M] (LavaFox V2-Blue) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\djziggy@gmail.com [2009-07-23 11:03:10 | 000,000,000 | ---D | M] (Pink-bee) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\pink-bee@loic(2).com [2011-10-22 15:13:42 | 000,000,000 | ---D | M] (Vividas player plugin) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\player@vividas.com [2013-05-22 00:17:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\Firefoxa\Profile\extensions [2013-03-17 20:47:54 | 000,134,804 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\adblockpopups@jessehakanen.net.xpi [2012-08-31 22:08:58 | 000,123,385 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\elemhidehelper@adblockplus.org.xpi [2013-04-17 18:21:48 | 000,140,792 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\firegestures@xuldev.org.xpi [2013-03-17 20:47:54 | 000,281,921 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2013-01-16 18:53:02 | 000,164,308 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}.xpi [2013-03-17 20:47:34 | 000,817,280 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2008-11-17 18:14:06 | 000,001,362 | ---- | M] () (No name found) -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\chrome\skin\xpinstallItemGeneric.png [2013-05-21 17:44:57 | 000,006,505 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\babylon.xml [2010-08-18 17:14:48 | 000,000,937 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\conduit.xml [2013-05-21 17:45:20 | 000,001,294 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\delta.xml [2013-09-08 20:18:36 | 000,001,274 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\pwn-sjp.xml [2013-09-08 20:18:36 | 000,001,255 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\pwn-so.xml [2009-01-06 18:10:54 | 000,001,447 | ---- | M] () -- C:\Documents and Settings\Usher\Dane aplikacji\Mozilla\Firefox\Profiles\akbbi9p9.default\searchplugins\userlogos.xml [2013-08-18 16:33:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-08-18 16:33:54 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013-09-09 17:34:47 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\COFFPLGN [2012-11-21 18:22:06 | 000,000,000 | ---D | M] (Norton Vulnerability Protection) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFFPLGN [2010-08-20 11:07:28 | 000,931,328 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPBOARDS.dll [2010-05-18 14:38:26 | 000,546,296 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPDOMINO.dll [2008-11-24 16:45:52 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll [2009-08-31 14:10:44 | 000,460,280 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPMAHJONG.dll [2011-09-16 12:57:06 | 000,189,088 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npVividasPlayer.dll [2010-05-18 14:39:46 | 000,669,176 | ---- | M] (Ganymede Technologies) -- C:\Program Files\mozilla firefox\plugins\NPWORDS.dll O1 HOSTS File: ([2009-03-31 20:08:59 | 000,000,686 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation) O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation) O3 - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\Toolbar\ShellBrowser: (no name) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - No CLSID value found. O3 - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\Toolbar\WebBrowser: (no name) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No CLSID value found. O3 - HKU\S-1-5-21-606747145-1229272821-839522115-1003\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation) O4 - HKU\.DEFAULT..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation) O4 - HKU\S-1-5-18..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data] O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data] O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-606747145-1229272821-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} http://download.gigabyte.com.tw/object/Dldrv.ocx (Reg Error: Key error.) O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1257020163921 (MUCatalogWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1257347952265 (MUWebControl Class) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{94403EC7-DFAA-4F73-AEDB-56D7D8804F60}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Usher\Dane aplikacji\IrfanView\IrfanView_Wallpaper.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Usher\Dane aplikacji\IrfanView\IrfanView_Wallpaper.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-09-26 12:29:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{9ae921c0-9122-11e0-b77f-001fd08c1128}\Shell - "" = AutoRun O33 - MountPoints2\{9ae921c0-9122-11e0-b77f-001fd08c1128}\Shell\AutoRun\command - "" = F:\Startme.exe O33 - MountPoints2\{d7e6e4f0-1255-11e3-81ad-001fd08c1128}\Shell - "" = AutoRun O33 - MountPoints2\{d7e6e4f0-1255-11e3-81ad-001fd08c1128}\Shell\AutoRun\command - "" = F:\Startme.exe O33 - MountPoints2\{de11188d-99ec-11de-b35a-001fd08c1128}\Shell - "" = AutoRun O33 - MountPoints2\{de11188d-99ec-11de-b35a-001fd08c1128}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL TrueCrypt\szyfr.bat O33 - MountPoints2\{ec1f3fa3-1701-11df-b474-001fd08c1128}\Shell - "" = AutoRun O33 - MountPoints2\{ec1f3fa3-1701-11df-b474-001fd08c1128}\Shell\AutoRun\command - "" = "F:\WD SmartWare.exe" autoplay=true O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (BootDefrag.exe) O34 - HKLM BootExecute: (OODBS) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-09-09 17:39:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Usher\Pulpit\OTL.exe [2013-09-09 17:33:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Usher\Recent [2013-09-08 22:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Dane aplikacji\Sniper Ghost Warrior 2 [2013-09-08 22:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\R.G. Mechanics [2013-09-08 20:18:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Pulpit\[R.G. Mechanics] Sniper Ghost Warrior 2 [2013-09-07 19:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Moje dokumenty\Lemony Snicket [2013-09-07 19:17:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Activision [2013-09-07 19:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Menu Start\Programy\Activision [2013-09-06 19:51:35 | 000,101,664 | ---- | C] (Glarysoft Ltd) -- C:\WINDOWS\System32\BootDefrag.exe [2013-09-06 19:51:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Glary Utilities 3 [2013-09-06 19:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities 3 [2013-09-03 20:35:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\gtk-2.0 [2013-09-03 20:33:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\gegl-0.2 [2013-09-03 20:33:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\.gimp-2.8 [2013-09-02 16:58:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\PunkBuster [2013-09-01 15:53:05 | 000,051,915 | ---- | C] (Compuware Corporation) -- C:\WINDOWS\System32\drivers\FT2593.sys [2013-09-01 15:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\USB GAMEPAD [2013-09-01 15:40:25 | 000,000,000 | ---D | C] -- C:\Program Files\PixiePack Codec Pack [2013-09-01 15:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\RapidSolution [2013-09-01 15:40:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Audials TV [2013-09-01 15:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AudialsOne 4 [2013-08-31 20:36:40 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01009.dll [2013-08-31 20:36:40 | 000,851,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WinUSBCoInstaller2.dll [2013-08-25 22:37:41 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin [2013-08-25 22:29:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Local Settings [2013-08-24 16:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Audials 10 [2013-08-21 12:49:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Logs [2013-08-20 10:58:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DSS [2013-08-20 09:53:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Steam [2013-08-19 22:13:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EA Games [2013-08-18 16:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-08-14 18:40:31 | 000,000,000 | ---D | C] -- C:\output [2013-08-11 22:30:48 | 000,102,104 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\RTNUninst32.dll [2013-08-11 22:30:48 | 000,077,528 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\RtNicProp32.dll [2013-08-11 14:05:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Usher\Pulpit\.picasaoriginals [2013-08-10 21:10:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2013-08-10 20:09:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Usher\Dane aplikacji\PhotoScape [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [4 C:\Documents and Settings\Usher\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Usher\Moje dokumenty\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Usher\*.tmp files -> C:\Documents and Settings\Usher\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-09-09 17:39:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Usher\Pulpit\OTL.exe [2013-09-09 17:36:58 | 000,014,718 | ---- | M] () -- C:\WINDOWS\System32\nvAppTimestamps [2013-09-09 17:36:18 | 000,047,104 | ---- | M] () -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-09-09 17:35:34 | 000,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-09-09 17:35:29 | 000,000,316 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize 3.job [2013-09-09 17:34:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-09-09 17:26:13 | 001,191,114 | ---- | M] () -- C:\Documents and Settings\Usher\Pulpit\bez tytułu.bmp [2013-09-08 23:07:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013-09-08 22:47:37 | 000,000,888 | ---- | M] () -- C:\Documents and Settings\Usher\Pulpit\Sniper Ghost Warrior 2.lnk [2013-09-08 21:34:06 | 000,000,414 | ---- | M] () -- C:\Documents and Settings\Usher\Moje dokumenty\poprawka avi.reg [2013-09-05 19:30:38 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013-09-03 20:42:36 | 000,000,043 | ---- | M] () -- C:\WINDOWS\gswin32.ini [2013-09-03 20:40:40 | 000,003,700 | ---- | M] () -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\recently-used.xbel [2013-09-02 23:09:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf [2013-09-02 17:03:27 | 000,139,096 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2013-09-02 17:03:18 | 000,281,312 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2013-09-02 16:58:55 | 000,281,312 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0 [2013-09-02 11:09:46 | 000,101,664 | ---- | M] (Glarysoft Ltd) -- C:\WINDOWS\System32\BootDefrag.exe [2013-09-01 19:36:44 | 000,000,211 | ---- | M] () -- C:\boot.ini [2013-09-01 16:00:23 | 000,578,368 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2013-09-01 16:00:23 | 000,515,418 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013-09-01 16:00:23 | 000,114,582 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2013-09-01 16:00:23 | 000,093,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013-09-01 15:52:01 | 000,000,118 | ---- | M] () -- C:\WINDOWS\Podcasts.INI [2013-08-24 20:44:27 | 001,079,188 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2013-08-24 20:44:27 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2013-08-24 20:44:07 | 001,079,188 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2013-08-20 10:43:14 | 002,601,752 | ---- | M] () -- C:\WINDOWS\System32\pbsvc_moh.exe [2013-08-14 14:50:10 | 000,312,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-08-11 21:40:34 | 000,001,843 | ---- | M] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2013-08-11 21:12:25 | 000,001,316 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [2013-08-11 21:02:20 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [4 C:\Documents and Settings\Usher\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Usher\Moje dokumenty\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Usher\*.tmp files -> C:\Documents and Settings\Usher\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-09-09 17:26:13 | 001,191,114 | ---- | C] () -- C:\Documents and Settings\Usher\Pulpit\bez tytułu.bmp [2013-09-08 22:47:37 | 000,000,888 | ---- | C] () -- C:\Documents and Settings\Usher\Pulpit\Sniper Ghost Warrior 2.lnk [2013-09-08 21:34:06 | 000,000,414 | ---- | C] () -- C:\Documents and Settings\Usher\Moje dokumenty\poprawka avi.reg [2013-09-06 19:51:33 | 000,000,316 | ---- | C] () -- C:\WINDOWS\tasks\GlaryInitialize 3.job [2013-09-06 19:51:31 | 000,000,811 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Glary Utilities 3.lnk [2013-09-03 20:40:40 | 000,003,700 | ---- | C] () -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\recently-used.xbel [2013-09-02 23:09:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf [2013-09-01 15:52:01 | 000,000,118 | ---- | C] () -- C:\WINDOWS\Podcasts.INI [2013-09-01 15:40:17 | 000,001,850 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\audials TV.lnk [2013-08-21 14:32:18 | 002,601,752 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_moh.exe [2013-08-19 00:49:04 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\GIMP 2.lnk [2013-05-21 18:42:59 | 000,000,055 | ---- | C] () -- C:\Documents and Settings\Usher\.gtk-bookmarks [2013-02-21 16:31:15 | 002,287,232 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data [2012-11-29 19:31:23 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2012-11-29 19:31:23 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2012-09-21 16:14:27 | 000,139,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2012-09-21 16:14:21 | 000,281,312 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2012-09-21 16:13:47 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2012-06-12 16:56:57 | 000,047,104 | ---- | C] () -- C:\Documents and Settings\Usher\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-06-08 08:16:07 | 000,002,304 | ---- | C] () -- C:\WINDOWS\System32\HtsysmNT.sys [2010-11-03 23:01:11 | 000,000,414 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol [2010-06-12 21:05:14 | 000,000,040 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib [2010-06-02 16:55:59 | 000,000,000 | ---- | C] () -- C:\Program Files\path2.ini [2010-06-02 16:31:36 | 000,000,069 | ---- | C] () -- C:\Program Files\path3.ini [2010-06-02 16:25:44 | 000,000,000 | ---- | C] () -- C:\Program Files\path6.ini [2010-06-02 16:18:25 | 000,000,050 | ---- | C] () -- C:\Program Files\path5.ini [2010-03-22 23:55:59 | 005,767,168 | ---- | C] () -- C:\Documents and Settings\Usher\ntuser.bak [2010-01-03 17:36:28 | 000,383,008 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-12-08 10:19:00 | 099,163,398 | ---- | C] () -- C:\Documents and Settings\Usher\TRACE_BOOT+DRIVERS_1_1.BIN [2008-10-08 21:13:33 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt [2008-10-05 22:55:53 | 000,000,024 | ---- | C] () -- C:\Documents and Settings\Usher\Dane aplikacji\xpy.ini [2008-10-03 16:42:13 | 000,001,160 | RHS- | C] () -- C:\Documents and Settings\Usher\ntuser.pol [2008-10-01 20:17:33 | 000,024,384 | ---- | C] () -- C:\Documents and Settings\Usher\Dane aplikacji\prefs.cst [color=#E56717]========== ZeroAccess Check ==========[/color] [2008-10-10 00:30:31 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 19:20:47 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 19:20:57 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2013-08-05 23:36:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\.minecraft [2013-06-01 11:14:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\.technic [2013-05-30 16:47:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\.techniclauncher [2012-04-19 17:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Auslogics [2012-11-29 19:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\AVI ReComp [2012-09-04 16:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Canneverbe_Limited [2012-03-09 14:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Canon [2012-12-30 23:31:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Canon Easy-WebPrint EX [2013-06-12 17:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\FileZilla [2012-06-04 15:36:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Firefly Studios [2013-09-08 18:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\foobar2000 [2012-01-28 00:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Gadu-Gadu 10 [2013-05-09 20:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\GG [2010-08-16 10:44:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\GlarySoft [2013-08-19 00:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\gtk-2.0 [2012-04-05 19:57:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\ImgBurn [2010-10-14 08:56:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\IrfanView [2013-03-14 13:48:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Minecraft Skin Viewer [2013-03-10 12:42:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Mp3tag [2012-11-29 17:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\NapiProjekt [2012-06-10 19:55:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Need for Speed World [2013-08-10 21:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\OpenCandy [2010-04-22 15:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\OpenOffice.org [2013-08-06 09:53:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Origin [2013-08-14 18:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\PhotoScape [2012-09-27 15:54:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Sony [2013-05-11 08:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\supertuxkart [2012-12-31 12:05:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\TS3Client [2012-05-07 15:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Ubisoft [2013-03-23 16:03:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\Unity [2013-07-04 23:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\uTorrent [2013-08-13 16:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Agnieszka\Dane aplikacji\wargaming.net [2012-11-29 17:31:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask [2013-05-21 17:44:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2009-12-20 21:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Barbie Fashion Show [2009-05-06 22:15:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software [2010-10-20 14:16:13 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2010-10-20 14:31:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonEPP [2010-10-20 14:31:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJEPPEX2 [2010-10-20 14:24:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJMSetup [2010-10-20 21:10:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJScan [2010-10-20 14:23:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJWSpt [2012-05-06 16:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters [2013-08-10 21:10:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2008-12-07 14:34:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Disney Interactive [2009-04-18 08:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Disney Interactive Studios [2013-08-20 10:58:38 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DSS [2013-08-06 18:00:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core [2013-09-08 17:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Logs [2013-08-21 12:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2011-12-11 17:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Firefly Studios [2013-02-27 08:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GG [2010-07-01 18:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2013-03-19 18:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-12-27 18:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Jezyk [2012-05-06 17:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Komputerowa Gratka [2008-12-11 23:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe [2010-04-01 09:17:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2013-07-25 17:06:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin [2010-07-01 18:42:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2011-10-30 22:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PhotoStitch [2013-09-01 15:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RapidSolution [2011-11-18 21:21:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2010-06-12 21:05:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SlySoft [2013-09-01 19:38:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony [2010-11-28 13:56:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-12-27 09:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\The-Dogies [2013-06-28 19:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tmp [2012-05-06 20:04:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-01-31 18:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Vivendi Universal Games [2010-02-11 18:16:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Western Digital [2012-12-11 20:52:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{0DE50C9D-4543-4E98-AD03-1BFD049ABE78} [2013-09-08 19:18:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\.minecraft [2013-07-31 18:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\.technic [2013-06-29 16:41:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\Canon [2013-07-22 19:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\foobar2000 [2013-05-26 19:02:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\IrfanView [2013-07-30 17:20:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Gosik\Dane aplikacji\Origin [2009-01-03 15:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\SACore [2009-04-14 08:07:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\SACore [2013-09-01 15:12:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\.minecraft [2013-07-21 13:34:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\.techniclauncher [2010-10-24 22:41:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Ambient Design [2010-03-21 01:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\AnvSoft [2010-10-25 23:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Auslogics [2012-11-29 19:31:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\AVI ReComp [2013-05-21 17:44:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Babylon [2009-11-16 00:47:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Blender Foundation [2008-12-11 23:06:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Canneverbe_Limited [2011-10-30 21:59:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Canon [2011-04-16 22:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\EAC [2009-06-11 17:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\eSkiMoS R2 [2013-06-17 20:52:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\EurekaLog [2011-01-09 10:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Fabrykagier [2011-01-09 11:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\FabrykaGierNew [2013-09-05 20:05:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\foobar2000 [2008-10-04 20:37:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Gadu-Gadu [2010-11-21 20:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Gadu-Gadu 10 [2009-10-09 23:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\GanymedeNet [2011-09-30 23:46:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\GetRightToGo [2013-09-06 20:48:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\GlarySoft [2013-08-11 14:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\gtk-2.0 [2009-05-25 23:05:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\ImgBurn [2013-03-19 18:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\ipla [2010-12-12 10:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\IrfanView [2013-05-23 21:17:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\MAXON [2012-05-25 22:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\NapiProjekt [2010-07-01 19:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Nokia [2009-12-15 20:11:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\OpenFM [2009-01-30 21:10:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\OpenOffice.org [2012-06-13 21:09:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Oracle [2013-07-25 16:53:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Origin [2011-07-01 23:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\PandoraRecovery [2010-07-01 18:44:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\PC Suite [2013-08-10 20:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\PhotoScape [2013-05-21 18:34:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Publish Providers [2010-09-29 14:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Samsung [2013-09-08 22:47:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Sniper Ghost Warrior 2 [2013-05-21 18:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Sony [2011-06-07 21:14:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Sony Setup [2010-05-10 17:53:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\supertuxkart [2009-10-21 17:30:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\TuxPaint [2012-05-06 20:04:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Ubisoft [2013-09-08 23:07:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\uTorrent [2013-08-07 20:11:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\wargaming.net [2010-05-20 17:46:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Usher\Dane aplikacji\Western Digital [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\dfrg.msc:SummaryInformation @Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:5D784A0F < End of report >