OTL logfile created on: 2011-03-29 20:22:15 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\bartek\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 511,00 Mb Total Physical Memory | 135,00 Mb Available Physical Memory | 26,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 68,00% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,00 Gb Total Space | 7,05 Gb Free Space | 23,51% Space Free | Partition Type: NTFS Drive D: | 30,00 Gb Total Space | 1,04 Gb Free Space | 3,47% Space Free | Partition Type: NTFS Drive E: | 30,00 Gb Total Space | 2,89 Gb Free Space | 9,64% Space Free | Partition Type: NTFS Drive F: | 38,00 Gb Total Space | 6,26 Gb Free Space | 16,47% Space Free | Partition Type: NTFS Drive I: | 2,53 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Drive J: | 1,74 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: CYWILIZA-C98C73 | User Name: bartek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-03-29 19:38:23 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\bartek\Moje dokumenty\Downloads\OTL.exe PRC - [2011-03-04 14:37:00 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011-03-04 14:36:52 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011-03-04 14:36:51 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-01-14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-11-28 10:11:34 | 001,581,056 | R--- | M] () -- D:\MSC.Software\MSC.Licensing\10.8.6\msc.exe PRC - [2007-11-28 10:11:34 | 001,370,752 | R--- | M] (Macrovision Corporation) -- D:\MSC.Software\MSC.Licensing\10.8.6\lmgrd.exe PRC - [2007-06-23 03:23:52 | 000,049,152 | ---- | M] (Dassault Systemes) -- D:\Program Files\Dassault Systemes\B17\intel_a\code\bin\CATSysDemon.exe PRC - [2007-02-13 00:38:18 | 028,933,976 | ---- | M] (Microsoft Corporation) -- F:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe PRC - [2006-07-13 17:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe PRC - [2006-07-13 17:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe PRC - [2006-04-03 19:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe PRC - [2006-03-03 11:46:58 | 000,622,592 | ---- | M] (TP-LINK TECHNOLOGIES CO., LTD.) -- C:\Program Files\TP-LINK\TL-WN321G Wireless Utility\Installer\WINXP\TWCU.exe PRC - [2005-04-06 17:03:28 | 000,110,592 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-03-29 19:38:23 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\bartek\Moje dokumenty\Downloads\OTL.exe MOD - [2008-04-14 22:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2011-03-04 14:37:00 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011-03-04 14:36:52 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-03-26 13:11:09 | 000,079,360 | ---- | M] (SolidWorks) [On_Demand | Stopped] -- C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe -- (SolidWorks Licensing Service) SRV - [2009-03-19 12:31:52 | 000,083,240 | ---- | M] (Dassault Systèmes SolidWorks Corp.) [On_Demand | Stopped] -- D:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe -- (CoordinatorServiceHost) SRV - [2007-11-28 10:11:34 | 001,370,752 | R--- | M] (Macrovision Corporation) [Auto | Running] -- D:\MSC.Software\MSC.Licensing\10.8.6\lmgrd.exe -- (MSC.Licensing 10.8.6) SRV - [2007-10-24 22:50:50 | 000,079,360 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service) SRV - [2007-06-23 03:23:52 | 000,049,152 | ---- | M] (Dassault Systemes) [Auto | Running] -- D:\Program Files\Dassault Systemes\B17\intel_a\code\bin\CATSysDemon.exe -- (BBDemon) SRV - [2007-05-12 17:07:18 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service) SRV - [2007-02-13 00:38:18 | 028,933,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- F:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$AUTODESKVAULT) SQL Server (AUTODESKVAULT) SRV - [2006-07-13 17:59:48 | 000,131,131 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp) SRV - [2006-07-13 17:59:32 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog) SRV - [2006-04-03 19:04:02 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe -- (ForcewareWebInterface) SRV - [2005-09-23 08:01:16 | 002,799,808 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon80) SRV - [2005-04-06 17:03:28 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe -- (BlueSoleil Hid Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-03-04 16:11:12 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011-03-01 21:37:27 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2010-06-17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 14:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009-10-12 19:19:40 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2008-12-11 11:24:20 | 004,959,232 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-04-14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2007-07-20 09:39:29 | 000,639,224 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2006-10-14 01:53:00 | 000,014,912 | ---- | M] (IBM) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\LUMDriver.sys -- (LUMDriver) DRV - [2006-07-11 15:38:30 | 000,020,480 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006-07-11 15:38:28 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2006-06-28 11:38:56 | 000,105,088 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata) DRV - [2006-06-19 00:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2006-06-14 18:00:34 | 000,059,264 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync04.sys -- (sfsync04) StarForce Protection Synchronization Driver (version 4.x) DRV - [2006-06-14 17:10:38 | 000,058,232 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2006-06-14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [2006-01-12 19:46:28 | 000,252,928 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73) DRV - [2005-05-31 16:40:20 | 000,020,480 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio) DRV - [2005-05-31 10:42:28 | 000,023,000 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb) DRV - [2005-04-30 15:50:20 | 000,011,860 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum) DRV - [2005-04-30 15:50:10 | 000,028,271 | ---- | M] (IVT Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr) DRV - [2005-04-30 15:48:58 | 000,010,804 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BtNetDrv.sys -- (BT) DRV - [2005-03-25 18:18:48 | 000,082,148 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr) DRV - [2004-12-16 17:32:54 | 000,013,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BTNetFilter.sys -- (BTNetFilter) DRV - [2004-10-19 14:37:38 | 000,061,312 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm) DRV - [2004-08-22 16:31:48 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt) DRV - [2004-08-22 16:31:10 | 000,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\d347bus.sys -- (d347bus) DRV - [2004-05-02 10:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\GVCplDrv.sys -- (GVCplDrv) DRV - [2001-08-18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) DRV - [2001-08-17 23:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: cssreloader@kenneth.io:1.0.2 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1" FF - prefs.js..network.proxy.backup.ftp_port: 9666 FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1" FF - prefs.js..network.proxy.backup.gopher_port: 9666 FF - prefs.js..network.proxy.backup.socks: "127.0.0.1" FF - prefs.js..network.proxy.backup.socks_port: 9666 FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1" FF - prefs.js..network.proxy.backup.ssl_port: 9666 FF - prefs.js..network.proxy.ftp: "127.0.0.1" FF - prefs.js..network.proxy.ftp_port: 9666 FF - prefs.js..network.proxy.gopher: "127.0.0.1" FF - prefs.js..network.proxy.gopher_port: 9666 FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 9666 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "127.0.0.1" FF - prefs.js..network.proxy.socks_port: 9666 FF - prefs.js..network.proxy.ssl: "127.0.0.1" FF - prefs.js..network.proxy.ssl_port: 9666 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-27 13:55:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-11-03 13:08:04 | 000,000,000 | ---D | M] [2009-02-23 12:54:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\bartek\Dane aplikacji\Mozilla\Extensions [2011-03-29 20:17:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\bartek\Dane aplikacji\Mozilla\Firefox\Profiles\r3nkuxij.default\extensions [2009-10-26 01:11:32 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\bartek\Dane aplikacji\Mozilla\Firefox\Profiles\r3nkuxij.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-03-04 23:59:54 | 000,000,000 | ---D | M] (Cooliris) -- C:\Documents and Settings\bartek\Dane aplikacji\Mozilla\Firefox\Profiles\r3nkuxij.default\extensions\piclens@cooliris.com [2011-03-29 16:48:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-11-03 13:08:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011-03-02 09:26:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\BARTEK\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\R3NKUXIJ.DEFAULT\EXTENSIONS\{7B13EC3E-999A-4B70-B9CB-2617B8323822} File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\BARTEK\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\R3NKUXIJ.DEFAULT\EXTENSIONS\VSHARE@TOOLBAR [2009-03-18 10:48:46 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009-03-09 00:02:22 | 000,222,720 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\SaveComponent.dll [2011-02-02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2009-03-12 16:16:54 | 000,155,648 | ---- | M] (Dassault Systèmes SolidWorks Corp.) -- C:\Program Files\Mozilla Firefox\plugins\npEModelPlugin.dll [2007-02-13 12:53:00 | 000,630,784 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPSNOOKER.dll [2010-04-01 19:33:11 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-04-01 19:33:11 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-04-01 19:33:11 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-04-01 19:33:11 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-04-01 19:33:11 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-04-01 19:33:11 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-01-12 22:05:01 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (BitComet) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - No CLSID value found. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKCU..\Run: [AQQ] C:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\TL-WN321G Wireless Utility.lnk = C:\Program Files\TP-LINK\TL-WN321G Wireless Utility\Installer\WINXP\TWCU.exe (TP-LINK TECHNOLOGIES CO., LTD.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe () O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe () O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (BitComet) O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\bartek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004-04-10 23:49:35 | 003,258,368 | ---- | M] () - C:\Autobusy.ppt -- [ NTFS ] O32 - AutoRun File - [2008-03-11 20:14:22 | 000,000,000 | ---D | M] - C:\autodesk -- [ NTFS ] O32 - AutoRun File - [2007-02-19 16:27:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2008-02-26 20:08:25 | 000,000,000 | ---D | M] - D:\autodesk -- [ NTFS ] O32 - AutoRun File - [2008-02-26 20:10:27 | 000,000,000 | ---D | M] - F:\autodesk -- [ NTFS ] O32 - AutoRun File - [2010-08-16 14:57:50 | 000,000,154 | R--- | M] () - I:\autorun.cfg -- [ UDF ] O32 - AutoRun File - [2010-10-05 16:53:16 | 000,214,344 | R--- | M] (Sports Interactive) - I:\autorun.exe -- [ UDF ] O32 - AutoRun File - [2006-09-11 15:26:42 | 000,000,027 | R--- | M] () - I:\autorun.inf -- [ UDF ] O32 - AutoRun File - [2007-04-27 15:33:12 | 000,000,047 | R--- | M] () - J:\Autorun.inf -- [ UDF ] O32 - AutoRun File - [2007-04-10 17:32:03 | 000,247,296 | R--- | M] () - J:\autorun.exe -- [ UDF ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-03-29 20:17:05 | 000,000,000 | ---D | C] -- C:\_OTL [2011-03-29 19:31:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\bartek\Recent [2011-03-29 18:00:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\K-Lite Codec Pack [2011-03-29 18:00:22 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2011-03-29 18:00:21 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2011-03-29 18:00:21 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2011-03-29 18:00:11 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2011-03-29 17:28:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2011-03-29 17:20:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Dane aplikacji\Avira [2011-03-29 17:19:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Avira [2011-03-29 17:19:39 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2011-03-29 17:19:36 | 000,137,656 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2011-03-29 17:19:36 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2011-03-29 17:19:36 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2011-03-29 17:19:36 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2011-03-29 17:19:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Avira [2011-03-29 17:08:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Menu Start\Programy\Google Chrome [2011-03-29 17:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Moje dokumenty\Pobieranie [2011-03-24 12:59:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Menu Start\Programy\WapSter [2011-03-24 12:59:38 | 000,000,000 | ---D | C] -- C:\Program Files\WapSter [2011-03-09 22:21:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\PokerStars [2011-03-02 09:37:34 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011-03-02 09:26:30 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2011-03-02 09:26:30 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2011-03-02 09:26:30 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2011-03-02 09:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\McAfee [2011-03-01 21:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Dane aplikacji\Hamachi [2011-03-01 21:37:27 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2011-03-01 21:37:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Hamachi [2011-03-01 21:37:25 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi [2011-03-01 21:15:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\bartek\Moje dokumenty\Command and Conquer Generals Data [2007-10-03 12:57:40 | 000,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys [2007-10-03 12:57:40 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys [7 C:\Documents and Settings\bartek\Moje dokumenty\*.tmp files -> C:\Documents and Settings\bartek\Moje dokumenty\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-03-29 20:19:08 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2011-03-29 20:18:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-03-29 20:08:14 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-1965331169-1801674531-1003UA.job [2011-03-29 19:36:48 | 000,400,866 | ---- | M] () -- C:\Documents and Settings\bartek\Moje dokumenty\cc_20110329_193613.reg [2011-03-29 19:29:00 | 000,328,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-29 17:08:56 | 000,002,311 | ---- | M] () -- C:\Documents and Settings\bartek\Pulpit\Google Chrome.lnk [2011-03-29 11:08:00 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-1965331169-1801674531-1003Core.job [2011-03-29 03:30:47 | 000,566,856 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-03-29 03:30:47 | 000,486,108 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-03-29 03:30:47 | 000,115,208 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-03-29 03:30:47 | 000,088,926 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-03-27 21:05:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-03-25 01:18:41 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-03-24 22:51:23 | 000,166,400 | ---- | M] () -- C:\Documents and Settings\bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-24 20:30:16 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2011-03-24 20:30:16 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for [2011-03-22 19:31:31 | 000,174,476 | ---- | M] () -- C:\Documents and Settings\bartek\Pulpit\mieszkaniowe.pdf [2011-03-09 22:21:45 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\PokerStars.lnk [2011-03-04 16:11:12 | 000,137,656 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2011-03-04 14:37:13 | 000,061,960 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2011-03-01 21:37:27 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2011-03-01 21:30:35 | 000,000,978 | ---- | M] () -- C:\WINDOWS\eReg.dat [7 C:\Documents and Settings\bartek\Moje dokumenty\*.tmp files -> C:\Documents and Settings\bartek\Moje dokumenty\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-29 19:36:16 | 000,400,866 | ---- | C] () -- C:\Documents and Settings\bartek\Moje dokumenty\cc_20110329_193613.reg [2011-03-29 18:00:25 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-03-29 18:00:22 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2011-03-29 18:00:21 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-03-29 18:00:21 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-03-29 18:00:18 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-03-29 17:08:56 | 000,002,311 | ---- | C] () -- C:\Documents and Settings\bartek\Pulpit\Google Chrome.lnk [2011-03-24 20:30:16 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn [2011-03-24 20:30:16 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for [2011-03-22 19:31:30 | 000,174,476 | ---- | C] () -- C:\Documents and Settings\bartek\Pulpit\mieszkaniowe.pdf [2011-03-10 22:51:18 | 263,968,257 | ---- | C] () -- C:\Documents and Settings\bartek\Pulpit\Shw_1.0.exe [2011-03-09 22:21:45 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\PokerStars.lnk [2010-04-27 19:03:29 | 000,000,026 | ---- | C] () -- C:\WINDOWS\uml.INI [2010-04-26 20:46:53 | 000,000,185 | ---- | C] () -- C:\WINDOWS\PMGEDIT.INI [2010-04-26 20:46:49 | 000,000,570 | ---- | C] () -- C:\WINDOWS\Simrun2.ini [2010-04-26 20:46:47 | 000,004,032 | ---- | C] () -- C:\WINDOWS\System32\CALL32.DLL [2010-04-26 20:46:46 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\LONG32.DLL [2010-04-26 20:46:41 | 000,006,341 | ---- | C] () -- C:\WINDOWS\ProMod4.ini [2010-04-26 20:46:40 | 000,274,475 | ---- | C] () -- C:\WINDOWS\System32\Pmcp.dll [2010-03-25 23:47:44 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll [2010-01-12 23:28:08 | 000,000,259 | ---- | C] () -- C:\WINDOWS\shell45.ini [2010-01-12 23:28:08 | 000,000,045 | ---- | C] () -- C:\WINDOWS\dk.ini [2010-01-12 23:28:08 | 000,000,042 | ---- | C] () -- C:\WINDOWS\neuronix.ini [2009-12-22 04:27:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2009-06-24 00:06:12 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini [2009-06-23 23:50:09 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfmonnt.dll [2009-06-23 23:50:06 | 000,000,164 | ---- | C] () -- C:\WINDOWS\System32\psconv.ini [2009-05-06 08:41:19 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2009-03-26 13:11:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\eDrawingOfficeAutomator.INI [2008-12-05 23:42:21 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2008-11-21 21:12:24 | 001,683,456 | ---- | C] () -- C:\WINDOWS\System32\Ltclr13n.dll [2008-11-21 21:12:24 | 000,000,481 | ---- | C] () -- C:\WINDOWS\Simrun3.ini [2008-11-21 21:12:21 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\LFKODAK.DLL [2008-11-21 21:12:20 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\LFFPX7.DLL [2008-11-21 21:09:44 | 000,000,223 | ---- | C] () -- C:\WINDOWS\promod.ini [2008-10-13 20:05:53 | 000,311,296 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe [2008-10-13 20:05:53 | 000,290,918 | ---- | C] () -- C:\WINDOWS\System32\Install7x.dll [2008-10-13 20:05:53 | 000,002,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\rt73.bin [2008-07-07 17:53:08 | 000,000,079 | ---- | C] () -- C:\WINDOWS\Kit.ini [2008-05-09 00:10:13 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lbj.ini [2008-05-09 00:10:05 | 000,000,443 | ---- | C] () -- C:\WINDOWS\dwg2pdf_win.INI [2008-05-09 00:09:24 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\dwg2pdf_win.dat [2008-02-21 04:03:24 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2008-02-12 00:38:26 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll [2008-02-12 00:38:26 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll [2008-01-14 13:10:25 | 000,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys [2008-01-14 13:10:25 | 000,011,860 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys [2007-12-19 21:41:14 | 000,000,978 | ---- | C] () -- C:\WINDOWS\eReg.dat [2007-12-10 13:55:37 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wa.INI [2007-11-26 16:31:34 | 000,001,456 | ---- | C] () -- C:\WINDOWS\unins001.dat [2007-11-20 21:01:26 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2007-10-22 17:27:15 | 000,044,953 | ---- | C] () -- C:\WINDOWS\War3Unin.dat [2007-08-21 20:46:34 | 000,059,160 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll [2007-05-30 11:16:57 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\QTSBandwidthCache [2007-03-29 09:07:54 | 000,166,400 | ---- | C] () -- C:\Documents and Settings\bartek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007-03-28 20:38:51 | 000,299,008 | ---- | C] () -- C:\Program Files\bestplayer1.0.exe [2007-03-28 10:11:12 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\bartek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007-03-26 15:38:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mtstack.INI [2007-03-26 15:30:04 | 000,302,080 | ---- | C] () -- C:\WINDOWS\unin0415.exe [2007-03-20 20:12:39 | 000,000,535 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2007-03-17 22:23:29 | 000,002,565 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2007-03-08 12:50:05 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2007-03-07 11:59:56 | 000,002,949 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2007-03-06 21:59:03 | 000,000,802 | ---- | C] () -- C:\WINDOWS\mozver.dat [2007-03-06 19:08:57 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2007-03-06 19:06:32 | 000,328,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2007-03-06 18:58:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2007-03-06 18:36:17 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys [2007-03-06 18:30:40 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2007-03-06 18:25:33 | 000,005,309 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2007-03-06 18:25:32 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2007-03-06 18:20:21 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2007-03-06 18:14:43 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2007-02-05 16:47:26 | 000,016,250 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini [2007-02-05 16:47:24 | 000,021,728 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini [2007-02-05 16:47:18 | 000,016,192 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini [2007-02-05 15:24:28 | 000,018,271 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin [2007-02-05 15:24:26 | 000,099,999 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin [2006-06-01 11:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-06-01 11:22:00 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2006-06-01 11:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-06-01 11:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2006-06-01 11:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-06-01 11:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-06-01 11:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-06-01 11:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2006-06-01 11:22:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2006-06-01 11:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-06-01 11:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2005-10-20 12:45:50 | 000,906,784 | ---- | C] () -- C:\WINDOWS\System32\owl52f.dll [2005-10-20 12:45:49 | 000,188,448 | ---- | C] () -- C:\WINDOWS\System32\bocof.dll [2004-08-22 17:04:56 | 000,069,120 | ---- | C] () -- C:\WINDOWS\daemon.dll [2004-08-04 02:56:48 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004-08-02 16:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2002-05-16 00:38:40 | 000,091,136 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll [2001-10-28 17:42:30 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\redmonnt.dll [2001-10-26 19:15:16 | 000,566,856 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 19:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 19:15:16 | 000,115,208 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 19:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-08-23 16:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 16:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-18 00:30:24 | 000,486,108 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-18 00:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-18 00:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-18 00:30:22 | 000,088,926 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-18 00:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-07-22 01:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-22 01:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001-07-22 01:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat < End of report >