OTL logfile created on: 2010-06-25 18:28:37 - Run 1 OTL by OldTimer - Version 3.2.7.0 Folder = C:\Documents and Settings\Wiaderek\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 979,00 Mb Total Physical Memory | 442,00 Mb Available Physical Memory | 45,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 64,00% Paging File free Paging file location(s): c:\pagefile.sys 1464 2928 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 74,43 Gb Total Space | 24,77 Gb Free Space | 33,27% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: D5WBJ24J Current User Name: Wiaderek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-06-25 18:24:13 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wiaderek\Pulpit\OTL.exe PRC - [2010-06-23 06:01:02 | 000,198,608 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe PRC - [2010-05-27 15:24:51 | 001,287,120 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsTray.exe PRC - [2010-03-23 18:40:32 | 000,967,888 | ---- | M] () -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe PRC - [2010-03-23 18:40:18 | 002,453,392 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe PRC - [2010-03-23 18:40:18 | 001,994,640 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe PRC - [2010-03-15 12:50:36 | 001,142,224 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsSvc.exe PRC - [2010-03-11 12:09:22 | 000,366,840 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe PRC - [2009-06-03 14:46:38 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe PRC - [2009-01-30 00:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe PRC - [2009-01-19 15:54:16 | 000,667,648 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe PRC - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe PRC - [2008-08-18 12:39:28 | 000,455,960 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe PRC - [2008-08-15 10:51:34 | 001,448,576 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe PRC - [2008-08-15 10:51:34 | 000,604,776 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe PRC - [2008-07-01 20:57:10 | 000,110,592 | ---- | M] (Broadcom Corporation) -- C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe PRC - [2008-06-30 23:59:52 | 000,040,960 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe PRC - [2008-06-30 23:59:30 | 000,196,608 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe PRC - [2008-06-30 23:59:28 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe PRC - [2008-06-30 23:59:26 | 000,046,376 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe PRC - [2008-06-30 23:18:28 | 000,442,467 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe PRC - [2008-06-30 23:18:24 | 000,221,273 | ---- | M] (IDT, Inc.) -- c:\drivers\audio\R190031\stacsv.exe PRC - [2008-06-30 23:18:22 | 000,466,944 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe PRC - [2008-06-24 09:16:50 | 000,243,000 | ---- | M] (Wave Systems Corp.) -- C:\Program Files\Wave Systems Corp\SecureUpgrade.exe PRC - [2008-06-15 08:12:20 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe PRC - [2008-06-15 08:12:18 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2008-06-12 10:59:58 | 000,786,432 | ---- | M] (Wave Systems Corp.) -- C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe PRC - [2008-06-11 13:39:22 | 001,664,248 | ---- | M] (AuthenTec, Inc.) -- C:\Program Files\Fingerprint Sensor\AtService.exe PRC - [2008-06-03 17:28:50 | 000,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe PRC - [2008-05-23 16:06:08 | 000,128,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe PRC - [2008-05-14 19:42:16 | 000,105,472 | ---- | M] (Wave Systems Corp.) -- C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\WavXDocMgr.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-02-10 15:29:47 | 000,242,544 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe PRC - [2004-02-26 15:43:16 | 000,962,661 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-06-25 18:24:13 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wiaderek\Pulpit\OTL.exe MOD - [2010-03-03 17:54:42 | 000,276,648 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll MOD - [2010-02-26 08:16:18 | 000,154,160 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\smum32.dll MOD - [2009-10-30 11:18:16 | 000,147,024 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\PCTGMhk.dll MOD - [2008-08-15 10:46:02 | 000,073,728 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\BtMmHook.dll MOD - [2008-04-14 19:16:32 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-06-23 06:01:02 | 000,198,608 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe -- (Browser Defender Update Service) SRV - [2010-03-23 18:40:32 | 000,967,888 | ---- | M] () [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent) SRV - [2010-03-15 12:50:36 | 001,142,224 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService) SRV - [2010-03-11 12:09:22 | 000,366,840 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService) SRV - [2009-03-01 18:09:22 | 000,077,824 | ---- | M] (Smith Micro Software, Inc.) [Auto | Stopped] -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe -- (SMManager) SRV - [2009-01-30 00:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter) SRV - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter) SRV - [2008-08-18 12:39:28 | 000,455,960 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe -- (dcpsysmgrsvc) SRV - [2008-07-01 20:57:10 | 000,110,592 | ---- | M] (Broadcom Corporation) [Auto | Running] -- C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe -- (BrcmMgmtAgent) SRV - [2008-06-30 23:18:24 | 000,221,273 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\drivers\audio\R190031\stacsv.exe -- (STacSV) SRV - [2008-06-15 08:12:20 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R) SRV - [2008-06-12 10:59:58 | 000,786,432 | ---- | M] (Wave Systems Corp.) [Auto | Running] -- C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe -- (TdmService) SRV - [2008-06-11 13:39:22 | 001,664,248 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- C:\Program Files\Fingerprint Sensor\AtService.exe -- (ATService) SRV - [2008-06-03 17:28:50 | 000,386,328 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe -- (buttonsvc32) SRV - [2008-04-25 17:45:40 | 000,638,976 | ---- | M] (Wave Systems Corp.) [On_Demand | Stopped] -- C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe -- (SecureStorageService) SRV - [2008-03-10 17:48:48 | 001,249,280 | ---- | M] () [Auto | Stopped] -- C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe -- (tcsd_win32.exe) SRV - [2007-02-10 15:29:54 | 029,178,224 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$ADSTACHURA) SQL Server (ADSTACHURA) SRV - [2007-02-10 15:29:47 | 000,242,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser) SRV - [2005-10-14 12:50:19 | 000,045,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-05-11 16:16:02 | 000,218,592 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\PCTCore.sys -- (PCTCore) DRV - [2010-03-23 18:40:00 | 000,224,808 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard) DRV - [2010-03-03 17:54:16 | 000,086,720 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect) DRV - [2010-03-03 17:54:14 | 000,025,160 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp) DRV - [2010-03-03 17:54:12 | 000,015,376 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd) DRV - [2008-09-17 06:03:02 | 000,110,080 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R) DRV - [2008-09-17 06:02:42 | 006,045,504 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2008-08-18 18:01:26 | 000,037,032 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem) DRV - [2008-08-18 18:01:20 | 000,156,392 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS) DRV - [2008-08-18 18:01:18 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver) DRV - [2008-08-18 18:01:14 | 000,991,016 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL) DRV - [2008-08-18 18:01:12 | 000,534,440 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio) DRV - [2008-08-18 17:37:14 | 000,047,272 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2008-07-12 15:58:08 | 000,010,480 | ---- | M] (Broadcom Corporation) [Kernel | Auto | Running] -- C:\Program Files\Broadcom\MgmtAgent\BASFND.sys -- (BASFND) DRV - [2008-07-02 23:51:20 | 000,318,488 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iaStor.sys -- (iaStor) DRV - [2008-07-02 00:42:28 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2008-06-30 23:59:26 | 000,170,032 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService) DRV - [2008-06-30 23:18:26 | 001,381,914 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2008-06-30 23:18:22 | 000,108,160 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud) DRV - [2008-06-24 09:16:52 | 000,172,344 | ---- | M] (Wave Systems Corp.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\WavxDMgr.sys -- (WavxDMgr) DRV - [2008-06-22 11:42:40 | 000,985,472 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2008-06-22 11:42:40 | 000,731,264 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2008-06-22 11:42:40 | 000,210,688 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2008-06-19 20:43:36 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2008-06-06 11:15:40 | 000,098,816 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\baspxp32.sys -- (Blfp) DRV - [2008-06-04 16:14:00 | 000,026,608 | ---- | M] (Dell Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\PBADRV.sys -- (PBADRV) DRV - [2008-04-15 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008-04-13 20:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp) DRV - [2008-04-13 20:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp) DRV - [2001-10-26 16:58:26 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde) DRV - [2001-08-17 22:07:42 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow) DRV - [2001-08-17 22:07:40 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3) DRV - [2001-08-17 22:07:38 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi) DRV - [2001-08-17 22:07:34 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx) DRV - [2001-08-17 22:07:32 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810) DRV - [2001-08-17 21:52:20 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra) DRV - [2001-08-17 21:52:18 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160) DRV - [2001-08-17 21:52:18 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080) DRV - [2001-08-17 21:52:16 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280) DRV - [2001-08-17 21:52:14 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k) DRV - [2001-08-17 21:52:10 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x) DRV - [2001-08-17 21:51:58 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc) DRV - [2001-08-17 21:51:56 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550) DRV - [2001-08-17 21:51:54 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-3936235108-1896206242-817460436-1005\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL File not found IE - HKU\S-1-5-21-3936235108-1896206242-817460436-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.openintab: true FF - prefs.js..browser.search.selectedEngine: "Merlin" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {cb84136f-9c44-433a-9048-c5cd9df1dc16}:2.0.1 FF - HKLM\software\mozilla\Firefox\extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\Spyware Doctor\BDT\FireFox\ [2010-06-24 19:51:56 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-31 18:16:38 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-27 18:51:12 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.18\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2008-12-25 19:44:14 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.18\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2009-01-01 17:14:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Mozilla\Extensions [2010-06-25 08:58:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Mozilla\Firefox\Profiles\z4mdc4vj.default\extensions [2009-09-04 20:35:16 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Mozilla\Firefox\Profiles\z4mdc4vj.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2009-08-27 13:54:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Mozilla\Firefox\Profiles\z4mdc4vj.default\extensions\{dc572301-7619-498c-a57d-39143191b318} [2010-06-25 08:58:05 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-04-01 19:33:11 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-04-01 19:33:11 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-04-01 19:33:11 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-04-01 19:33:11 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-04-01 19:33:11 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-04-01 19:33:11 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-08-27 11:59:08 | 000,000,789 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKU\S-1-5-21-3936235108-1896206242-817460436-1005\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation) O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.) O4 - HKLM..\Run: [autoclk] File not found O4 - HKLM..\Run: [ChangeTPMAuth] C:\Program Files\Wave Systems Corp\Common\ChangeTPMAuth.exe (Wave Systems Corp.) O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4 - HKLM..\Run: [DCPstrApp] C:\Program Files\Dell\Dell ControlPoint\Security Manager\SecurityDeviceInfoSetRegistryString.exe (Broadcom Corporation) O4 - HKLM..\Run: [DellConnectionManager] C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe (Smith Micro Software, Inc.) O4 - HKLM..\Run: [DellControlPoint] C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe (Dell Inc.) O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) O4 - HKLM..\Run: [EmbassySecurityCheck] C:\Program Files\Wave Systems Corp\EMBASSY Security Setup\EMBASSYSecurityCheck.exe (Wave Systems Corp.) O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation) O4 - HKLM..\Run: [ISTray] C:\Program Files\Spyware Doctor\pctsTray.exe (PC Tools) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.) O4 - HKLM..\Run: [SecureUpgrade] C:\Program Files\Wave Systems Corp\SecureUpgrade.exe (Wave Systems Corp.) O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.) O4 - HKLM..\Run: [WavXMgr] C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\WavXDocMgr.exe (Wave Systems Corp.) O4 - HKU\.DEFAULT..\Run: [DWQueuedReporting] c:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation) O4 - HKU\S-1-5-18..\Run: [DWQueuedReporting] c:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation) O4 - HKU\S-1-5-21-3936235108-1896206242-817460436-1005..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Wiaderek\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-3936235108-1896206242-817460436-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1251368642117 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.2 O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Wiaderek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Wiaderek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O30 - LSA: Authentication Packages - (wvauth) - C:\WINDOWS\System32\wvauth.dll (Wave Systems Corp.) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-05-09 06:58:41 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{c4f70787-04f3-11de-ae72-00225f0bf101}\Shell\AUtoPlay\coMMaNd - "" = bpcdfs.exe O33 - MountPoints2\{c4f70787-04f3-11de-ae72-00225f0bf101}\Shell\AutoRun\command - "" = bpcdfs.exe O33 - MountPoints2\{c4f70787-04f3-11de-ae72-00225f0bf101}\Shell\exPlore\comMANd - "" = bpcdfs.exe O33 - MountPoints2\{c4f70787-04f3-11de-ae72-00225f0bf101}\Shell\OPeN\CoMMand - "" = bpcdfs.exe O33 - MountPoints2\{ca93f5e2-4bd3-11df-b15a-00225f0bf101}\Shell - "" = AutoRun O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-06-25 18:24:07 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Wiaderek\Pulpit\OTL.exe [2010-06-23 13:12:11 | 000,000,000 | ---D | C] -- C:\7e5173b927d7e7b3834f05e5adf006 [2010-06-19 14:35:46 | 000,000,000 | ---D | C] -- C:\3bdce73290aef20c28fb3b06 [2010-06-19 14:35:30 | 000,000,000 | ---D | C] -- C:\3320d4da496654a38bf69349 [2010-06-14 10:47:32 | 000,000,000 | ---D | C] -- C:\d84c82ee46ef9a4a68 [2010-06-08 18:58:23 | 000,000,000 | ---D | C] -- C:\202d94ab5b7e3dc914 [2010-06-08 18:56:48 | 000,000,000 | ---D | C] -- C:\95c7619626528a7cb5f9212ab057 [2010-06-04 10:24:12 | 000,000,000 | ---D | C] -- C:\8b55b6e938bde169d047c281 [2010-06-04 10:23:43 | 000,000,000 | ---D | C] -- C:\085c2c06ef24ffb82c [2010-06-02 14:06:44 | 000,000,000 | ---D | C] -- C:\a8f1b9310df4de45ea [2010-06-02 14:02:06 | 000,000,000 | ---D | C] -- C:\68669595d73d0b7395 [2010-05-31 18:16:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-05-31 18:16:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Mozilla [2010-05-30 17:58:27 | 000,000,000 | ---D | C] -- C:\e37abb0a30abbd0f8f48697b [2010-05-30 17:57:36 | 000,000,000 | ---D | C] -- C:\2e428cd50d35187f4584bb4fd55288 [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-06-25 18:24:43 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Pulpit\ettn64j9.exe [2010-06-25 18:24:13 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wiaderek\Pulpit\OTL.exe [2010-06-25 18:23:19 | 001,474,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat [2010-06-25 18:20:26 | 000,002,300 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-06-25 18:14:22 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Ustawienia lokalne\Dane aplikacji\WavXMapDrive.bat [2010-06-25 18:13:47 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-06-25 18:13:30 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-06-25 18:13:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-06-25 18:13:13 | 1026,727,936 | -HS- | M] () -- C:\hiberfil.sys [2010-06-25 10:38:16 | 000,001,040 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-06-23 18:39:48 | 001,212,868 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-06-23 18:39:48 | 000,550,316 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-06-23 18:39:48 | 000,491,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-06-23 18:39:48 | 000,108,376 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-06-23 18:39:48 | 000,090,634 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-06-23 06:01:10 | 000,264,144 | ---- | M] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDRes.dll [2010-06-23 06:01:10 | 000,149,456 | ---- | M] (PC Tools) -- C:\WINDOWS\SGDetectionTool.dll [2010-06-23 06:01:10 | 000,000,192 | ---- | M] () -- C:\WINDOWS\UDB.zip [2010-06-23 06:01:09 | 001,435,600 | ---- | M] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDCore.dll [2010-06-23 06:01:08 | 000,767,952 | ---- | M] () -- C:\WINDOWS\BDTSupport.dll [2010-06-21 18:00:09 | 000,000,448 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job [2010-06-21 15:16:22 | 002,772,992 | ---- | M] () -- C:\Documents and Settings\Wiaderek\ntuser.dat [2010-06-21 15:16:22 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Wiaderek\ntuser.ini [2010-06-20 11:30:13 | 000,000,857 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Pulpit\Zamówienia 4.lnk [2010-06-19 20:33:56 | 000,137,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-06-19 15:19:17 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-06-18 19:17:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\null [2010-06-15 12:40:06 | 416,677,888 | ---- | M] () -- C:\zamowienia4_ix_data.ndf [2010-06-15 12:40:06 | 364,183,552 | ---- | M] () -- C:\zamowienia4_data.mdf [2010-06-15 12:40:06 | 001,048,576 | ---- | M] () -- C:\zamowienia4_log.ldf [2010-06-09 19:09:46 | 000,025,252 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Pulpit\8c6c20282e.jpeg [2010-06-09 19:01:25 | 000,027,406 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Pulpit\2b1faca241.jpeg [2010-06-08 04:16:01 | 000,763,832 | ---- | M] () -- C:\WINDOWS\BDTSupport.dll.old [2010-06-08 02:21:02 | 001,652,664 | ---- | M] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDCore.dll.old [2010-06-05 20:21:08 | 000,001,920 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 2 Cztery pory roku.lnk [2010-06-02 15:13:22 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Wiaderek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-06-25 18:24:40 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Wiaderek\Pulpit\ettn64j9.exe [2010-06-20 11:30:13 | 000,000,857 | ---- | C] () -- C:\Documents and Settings\Wiaderek\Pulpit\Zamówienia 4.lnk [2010-06-20 11:30:03 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc1_1_log.ldf [2010-06-20 11:27:27 | 1612,709,888 | ---- | C] () -- C:\zamowienia4_tc1_1_ix.ndf [2010-06-20 11:25:43 | 1073,741,824 | ---- | C] () -- C:\zamowienia4_tc1_1.mdf [2010-06-20 11:25:43 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc1_log.ldf [2010-06-20 11:25:24 | 226,033,664 | ---- | C] () -- C:\zamowienia4_tc1_ix.ndf [2010-06-20 11:25:09 | 214,171,648 | ---- | C] () -- C:\zamowienia4_tc1.mdf [2010-06-20 11:25:08 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc_3_log.ldf [2010-06-20 11:22:28 | 2252,341,248 | ---- | C] () -- C:\zamowienia4_tc_3_ix.ndf [2010-06-20 11:21:14 | 960,495,616 | ---- | C] () -- C:\zamowienia4_tc_3.mdf [2010-06-20 11:21:13 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc_2_log.ldf [2010-06-20 11:18:23 | 2269,118,464 | ---- | C] () -- C:\zamowienia4_tc_2_ix.ndf [2010-06-20 11:17:18 | 970,981,376 | ---- | C] () -- C:\zamowienia4_tc_2.mdf [2010-06-20 11:17:17 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc_1_log.ldf [2010-06-20 11:14:34 | 2289,041,408 | ---- | C] () -- C:\zamowienia4_tc_1_ix.ndf [2010-06-20 11:13:36 | 988,807,168 | ---- | C] () -- C:\zamowienia4_tc_1.mdf [2010-06-20 11:13:35 | 001,048,576 | ---- | C] () -- C:\zamowienia4_tc_log.ldf [2010-06-20 11:13:21 | 261,095,424 | ---- | C] () -- C:\zamowienia4_tc_ix.ndf [2010-06-20 11:13:08 | 263,192,576 | ---- | C] () -- C:\zamowienia4_tc.mdf [2010-06-20 11:13:08 | 001,048,576 | ---- | C] () -- C:\zamowienia4_ob_log.ldf [2010-06-20 11:12:04 | 393,216,000 | ---- | C] () -- C:\zamowienia4_ob.mdf [2010-06-20 11:12:04 | 001,048,576 | ---- | C] () -- C:\zamowienia4_log.ldf [2010-06-20 11:11:39 | 416,677,888 | ---- | C] () -- C:\zamowienia4_ix_data.ndf [2010-06-20 11:11:20 | 364,183,552 | ---- | C] () -- C:\zamowienia4_data.mdf [2010-06-09 19:09:45 | 000,025,252 | ---- | C] () -- C:\Documents and Settings\Wiaderek\Pulpit\8c6c20282e.jpeg [2010-06-09 19:01:23 | 000,027,406 | ---- | C] () -- C:\Documents and Settings\Wiaderek\Pulpit\2b1faca241.jpeg [2010-06-09 18:50:05 | 000,043,774 | ---- | C] () -- C:\Documents and Settings\Wiaderek\Pulpit\5aee1b3ea0.jpeg [2010-06-05 20:21:08 | 000,001,920 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 2 Cztery pory roku.lnk [2010-04-18 12:58:15 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010-04-16 18:33:14 | 000,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll [2010-04-16 18:33:14 | 000,763,832 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll.old [2009-03-01 18:01:02 | 000,143,360 | R--- | C] () -- C:\WINDOWS\System32\preflib.dll [2009-01-27 12:38:31 | 000,000,077 | ---- | C] () -- C:\WINDOWS\adidsl.ini [2009-01-27 12:38:31 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini [2009-01-27 12:38:27 | 000,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini [2009-01-27 12:38:26 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll [2009-01-27 12:38:26 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll [2008-11-22 08:09:20 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4980.dll [2008-11-22 08:07:26 | 000,001,308 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2008-11-22 00:48:04 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2008-11-22 00:33:09 | 000,080,368 | ---- | C] () -- C:\WINDOWS\System32\pbadrvdll.dll [2008-08-15 10:46:30 | 002,854,912 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll [2008-07-28 20:03:06 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\Wavx_ESC_Logging.dll [2008-06-13 13:18:56 | 000,512,000 | ---- | C] () -- C:\WINDOWS\System32\AmRes_sv.dll [2008-06-13 13:18:56 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\AmRes_no.dll [2008-06-13 13:18:54 | 000,536,576 | ---- | C] () -- C:\WINDOWS\System32\AmRes_nl.dll [2008-06-13 13:18:54 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\AmRes_da.dll [2008-06-13 13:18:52 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\AmRes_de.dll [2008-06-13 13:18:52 | 000,536,576 | ---- | C] () -- C:\WINDOWS\System32\AmRes_fr.dll [2008-06-13 13:18:52 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\AmRes_en.dll [2008-06-13 13:18:50 | 000,532,480 | ---- | C] () -- C:\WINDOWS\System32\AmRes_it.dll [2008-06-13 13:18:50 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\AmRes_ja.dll [2008-06-13 13:18:48 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\AmRes_pt-BR.dll [2008-06-13 13:18:48 | 000,503,808 | ---- | C] () -- C:\WINDOWS\System32\AmRes_ko.dll [2008-06-13 13:18:46 | 000,561,152 | ---- | C] () -- C:\WINDOWS\System32\AmRes_ru.dll [2008-06-13 13:18:44 | 000,475,136 | ---- | C] () -- C:\WINDOWS\System32\AmRes_zh-CHT.dll [2008-06-13 13:18:44 | 000,475,136 | ---- | C] () -- C:\WINDOWS\System32\AmRes_zh-CHS.dll [2008-06-13 13:18:42 | 000,532,480 | ---- | C] () -- C:\WINDOWS\System32\AmRes_es.dll [2008-06-13 13:16:16 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\AmRes_pl.dll [2008-05-30 11:38:24 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_zh-CHS.dll [2008-05-30 11:38:14 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_sv.dll [2008-05-30 11:37:52 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_zh-CHT.dll [2008-05-30 11:37:24 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_ru.dll [2008-05-30 11:37:22 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_pt.dll [2008-05-30 11:37:20 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_pl.dll [2008-05-30 11:37:18 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_no.dll [2008-05-30 11:37:16 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_nl.dll [2008-05-30 11:37:14 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_ko.dll [2008-05-30 11:37:12 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_da.dll [2008-05-30 11:37:12 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_ja.dll [2008-05-30 11:37:10 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_de.dll [2008-05-30 11:37:08 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_es.dll [2008-05-30 11:37:06 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_fr.dll [2008-05-30 11:37:04 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\Internationalization_it.dll [2008-05-14 19:40:30 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\wxvault.dll [2008-05-09 06:55:11 | 000,003,619 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2008-02-25 14:04:48 | 000,835,584 | ---- | C] () -- C:\WINDOWS\System32\DemoLicense.dll [2006-08-14 13:02:10 | 000,072,192 | ---- | C] () -- C:\WINDOWS\System32\xltZlib.dll [2006-06-30 14:58:44 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\bioapi_mds300.dll [2006-06-30 14:58:44 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\bioapi100.dll [2006-06-12 10:01:16 | 000,348,160 | ---- | C] () -- C:\WINDOWS\tsp.dll [2005-02-17 14:41:32 | 000,000,603 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest [2005-02-17 14:41:30 | 000,000,593 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest [2004-09-10 14:34:00 | 000,917,504 | ---- | C] () -- C:\WINDOWS\System32\lmgr10.dll [2004-09-10 14:34:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ADsSecurity.dll [2001-11-14 15:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll [1999-01-22 18:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL [color=#E56717]========== LOP Check ==========[/color] [2008-11-22 00:47:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Wave Systems Corp [2010-04-10 17:16:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2009-06-13 15:08:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AT&T [2009-08-29 00:35:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DriverCure [2010-01-24 12:05:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2008-11-22 00:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NTRU Cryptosystems [2009-04-14 16:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic [2009-06-13 11:09:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SupportSoft [2010-06-25 18:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2008-11-22 00:41:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Wave Systems Corp [2008-11-22 00:47:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Wave Systems Corp [2009-06-13 10:09:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\BACS.exe [2009-04-14 16:38:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\DriverCure [2010-02-22 15:55:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Nowe Gadu-Gadu [2008-12-25 19:44:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Thunderbird [2008-11-22 00:47:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wiaderek\Dane aplikacji\Wave Systems Corp [2009-07-29 11:49:14 | 000,000,386 | ---- | M] () -- C:\WINDOWS\Tasks\DriverCure.job [2010-06-21 18:00:09 | 000,000,448 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Registration.job [2009-12-22 01:33:42 | 000,000,422 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Update Version2.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 163 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A8ADE5D8 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:430C6D84 < End of report >