OTL logfile created on: 2011-07-31 12:12:20 - Run 1 OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Marcin\Downloads Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,25 Gb Total Physical Memory | 2,16 Gb Available Physical Memory | 66,36% Memory free 6,50 Gb Paging File | 5,31 Gb Available in Paging File | 81,83% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 146,39 Gb Total Space | 15,43 Gb Free Space | 10,54% Space Free | Partition Type: NTFS Drive D: | 159,18 Gb Total Space | 25,67 Gb Free Space | 16,12% Space Free | Partition Type: NTFS Drive E: | 160,09 Gb Total Space | 37,87 Gb Free Space | 23,66% Space Free | Partition Type: NTFS Computer Name: USER-KOMPUTER | User Name: Marcin | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-07-31 12:12:08 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Marcin\Downloads\OTL(1).exe PRC - [2011-07-23 00:59:27 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe PRC - [2011-07-01 16:52:52 | 019,772,360 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe PRC - [2011-06-25 22:36:17 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-02-26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009-08-18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe PRC - [2009-08-18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe PRC - [2009-07-14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2009-03-30 15:00:54 | 000,221,184 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe PRC - [2007-09-20 15:35:40 | 001,410,344 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe PRC - [2007-09-20 15:35:10 | 000,202,024 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe PRC - [2007-08-15 09:49:26 | 000,063,040 | ---- | M] () -- D:\Gry\Medal OF honor\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe PRC - [2006-07-18 16:15:18 | 000,049,152 | ---- | M] (Vimicro) -- C:\Windows\vmsnap3.exe PRC - [2006-07-04 14:16:32 | 000,049,152 | ---- | M] () -- C:\Windows\Domino.exe PRC - [2006-01-24 23:07:00 | 000,061,440 | ---- | M] (Vimicro) -- C:\Windows\VM303_STI.EXE [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-07-31 12:12:08 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Marcin\Downloads\OTL(1).exe MOD - [2011-07-23 00:59:34 | 000,043,520 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome10browserrecordhelper.dll MOD - [2011-06-16 20:32:03 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll MOD - [2011-06-16 20:32:03 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll MOD - [2010-08-21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- -- (MySql) SRV - [2010-12-28 10:00:34 | 001,296,728 | ---- | M] (www.BitComet.com) [On_Demand | Stopped] -- C:\Program Files\BitComet\tools\BitCometService.exe -- (BITCOMET_HELPER_SERVICE) SRV - [2010-07-12 15:18:56 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc) SRV - [2009-10-20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2009-08-18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009-07-16 17:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2007-08-15 09:49:26 | 000,063,040 | ---- | M] () [Auto | Running] -- D:\Gry\Medal OF honor\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe -- (PnkBstrA) SRV - [2007-05-31 16:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2007-05-31 16:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-12-17 15:29:27 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt) DRV - [2010-12-17 15:29:26 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt) DRV - [2010-07-13 23:16:53 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-02-14 12:47:28 | 000,031,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Users\Marcin\AppData\Local\Temp\hSONYPVh.sys -- (hSONYPVh) DRV - [2009-10-20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (NPF) DRV - [2009-08-18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2009-07-14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb) DRV - [2009-07-14 00:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20) DRV - [2009-06-05 14:28:12 | 000,099,856 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2009-05-15 18:50:22 | 000,021,008 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6) DRV - [2007-06-23 13:45:58 | 000,480,128 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vvftav303.sys -- (vvftav303) DRV - [2007-05-15 10:14:24 | 001,472,768 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbVM303.sys -- (ZSMC0303) DRV - [2007-01-04 13:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e4usbaw.sys -- (e4usbaw) DRV - [2007-01-04 13:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\e4ldr.sys -- (E4LOADER) General Purpose USB Driver (e4ldr.sys) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/ IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - Reg Error: Key error. File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Web Search" FF - prefs.js..browser.search.defaultenginename: "Web Search" FF - prefs.js..browser.search.defaultthis.engineName: " " FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "http://startsear.ch/?q=" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.pl/ig?hl=|http://startsear.ch/" FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.463 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=SP_ss&mntrId=9e8a14260000000000006cf049e0b991&tlver=1.4.31.2&instlRef=sst&ss=1&affID=100395&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Windows\system32\TVUAx\npTVUAx.dll (TVU networks) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.660: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.660: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.660: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-07-23 00:59:34 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-23 00:59:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-07-23 00:59:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-23 00:59:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-07-23 00:59:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-23 00:59:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-07-23 00:59:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-23 00:59:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-07-23 00:59:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010-08-10 00:23:56 | 000,000,000 | ---D | M] [2011-04-02 11:55:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marcin\AppData\Roaming\mozilla\Extensions [2011-05-11 23:05:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\l424xohe.default\extensions [2011-05-30 19:05:17 | 000,000,000 | ---D | M] (@@toolbarname@@) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\l424xohe.default\extensions\toolbar@ask.com [2011-06-25 22:38:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\mdrh4hc5.default\extensions [2011-06-09 19:51:18 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\mdrh4hc5.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2011-06-25 22:38:18 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\mdrh4hc5.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2011-04-22 20:07:28 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\mdrh4hc5.default\extensions\engine@conduit.com [2011-04-16 23:16:45 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\mdrh4hc5.default\extensions\firefox@tvunetworks.com [2011-02-21 16:39:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marcin\AppData\Roaming\mozilla\Firefox\Profiles\uoiy9exd.default\extensions [2011-04-22 20:07:28 | 000,000,863 | ---- | M] () -- C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\mdrh4hc5.default\searchplugins\conduit.xml [2011-05-18 15:06:52 | 000,000,632 | ---- | M] () -- C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\mdrh4hc5.default\searchplugins\startsear.xml [2011-04-23 10:22:41 | 000,001,583 | ---- | M] () -- C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\mdrh4hc5.default\searchplugins\web-search.xml [2011-07-22 23:54:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-05-11 14:27:01 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2010-07-15 21:50:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2011-06-28 21:14:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2011-06-08 20:55:25 | 000,000,000 | ---D | M] (vShare Add-On) -- C:\Program Files\Mozilla Firefox\extensions\{dd05fd3d-18df-4ce4-ae53-e795339c5f01} [2011-07-22 23:54:34 | 000,000,000 | ---D | M] (Babylon) -- C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2010-08-10 00:24:27 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru File not found (No name found) -- [2011-07-23 00:59:34 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT [2011-06-25 22:36:18 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-04-15 14:20:18 | 001,034,544 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-05-08 11:29:20 | 000,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files\kikin\ie_kikin.dll (kikin) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab) O4 - HKLM..\Run: [BigDog303] C:\Windows\VM303_STI.EXE (Vimicro) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [Domino] C:\Windows\Domino.exe () O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [VMSnap3] C:\Windows\vmsnap3.exe (Vimicro) O4 - HKCU..\Run: [ares] File not found O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG) O4 - HKCU..\Run: [EA Core] File not found O4 - HKCU..\Run: [FlashGet 3] File not found O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKCU..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKCU..\Run: [jushed] C:\ProgramData\jushed.exe ( ) O4 - HKCU..\Run: [Kookos] File not found O4 - HKCU..\Run: [RGSC] C:\Users\Marcin\Downloads\Rockstar_Games_Social_Club\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.) O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: &P&obierz &za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Ściągnij przy poomocy FlashGet3 - C:\Users\Marcin\AppData\Roaming\FlashGetBHO\GetUrl.htm () O8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet3 - C:\Users\Marcin\AppData\Roaming\FlashGetBHO\GetAllUrl.htm () O8 - Extra context menu item: 使用快车3下载 - C:\Users\Marcin\AppData\Roaming\FlashGetBHO\GetUrl.htm () O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Marcin\AppData\Roaming\FlashGetBHO\GetAllUrl.htm () O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll (kikin) O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{30a27715-8ec4-11df-b9e1-6cf049e0b991}\Shell - "" = AutoRun O33 - MountPoints2\{30a27715-8ec4-11df-b9e1-6cf049e0b991}\Shell\AutoRun\command - "" = G:\Install.exe O33 - MountPoints2\{8c25e713-9e5f-11df-8682-6cf049e0b991}\Shell - "" = AutoRun O33 - MountPoints2\{8c25e713-9e5f-11df-8682-6cf049e0b991}\Shell\AutoRun\command - "" = J:\autorun.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-07-30 19:58:43 | 000,000,000 | R--D | C] -- C:\Users\Marcin\Documents\Notes [2011-07-29 14:48:16 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\EA Games [2011-07-29 13:45:57 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\GTA San Andreas User Files [2011-07-29 13:33:40 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\splash damage [2011-07-27 21:01:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Z-Software [2011-07-27 21:01:19 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\Z-Software [2011-07-24 22:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Medal of Honor Airborne [2011-07-24 21:27:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2011-07-24 21:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AGEIA [2011-07-24 21:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies [2011-07-24 21:19:38 | 000,000,000 | ---D | C] -- C:\Windows\System32\AGEIA [2011-07-24 13:13:09 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\The Witcher [2011-07-24 13:13:09 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\The Witcher [2011-07-24 12:56:55 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Witcher [2011-07-23 23:15:17 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\Square Enix [2011-07-23 23:03:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2011-07-23 23:02:59 | 000,000,000 | ---D | C] -- C:\Program Files\Steam [2011-07-23 00:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2011-07-23 00:59:32 | 000,198,848 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2011-07-23 00:59:28 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2011-07-23 00:59:28 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2011-07-23 00:59:28 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2011-07-23 00:59:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real [2011-07-23 00:59:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2011-07-23 00:28:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ipla [2011-07-22 23:54:14 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Local\Babylon [2011-07-22 23:54:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon [2011-07-22 23:54:13 | 000,000,000 | ---D | C] -- C:\Users\Marcin\AppData\Roaming\Babylon [2011-07-22 23:53:16 | 008,440,398 | ---- | C] ( ) -- C:\Users\Marcin\Desktop\klcpupdate728.exe [2011-07-20 23:24:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IQ Publishing [2011-07-18 12:32:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Synetic [2011-07-17 22:21:42 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-07-17 13:37:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VUGames [2011-07-16 10:54:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision [2011-07-13 22:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll [2011-07-13 22:36:01 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll [2011-07-13 22:36:01 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll [2011-07-13 22:36:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll [2011-07-13 22:36:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll [2011-07-13 22:36:00 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll [2011-07-13 22:36:00 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll [2011-07-13 22:36:00 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll [2011-07-13 22:36:00 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll [2011-07-13 22:36:00 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll [2011-07-13 22:36:00 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll [2011-07-13 22:36:00 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll [2011-07-13 22:36:00 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll [2011-07-13 22:35:58 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe [2011-07-13 22:35:57 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2011-07-13 22:35:55 | 002,332,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011-07-13 19:38:28 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Desktop\pliki ikonuy [2011-07-09 23:57:06 | 000,000,000 | ---D | C] -- C:\Users\Marcin\Documents\New Star Tennis [2011-07-09 23:56:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\New Star Tennis [2011-07-04 20:55:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto IV - Episodes From Liberty City [2011-06-02 19:31:31 | 000,566,784 | RHS- | C] ( ) -- C:\ProgramData\jushed.exe [2011-06-02 19:31:31 | 000,347,136 | RHS- | C] (NirSoft) -- C:\ProgramData\nircmd.exe [8 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-07-31 11:48:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011-07-31 09:40:26 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-07-31 09:40:26 | 000,014,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-07-31 09:33:25 | 000,000,002 | ---- | M] () -- C:\ProgramData\timerxfile [2011-07-31 09:33:25 | 000,000,002 | ---- | M] () -- C:\ProgramData\datesavefile [2011-07-31 09:33:25 | 000,000,001 | ---- | M] () -- C:\ProgramData\varsavefile [2011-07-31 09:33:09 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011-07-31 09:32:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-07-31 09:32:43 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys [2011-07-30 19:58:36 | 000,004,544 | ---- | M] () -- C:\Users\Marcin\Desktop\Nowy dokument dziennika.jnt [2011-07-29 13:38:47 | 000,000,637 | ---- | M] () -- C:\Users\Public\Desktop\GTA San Andreas.lnk [2011-07-29 12:36:39 | 000,697,674 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2011-07-29 12:36:39 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011-07-29 12:36:39 | 000,134,784 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2011-07-29 12:36:39 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011-07-27 22:33:04 | 000,032,146 | ---- | M] () -- C:\Users\Marcin\Documents\DSC_0423.jpg [2011-07-25 00:48:33 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini [2011-07-24 21:27:02 | 000,001,823 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Airborne.lnk [2011-07-24 13:27:04 | 305,417,317 | ---- | M] () -- C:\Windows\MEMORY.DMP [2011-07-24 13:13:03 | 000,001,081 | ---- | M] () -- C:\Users\Marcin\Desktop\witcher — skrót.lnk [2011-07-24 10:26:08 | 000,000,215 | ---- | M] () -- C:\Users\Marcin\Desktop\Altitude.url [2011-07-24 10:24:52 | 000,000,949 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk [2011-07-23 00:59:45 | 000,001,908 | ---- | M] () -- C:\Users\Public\Desktop\Free Offers.lnk [2011-07-23 00:59:45 | 000,001,236 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk [2011-07-23 00:59:32 | 000,198,848 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2011-07-23 00:59:28 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2011-07-23 00:59:28 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2011-07-23 00:59:28 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2011-07-23 00:28:22 | 000,000,911 | ---- | M] () -- C:\Users\Public\Desktop\ipla.lnk [2011-07-23 00:13:05 | 000,006,144 | ---- | M] () -- C:\Users\Marcin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-07-22 23:53:55 | 008,440,398 | ---- | M] ( ) -- C:\Users\Marcin\Desktop\klcpupdate728.exe [2011-07-22 22:37:44 | 000,001,211 | ---- | M] () -- C:\Users\Marcin\Desktop\fifaconfig — skrót.lnk [2011-07-22 00:41:33 | 000,269,161 | ---- | M] () -- C:\Users\Marcin\Documents\sas.themepack [2011-07-20 23:24:18 | 000,000,727 | ---- | M] () -- C:\Users\Public\Desktop\International Volleyball 2010.lnk [2011-07-20 09:40:07 | 000,000,469 | ---- | M] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk [2011-07-20 09:40:07 | 000,000,469 | ---- | M] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk [2011-07-20 09:32:33 | 000,000,271 | ---- | M] () -- C:\Windows\game.ini [2011-07-16 22:25:25 | 000,001,686 | ---- | M] () -- C:\Users\Marcin\Desktop\Pitbull -Feat. Ne-Yo- Afrojack amp- Nayer- - Give ... — skrót.lnk [2011-07-14 10:26:37 | 000,340,824 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [8 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-07-30 19:58:36 | 000,004,544 | ---- | C] () -- C:\Users\Marcin\Desktop\Nowy dokument dziennika.jnt [2011-07-29 13:38:47 | 000,000,637 | ---- | C] () -- C:\Users\Public\Desktop\GTA San Andreas.lnk [2011-07-27 22:27:42 | 000,032,146 | ---- | C] () -- C:\Users\Marcin\Documents\DSC_0423.jpg [2011-07-24 21:27:02 | 000,001,823 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Airborne.lnk [2011-07-24 13:13:03 | 000,001,081 | ---- | C] () -- C:\Users\Marcin\Desktop\witcher — skrót.lnk [2011-07-24 10:26:07 | 000,000,215 | ---- | C] () -- C:\Users\Marcin\Desktop\Altitude.url [2011-07-23 23:03:00 | 000,000,949 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk [2011-07-23 00:59:45 | 000,001,908 | ---- | C] () -- C:\Users\Public\Desktop\Free Offers.lnk [2011-07-23 00:59:45 | 000,001,236 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk [2011-07-23 00:28:22 | 000,000,911 | ---- | C] () -- C:\Users\Public\Desktop\ipla.lnk [2011-07-22 22:37:44 | 000,001,211 | ---- | C] () -- C:\Users\Marcin\Desktop\fifaconfig — skrót.lnk [2011-07-22 00:41:32 | 000,269,161 | ---- | C] () -- C:\Users\Marcin\Documents\sas.themepack [2011-07-20 23:24:18 | 000,000,727 | ---- | C] () -- C:\Users\Public\Desktop\International Volleyball 2010.lnk [2011-07-20 09:40:07 | 000,000,469 | ---- | C] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk [2011-07-20 09:40:07 | 000,000,469 | ---- | C] () -- C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk [2011-07-20 09:32:33 | 000,000,271 | ---- | C] () -- C:\Windows\game.ini [2011-07-09 14:24:58 | 000,001,686 | ---- | C] () -- C:\Users\Marcin\Desktop\Pitbull -Feat. Ne-Yo- Afrojack amp- Nayer- - Give ... — skrót.lnk [2011-07-05 08:30:18 | 305,417,317 | ---- | C] () -- C:\Windows\MEMORY.DMP [2011-06-02 19:31:32 | 000,000,002 | ---- | C] () -- C:\ProgramData\timerxfile [2011-06-02 19:31:32 | 000,000,002 | ---- | C] () -- C:\ProgramData\datesavefile [2011-06-02 19:31:32 | 000,000,001 | ---- | C] () -- C:\ProgramData\varsavefile [2011-06-02 19:31:31 | 000,004,768 | ---- | C] () -- C:\ProgramData\operaprefs.ini [2011-05-20 13:52:13 | 000,137,544 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2011-05-20 13:52:03 | 000,189,480 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe [2011-05-20 13:51:54 | 000,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe [2011-05-20 13:50:20 | 003,360,624 | ---- | C] () -- C:\Windows\System32\pbsvc.exe [2011-05-01 21:02:51 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf07a.dat [2011-04-21 19:56:48 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll [2011-04-09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2011-01-30 20:22:14 | 000,000,004 | ---- | C] () -- C:\Windows\System32\proc-1830267680.bin [2011-01-14 18:51:55 | 000,000,000 | ---- | C] () -- C:\Windows\System32\ExtremeMT2-31-2010.exe [2010-12-17 15:29:27 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys [2010-12-17 15:29:26 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys [2010-10-19 19:30:44 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI [2010-09-22 06:03:42 | 000,000,010 | ---- | C] () -- C:\Windows\popcinfo.dat [2010-09-10 20:37:12 | 000,027,957 | ---- | C] () -- C:\Users\Marcin\AppData\Roaming\OFMissionEditorConfig.xml [2010-09-01 19:07:02 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll [2010-08-18 22:53:40 | 000,006,144 | ---- | C] () -- C:\Users\Marcin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-10 00:25:20 | 000,604,140 | -HS- | C] () -- C:\Windows\System32\drivers\ISwift3.dat [2010-07-27 12:46:20 | 000,000,204 | ---- | C] () -- C:\Windows\System32\secustat.dat [2010-07-27 12:45:04 | 000,000,305 | ---- | C] () -- C:\Windows\System32\secushr.dat [2010-07-27 12:44:38 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI [2010-07-18 23:28:46 | 000,049,152 | ---- | C] () -- C:\Windows\Domino.exe [2010-07-15 00:21:08 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2010-07-14 00:19:05 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2010-07-13 22:50:03 | 000,000,404 | ---- | C] () -- C:\Windows\BRWMARK.INI [2010-07-13 22:50:03 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2010-07-13 16:58:18 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010-07-13 16:32:49 | 000,172,032 | ---- | C] () -- C:\Windows\JAPI2.DLL [2010-07-13 16:32:49 | 000,106,496 | ---- | C] () -- C:\Windows\JAPI.DLL [2010-07-13 16:29:40 | 000,122,880 | ---- | C] () -- C:\Windows\rm303b.exe [2010-07-13 16:13:41 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2010-07-13 12:13:20 | 000,000,168 | ---- | C] () -- C:\Windows\adidsl.ini [2010-07-13 12:13:20 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini [2010-07-13 12:12:42 | 000,253,008 | ---- | C] () -- C:\Windows\adirasx64.exe [2010-07-13 12:12:42 | 000,194,128 | ---- | C] () -- C:\Windows\adiras.exe [2010-07-13 12:12:42 | 000,001,094 | ---- | C] () -- C:\Windows\adiras.ini [2010-07-13 12:12:40 | 000,127,456 | ---- | C] () -- C:\Windows\System32\IPDETECT.EXE [2010-07-13 12:12:36 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I2.BIN [2010-07-13 12:12:36 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I1.BIN [2010-07-13 12:12:36 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I0.BIN [2010-07-13 12:12:36 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P2.BIN [2010-07-13 12:12:36 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P1.BIN [2010-07-13 12:12:36 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P0.BIN [2010-07-13 12:12:36 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P2.BIN [2010-07-13 12:12:36 | 000,152,036 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D2.BIN [2010-07-13 12:12:36 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D1.BIN [2010-07-13 12:12:36 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D0.BIN [2010-07-13 12:12:36 | 000,046,892 | ---- | C] () -- C:\Windows\System32\ADADIX16.DLL [2010-07-13 12:12:36 | 000,024,576 | ---- | C] () -- C:\Windows\enddisk32.exe [2010-07-13 12:12:36 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin [2010-07-13 12:12:35 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P1.BIN [2010-07-13 12:12:35 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P0.BIN [2010-07-13 12:12:35 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I2.BIN [2010-07-13 12:12:35 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I1.BIN [2010-07-13 12:12:35 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I0.BIN [2010-07-12 15:32:36 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI [2010-07-12 14:57:35 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2009-10-20 20:19:30 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll [2009-07-14 10:07:57 | 000,697,674 | ---- | C] () -- C:\Windows\System32\perfh015.dat [2009-07-14 10:07:57 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat [2009-07-14 10:07:57 | 000,134,784 | ---- | C] () -- C:\Windows\System32\perfc015.dat [2009-07-14 10:07:57 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat [2009-07-14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 06:33:53 | 000,340,824 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2009-07-14 04:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2009-07-14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2009-07-14 04:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2009-07-14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2009-07-14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2009-07-14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2009-07-14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009-07-03 15:45:12 | 000,027,507 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat [2009-06-18 19:29:04 | 000,197,654 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2009-04-26 11:53:48 | 000,002,519 | ---- | C] () -- C:\Windows\mn02.ini [2009-02-18 17:55:22 | 000,294,912 | ---- | C] () -- C:\Windows\System32\ATIODE.exe [2009-02-03 20:52:04 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe [2008-07-25 19:09:01 | 000,003,343 | ---- | C] () -- C:\Windows\kaillera.ini [2008-07-25 19:09:01 | 000,002,408 | ---- | C] () -- C:\Windows\n02.ini [2007-06-19 08:59:36 | 000,070,400 | ---- | C] () -- C:\Windows\System32\PhysXLoader.dll [2007-04-20 07:57:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll [2007-04-20 07:57:28 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll [2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\Windows\System32\zlib.dll < End of report >