OTL logfile created on: 2011-05-24 13:54:26 - Run 5 OTL by OldTimer - Version 3.2.23.0 Folder = D:\ Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,50 Gb Total Physical Memory | 2,90 Gb Available Physical Memory | 82,84% Memory free 5,34 Gb Paging File | 4,89 Gb Available in Paging File | 91,63% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 23,58 Gb Free Space | 48,28% Space Free | Partition Type: NTFS Drive D: | 95,70 Gb Total Space | 44,08 Gb Free Space | 46,06% Space Free | Partition Type: NTFS Drive E: | 88,35 Gb Total Space | 39,48 Gb Free Space | 44,69% Space Free | Partition Type: NTFS Computer Name: X | User Name: Przemek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 14 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-05-24 12:28:03 | 000,580,096 | ---- | M] (OldTimer Tools) -- D:\OTL.exe PRC - [2011-05-20 09:57:21 | 000,941,936 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2011-02-02 22:40:41 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2011-01-31 10:44:43 | 000,035,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe PRC - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2011-01-12 16:41:24 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2011-01-07 20:58:12 | 000,156,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2010-11-02 13:36:02 | 019,580,520 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2010-10-29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2009-08-31 18:07:34 | 011,391,592 | ---- | M] (GG Network S.A.) -- C:\Program Files\Nowe Gadu-Gadu\gg.exe PRC - [2009-08-31 16:56:26 | 000,077,824 | ---- | M] () -- C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe PRC - [2009-08-06 20:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2005-01-28 14:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-05-24 12:28:03 | 000,580,096 | ---- | M] (OldTimer Tools) -- D:\OTL.exe MOD - [2011-01-21 16:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-16 14:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2011-01-12 16:44:02 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-05-18 19:17:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2011-02-28 22:07:12 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi) DRV - [2011-02-28 22:04:10 | 000,664,064 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2011-02-25 18:38:29 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2010-12-21 15:04:06 | 000,141,264 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2010-12-21 15:04:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-12-21 13:47:38 | 000,094,872 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2010-11-02 13:36:26 | 006,188,648 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-11-18 01:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009-11-18 01:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2007-06-19 09:51:20 | 000,107,304 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm) DRV - [2007-06-19 09:51:18 | 000,099,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM) DRV - [2007-06-19 09:51:18 | 000,097,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM) DRV - [2007-06-19 09:51:18 | 000,097,320 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex) DRV - [2007-06-19 09:51:18 | 000,021,928 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS) DRV - [2007-06-19 09:51:18 | 000,013,864 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl) DRV - [2007-06-19 09:51:16 | 000,081,832 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM) DRV - [2006-11-27 17:33:54 | 000,019,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006-11-27 17:33:50 | 000,058,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2006-10-18 17:31:38 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\nvata.sys -- (nvata) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1935655697-1957994488-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-1935655697-1957994488-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-04-30 20:49:18 | 000,000,000 | ---D | M] O1 HOSTS File: ([2002-09-29 00:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKU\S-1-5-21-1935655697-1957994488-839522115-1003..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1935655697-1957994488-839522115-1003..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation) O4 - Startup: C:\Documents and Settings\Przemek\Menu Start\Programy\Autostart\hamachi.lnk = C:\Program Files\hamachi\hamachi.exe (LogMeIn Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1935655697-1957994488-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-02-25 16:01:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 14 Days ==========[/color] [2011-05-21 20:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2011-05-21 20:27:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Lotr [2011-05-21 13:21:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\skypePM [2011-05-21 13:17:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\Skype [2011-05-21 13:17:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2011-05-21 13:17:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2011-05-21 13:17:42 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2011-05-21 11:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\LolClient [2011-05-21 10:44:05 | 000,000,000 | ---D | C] -- C:\Program Files\LoL [2011-05-18 19:17:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\Hamachi [2011-05-18 19:17:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Hamachi [2011-05-18 19:16:22 | 000,000,000 | ---D | C] -- C:\Program Files\hamachi [2011-05-18 00:03:58 | 000,000,000 | ---D | C] -- C:\Program Files\Paradox Interactive [2011-05-16 16:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Menu Start\Programy\Notepad++ [2011-05-16 16:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Notepad++ [2011-05-16 16:03:38 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++ [2011-05-16 16:03:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Przemek\Dane aplikacji\Notepad++ [2011-03-23 19:41:13 | 000,520,192 | ---- | C] (Andrew Zhezherun) -- C:\Program Files\WinDjView-0.5.exe [color=#E56717]========== Files - Modified Within 14 Days ==========[/color] [2011-05-24 13:53:54 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\Przemek\NTUSER.DAT [2011-05-24 13:51:05 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2011-05-24 13:51:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-05-24 13:50:17 | 005,324,734 | -H-- | M] () -- C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-05-23 21:56:41 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-05-23 21:56:02 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Przemek\ntuser.ini [2011-05-21 19:58:18 | 000,000,577 | ---- | M] () -- C:\Documents and Settings\Przemek\Pulpit\Hoi 3 DD.lnk [2011-05-21 16:14:03 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-05-20 18:22:18 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-05-20 09:57:23 | 000,001,498 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2011-05-19 09:52:56 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Przemek\Pulpit\Nowe Gadu-Gadu.lnk [2011-05-18 19:17:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2011-05-18 19:17:05 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\Przemek\Menu Start\Programy\Autostart\hamachi.lnk [2011-05-18 15:44:25 | 000,000,607 | ---- | M] () -- C:\Documents and Settings\Przemek\Pulpit\Hoi 3 MP.lnk [2011-05-17 17:53:29 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-05-11 17:44:18 | 000,000,754 | ---- | M] () -- C:\WINDOWS\WORDPAD.INI [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-05-21 20:27:33 | 000,733,184 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll [2011-05-21 20:27:33 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll [2011-05-21 20:27:32 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax [2011-05-21 20:27:32 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll [2011-05-21 20:27:32 | 000,034,304 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mciqtz32.dll [2011-05-21 19:58:18 | 000,000,577 | ---- | C] () -- C:\Documents and Settings\Przemek\Pulpit\Hoi 3 DD.lnk [2011-05-21 16:14:03 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-05-20 09:57:23 | 000,001,504 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk [2011-05-20 09:57:23 | 000,001,498 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2011-05-19 09:52:56 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Przemek\Pulpit\Nowe Gadu-Gadu.lnk [2011-05-18 19:17:05 | 000,000,650 | ---- | C] () -- C:\Documents and Settings\Przemek\Menu Start\Programy\Autostart\hamachi.lnk [2011-05-18 15:22:25 | 000,000,607 | ---- | C] () -- C:\Documents and Settings\Przemek\Pulpit\Hoi 3 MP.lnk [2011-05-12 16:11:41 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 9.lnk [2011-05-07 15:18:01 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2011-04-29 19:18:51 | 000,000,119 | ---- | C] () -- C:\WINDOWS\ka.ini [2011-03-09 08:25:21 | 000,014,008 | ---- | C] () -- C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2011-03-03 17:22:07 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2011-03-01 10:38:34 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-03-01 10:38:29 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-02-28 22:07:12 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys [2011-02-28 22:04:10 | 000,664,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2011-02-28 22:04:10 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd0285.sys [2011-02-25 19:04:37 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2011-02-25 19:04:35 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2011-02-25 19:04:35 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2011-02-25 19:04:29 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2011-02-25 17:27:26 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-02-25 17:21:11 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-02-25 17:21:10 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-02-25 17:21:10 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-02-25 17:21:10 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-02-25 17:21:09 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2011-02-25 17:21:09 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-02-25 17:21:09 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2011-02-25 16:22:11 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin [2011-02-25 16:13:57 | 005,324,734 | -H-- | C] () -- C:\Documents and Settings\Przemek\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-02-25 16:13:29 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2011-02-25 16:13:29 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2011-02-25 16:13:29 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2011-02-25 16:13:29 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2011-02-25 16:02:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-02-25 16:01:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2011-02-25 16:01:02 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2011-02-25 16:00:59 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2011-02-25 15:59:53 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-02-25 15:59:52 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2011-02-25 15:59:52 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2011-02-25 15:59:32 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2011-02-25 15:59:31 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2011-02-25 15:20:08 | 001,042,518 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2011-02-25 15:20:08 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-02-25 15:19:28 | 000,101,440 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2006-12-31 07:57:08 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2002-09-29 00:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2002-09-29 00:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2002-09-29 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2002-09-29 00:00:00 | 000,490,284 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2002-09-29 00:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2002-09-29 00:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2002-09-29 00:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2002-09-29 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2002-09-29 00:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2002-09-29 00:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll [2002-09-29 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2002-09-29 00:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2002-09-29 00:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2002-09-29 00:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2002-09-29 00:00:00 | 000,083,660 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2002-09-29 00:00:00 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com [2002-09-29 00:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2002-09-29 00:00:00 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe [2002-09-29 00:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2002-09-29 00:00:00 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com [2002-09-29 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2002-09-29 00:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2002-09-29 00:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2002-09-29 00:00:00 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe [2002-09-29 00:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2002-09-29 00:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2002-09-29 00:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2002-09-29 00:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2002-09-29 00:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2002-09-29 00:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2002-09-29 00:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2002-09-29 00:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2002-09-29 00:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2002-09-29 00:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2002-09-29 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2002-09-29 00:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2002-09-29 00:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2002-09-29 00:00:00 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe [2002-09-29 00:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2002-09-29 00:00:00 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com [2002-09-29 00:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2002-09-29 00:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2002-09-29 00:00:00 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com [2002-09-29 00:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2002-09-29 00:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2002-09-29 00:00:00 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe [2002-09-29 00:00:00 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe [2002-09-29 00:00:00 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe [2002-09-29 00:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2002-09-29 00:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2002-09-29 00:00:00 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe [2002-09-29 00:00:00 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe [2002-09-29 00:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2002-09-29 00:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2002-09-29 00:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2002-09-29 00:00:00 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe [2002-09-29 00:00:00 | 000,003,260 | ---- | C] () -- C:\WINDOWS\System32\nw16.exe [2002-09-29 00:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2002-09-29 00:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2002-09-29 00:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2002-09-29 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2002-09-29 00:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2002-09-29 00:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2002-09-29 00:00:00 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com [2002-09-29 00:00:00 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\vwipxspx.exe [2002-09-29 00:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe [2002-09-29 00:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe [2002-09-29 00:00:00 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe [2002-09-29 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2002-09-29 00:00:00 | 000,000,600 | ---- | C] () -- C:\WINDOWS\win.ini [2002-09-29 00:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2002-09-29 00:00:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe [2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [color=#E56717]========== LOP Check ==========[/color] [2011-04-29 19:19:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Barbie Fashion Show [2011-04-30 18:30:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2011-04-25 10:28:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-04-21 17:29:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2011-03-02 20:01:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karolina\Dane aplikacji\Nowe Gadu-Gadu [2011-03-02 18:46:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karolina\Dane aplikacji\Opera [2011-03-28 17:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karolina\Dane aplikacji\Teleca [2011-04-04 18:18:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karolina\Dane aplikacji\Ubisoft [2011-05-23 10:43:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\BitTorrent [2011-03-01 17:55:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\FreeAudioPack [2011-03-03 16:54:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\InterTrust [2011-05-21 11:16:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\LolClient [2011-05-21 20:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2011-05-16 16:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Notepad++ [2011-02-25 17:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Nowe Gadu-Gadu [2011-02-25 17:30:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Opera [2011-04-03 10:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\PunkBuster [2011-03-29 07:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Teleca [2011-02-28 08:47:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\The Creative Assembly [2011-04-25 10:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Thinstall [2011-04-21 17:29:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\Ubisoft [2011-04-25 10:24:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\URSoft [2011-02-25 18:05:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Przemek\Dane aplikacji\wargaming.net [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:B3D74A13 < End of report >