wklejto.pl

Dodane przez: ~Anonim (2012-07-13 21:04) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
OTL logfile created on: 2012-07-15 09:04:45 - Run 2
OTL by OldTimer - Version 3.2.54.0     Folder = C:\Documents and Settings\Admin\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,97 Gb Total Physical Memory | 2,26 Gb Available Physical Memory | 76,35% Memory free
4,81 Gb Paging File | 4,29 Gb Available in Paging File | 89,24% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 107,42 Gb Total Space | 39,59 Gb Free Space | 36,85% Space Free | Partition Type: NTFS
Drive D: | 125,45 Gb Total Space | 14,64 Gb Free Space | 11,67% Space Free | Partition Type: NTFS
Drive Z: | 7,81 Mb Total Space | 5,08 Mb Free Space | 65,05% Space Free | Partition Type: NTFS
 
Computer Name: ADMIN-5A97EF78F | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-14 17:20:12 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
PRC - [2012-06-27 21:35:14 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-05-11 10:12:02 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012-05-11 10:12:00 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012-05-11 10:12:00 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012-05-11 10:12:00 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2010-07-28 00:23:00 | 000,023,680 | ---- | M] (Apache Software Foundation) -- C:\WebServer\bin\httpd.exe
PRC - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2009-04-02 21:28:22 | 000,237,568 | ---- | M] (AlcorMicro Co., Ltd.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
PRC - [2009-02-06 17:13:16 | 001,593,344 | ---- | M] () -- C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
PRC - [2008-10-01 18:28:56 | 000,640,376 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-11-30 12:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2006-07-26 19:01:06 | 000,090,112 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-06-27 21:35:14 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-05-11 10:12:02 | 000,398,288 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
MOD - [2009-11-26 14:32:34 | 000,109,800 | ---- | M] () -- C:\Program Files\FILEminimizer Suite\FILEMShell.dll
MOD - [2009-02-06 17:13:16 | 001,593,344 | ---- | M] () -- C:\Program Files\ASUS\Wireless Console 3\wcourier.exe
MOD - [2007-11-30 12:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aaksrv.dll -- (rpcapd)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012-07-13 14:39:57 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-06-27 21:35:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-05-11 10:12:02 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012-05-11 10:12:00 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010-12-09 16:23:24 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-07-28 00:23:00 | 000,023,680 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\WebServer\bin\httpd.exe -- (Apache2.2)
SRV - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010-01-13 00:09:00 | 003,395,532 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\GameMon.des -- (npggsvc)
SRV - [2008-04-15 14:00:00 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc)
SRV - [2008-04-15 14:00:00 | 000,035,328 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-05-25 13:01:54 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012-05-11 10:12:02 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012-05-11 10:12:02 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011-09-16 16:09:17 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011-09-05 14:02:36 | 001,630,056 | ---- | M] (TamoSoft) [CommView] Atheros AR5008 Wireless Network Adapter Service 7.7 [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ts_athw.sys -- (TS_AR5416)
DRV - [2011-07-29 13:54:56 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv)
DRV - [2011-07-29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2010-06-17 14:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010-02-11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009-11-12 14:48:56 | 000,005,504 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009-04-01 15:12:48 | 000,233,128 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SRS_PremiumSound_i386.sys -- (SRS_PremiumSound_Service)
DRV - [2009-03-20 08:21:28 | 001,057,280 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2009-02-13 19:00:02 | 001,503,840 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2008-12-16 08:12:48 | 000,038,400 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)
DRV - [2008-11-03 09:03:28 | 000,013,880 | R--- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2008-08-11 04:14:12 | 001,752,704 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2008-04-07 08:00:46 | 000,006,656 | ---- | M] (Generic) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CRFILTER.sys -- (CRFILTER)
DRV - [2008-02-22 16:33:02 | 000,114,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2008-02-22 16:33:02 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2008-02-22 16:33:00 | 000,087,936 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2008-02-14 08:12:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\monfilt.sys -- (monfilt)
DRV - [2006-12-17 17:11:58 | 000,007,680 | R--- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2005-09-07 17:42:06 | 000,087,792 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w800mgmt.sys -- (w800mgmt)
DRV - [2005-09-07 17:42:06 | 000,085,664 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w800obex.sys -- (w800obex)
DRV - [2005-09-07 17:42:04 | 000,096,224 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w800mdm.sys -- (w800mdm)
DRV - [2005-09-07 17:42:04 | 000,009,264 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w800mdfl.sys -- (w800mdfl)
DRV - [2005-09-07 17:42:00 | 000,060,768 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w800bus.sys -- (w800bus) Sony Ericsson W800 driver (WDM)
DRV - [2005-01-04 02:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\npptNT2.sys -- (NPPTNT2)
DRV - [2003-03-11 01:12:06 | 000,059,632 | R--- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\qcusbser.sys -- (qcusbser)
DRV - [2003-03-11 01:12:06 | 000,059,632 | R--- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\qcusbmdm.sys -- (qcusbmdm) Qualcomm Proprietary USB Driver (PID 3197)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1337943638_290535
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = pl.v9.com/idg/idg_1337943638_290535
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1337943638_290535
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = pl.v9.com/idg/idg_1337943638_290535
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\..\URLSearchHook: {d22f6f66-2f47-4184-8625-fbfa4cbdb7ce} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADSA_plPL371
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..extensions.enabledItems: expressivo@expressivo.com:1.0
FF - prefs.js..extensions.enabledItems: {9d1f059c-cada-4111-9696-41a62d64e3ba}:0.5.2.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {d22f6f66-2f47-4184-8625-fbfa4cbdb7ce}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {7E77F5DF-8022-40e3-9122-F03DEBEFC43B}:1.0.21
FF - prefs.js..extensions.enabledItems: puzzle@internauta1024a.pl:0.4.6
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..keyword.URL: "http://search.babylon.com/?affID=110819&babsrc=KW_ss&mntrId=208c50490000000000001c4bd61f3a12&q="
FF - prefs.js..network.proxy.share_proxy_settings: true
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPBrowserExt: C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll File not found
FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPGameWebStarter: C:\Program Files\WEBZEN\WebzenGameStarter\NPGameWebStarter.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-27 21:35:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-04-21 22:12:30 | 000,000,000 | ---D | M]
 
[2009-10-30 11:49:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions
[2012-07-10 09:27:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions
[2012-07-09 09:27:57 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2012-02-20 00:48:25 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2010-01-09 22:15:03 | 000,000,000 | ---D | M] ("PsicoTSI") -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions\{7E77F5DF-8022-40e3-9122-F03DEBEFC43B}
[2012-06-06 00:44:15 | 000,000,000 | ---D | M] (FoxTrick) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions\{9d1f059c-cada-4111-9696-41a62d64e3ba}
[2012-02-14 22:03:32 | 000,000,000 | ---D | M] (Hide IP Easy) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\hkwj8b9b.default\extensions\support@easy-hideip.com
[2012-05-06 09:52:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-06-22 22:34:56 | 000,084,634 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HKWJ8B9B.DEFAULT\EXTENSIONS\{0545B830-F0AA-4D7E-8820-50A4629A56FE}.XPI
[2012-04-27 22:43:30 | 000,140,964 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HKWJ8B9B.DEFAULT\EXTENSIONS\FIREGESTURES@XULDEV.ORG.XPI
[2012-05-04 18:47:45 | 000,022,790 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\HKWJ8B9B.DEFAULT\EXTENSIONS\PUZZLE@INTERNAUTA1024A.PL.XPI
[2012-06-27 21:35:15 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-07 18:04:05 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009-12-23 16:03:10 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll
[2012-06-27 21:35:11 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-06-27 21:35:11 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-06-27 21:35:11 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-06-27 21:35:11 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-05-25 13:00:38 | 000,002,415 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml
[2012-06-27 21:35:11 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-06-27 21:35:11 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2012-05-25 10:50:52 | 000,000,056 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1      127.0.0.1       activate.adobe.com
O1 - Hosts: ::1
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (OnRPG Toolbar) - {d22f6f66-2f47-4184-8625-fbfa4cbdb7ce} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.)
O3 - HKLM\..\Toolbar: (OnRPG Toolbar) - {d22f6f66-2f47-4184-8625-fbfa4cbdb7ce} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (OnRPG Toolbar) - {D22F6F66-2F47-4184-8625-FBFA4CBDB7CE} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (OnRPG Toolbar) - {D22F6F66-2F47-4184-8625-FBFA4CBDB7CE} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\..\Toolbar\WebBrowser: (OnRPG Toolbar) - {D22F6F66-2F47-4184-8625-FBFA4CBDB7CE} - C:\Program Files\OnRPG\prxtbOnR2.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
O4 - HKLM..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Install-Block] C:\Program Files\Bash Software\Install-Block\ibuc.exe (Bash Software)
O4 - HKLM..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLinkDVDsuite\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLinkDVDsuite\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files\CyberLinkDVDsuite\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLinkDVDsuite\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Wireless Console 3] C:\Program Files\ASUS\Wireless Console 3\wcourier.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: empires2.exe = empires2.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: Tibia.exe = Tibia.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: MUOnline_WEBZEN_Jumping.zip = MUOnline_WEBZEN_Jumping.zip
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: main.exe = main.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: Mu.exe = Mu.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: The Conquerors.exe = The Conquerors.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: DarkMuBat.exe = DarkMuBat.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: WebzenBrowserExt.exe = WebzenBrowserExt.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: WebzenGameStarter-1029.exe = WebzenGameStarter-1029.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: hl.exe = hl.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: age2_x1.exe = age2_x1.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: Warcraft III.exe = Warcraft III.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: Frozen Throne.exe = Frozen Throne.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: BNUpdate.exe = BNUpdate.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: World Editor.exe = World Editor.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: worldedit.exe = worldedit.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: war3.exe = war3.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: AGE2_X1.iso = AGE2_X1.iso
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1993962763-884357618-1177238915-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9AE8B4B3-92CD-4588-989C-82DABD970937}: DhcpNameServer = 8.8.8.8 8.8.4.4
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-15 09:00:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\Recent
[2012-07-14 17:20:12 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2012-07-11 20:56:58 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-07-08 21:29:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit\lipiec
[2012-07-07 09:42:43 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasadasda
[2012-07-07 09:24:10 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasaxc
[2012-07-07 08:45:31 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasasa
[2012-07-07 08:43:47 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasadsa
[2012-07-07 08:43:30 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasa11
[2012-06-30 15:48:15 | 000,000,000 | ---D | C] -- C:\Program Files\Szalona Kasadsfghfd
[2012-06-27 17:39:36 | 000,000,000 | ---D | C] -- C:\Program Files\Ikony
[2012-06-26 13:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Icon Suite
[2012-06-26 13:55:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Icon Suite
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-15 09:01:55 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-07-15 09:01:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-07-15 09:01:27 | 3184,615,424 | -HS- | M] () -- C:\hiberfil.sys
[2012-07-14 23:39:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-07-14 23:38:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-07-14 17:20:12 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2012-07-13 17:06:08 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-07-13 14:39:56 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-07-13 14:39:56 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-07-11 20:58:44 | 001,583,272 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-07-11 20:57:18 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-07-11 20:14:45 | 000,555,700 | ---- | M] () -- C:\WINDOWS\System32\prfh0415.dat
[2012-07-11 20:14:45 | 000,496,996 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-07-11 20:14:45 | 000,104,692 | ---- | M] () -- C:\WINDOWS\System32\prfc0415.dat
[2012-07-11 20:14:45 | 000,085,480 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-07-08 14:48:36 | 000,186,404 | ---- | M] () -- C:\Documents and Settings\Admin\.recently-used.xbel
[2012-07-07 14:44:03 | 000,001,105 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Microsoft Visual Studio 2010.lnk
[2012-07-07 08:30:35 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-07-05 18:24:35 | 000,061,952 | ---- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-07-05 11:35:40 | 000,049,684 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\ws_rektora.pdf
[2012-07-05 10:40:19 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012-06-26 02:00:00 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-ADMIN-5A97EF78F-Admin.job
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-07-08 14:48:36 | 000,186,404 | ---- | C] () -- C:\Documents and Settings\Admin\.recently-used.xbel
[2012-07-05 18:19:30 | 682,231,808 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\101 Dalmatynczykow DubPL [kenji5].avi
[2012-07-05 11:35:39 | 000,049,684 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\ws_rektora.pdf
[2012-06-27 13:21:37 | 041,383,660 | ---- | C] () -- C:\Documents and Settings\Admin\Moje dokumentyMadonna - 08 - Jimmy Jimmy2.wav
[2012-06-27 13:21:31 | 041,383,660 | ---- | C] () -- C:\Documents and Settings\Admin\Moje dokumentyMadonna - 08 - Jimmy Jimmy1.wav
[2012-06-27 13:21:27 | 041,383,660 | ---- | C] () -- C:\Documents and Settings\Admin\Moje dokumentyMadonna - 08 - Jimmy Jimmy.wav
[2012-06-22 21:58:05 | 000,000,593 | ---- | C] () -- C:\xxx.m3u
[2012-05-21 10:02:40 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\d3d9caps.dat
[2012-04-19 12:03:43 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Admin\widnows
[2012-03-30 15:54:46 | 002,469,760 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2012-03-30 15:54:46 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2012-03-30 15:54:46 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2012-03-30 15:54:46 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2012-03-30 15:54:46 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2012-02-13 23:47:53 | 000,000,215 | ---- | C] () -- C:\WINDOWS\Informat.ini
[2012-01-30 21:47:50 | 000,555,700 | ---- | C] () -- C:\WINDOWS\System32\prfh0415.dat
[2012-01-30 21:47:49 | 000,104,692 | ---- | C] () -- C:\WINDOWS\System32\prfc0415.dat
[2012-01-15 13:04:38 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-12-19 12:42:30 | 005,404,457 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1993962763-884357618-1177238915-1004-0.dat
[2011-12-19 12:42:30 | 000,354,162 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
[2011-11-05 10:22:30 | 000,055,083 | ---- | C] () -- C:\Documents and Settings\Admin\sdfplot.ps
[2011-11-05 10:13:51 | 000,063,634 | ---- | C] () -- C:\Documents and Settings\Admin\maxout.xmaxima
[2011-11-05 09:51:50 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\Admin\.xmaximarc
[2011-10-22 23:01:29 | 000,005,769 | ---- | C] () -- C:\Documents and Settings\Admin\maxout.gnuplot
[2011-04-10 12:19:59 | 000,029,894 | ---- | C] () -- C:\Documents and Settings\Admin\ExpressivoDictionary.xml
[2011-03-19 13:57:13 | 000,000,476 | ---- | C] () -- C:\WINDOWS\MxGrid.INI
[2011-03-19 13:45:14 | 000,000,066 | ---- | C] () -- C:\WINDOWS\mxreader.INI
[2011-03-19 13:44:38 | 000,001,586 | ---- | C] () -- C:\WINDOWS\AmFK.ini
[2011-03-19 13:44:09 | 000,101,888 | ---- | C] () -- C:\WINDOWS\System32\BUTIL.DLL
[2011-03-19 13:44:09 | 000,002,055 | R--- | C] () -- C:\WINDOWS\BTI.INI
[2011-03-01 17:30:10 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\Admin\Dane aplikacji\filterclsid.dat
[2011-02-28 23:45:29 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2011-02-28 23:44:04 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-09-29 12:29:40 | 000,000,197 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010-09-28 12:22:21 | 000,000,025 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010-09-28 12:12:19 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2010-07-31 17:10:47 | 000,000,025 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010-07-30 20:30:45 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2009-10-31 00:58:09 | 000,061,952 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-04-12 22:47:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\BitTorrent
[2011-12-28 17:13:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Cabrilog
[2012-05-29 00:29:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\CadSoft
[2011-11-25 15:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Canneverbe Limited
[2012-04-15 19:18:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010-08-28 12:10:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\DAEMON Tools
[2011-11-26 15:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\DAEMON Tools Lite
[2010-08-28 12:10:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\DAEMON Tools Pro
[2011-10-27 15:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Dev-Cpp
[2010-08-30 14:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Eitbit
[2011-10-27 21:02:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Expressivo
[2012-05-09 12:35:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\FILEminimizer
[2012-02-24 18:41:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Gadu-Gadu 10
[2012-03-26 22:20:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GameRanger
[2010-08-20 21:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GanymedeNet
[2012-03-29 15:39:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GetRightToGo
[2012-07-08 14:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\gtk-2.0
[2012-02-14 22:03:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\HideIPEasy
[2010-09-16 21:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\IVONA Reader
[2012-03-08 19:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mathsoft
[2010-02-16 21:11:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\OpenFM
[2012-03-08 20:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\PTC
[2011-03-01 00:27:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Samsung
[2012-02-20 00:48:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\SumatraPDF
[2011-03-19 15:43:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\SuperMemo World
[2012-03-27 15:14:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\TeamViewer
[2011-12-24 01:38:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Tibia
[2012-05-05 10:32:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\VSO
[2012-05-25 10:54:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\YourFileDownloader
[2011-12-28 17:13:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Cabrilog
[2011-11-25 15:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited
[2011-03-19 15:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-04-25 15:30:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\FILEminimizer
[2010-03-15 09:16:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2012-02-14 22:03:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\HideIPEasy
[2012-04-01 13:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Install-Block
[2012-06-26 10:32:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-09-29 10:37:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle
[2010-09-29 10:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle VideoSpin
[2012-03-08 20:00:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PTC
[2012-04-15 22:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2012-03-27 15:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ScreenVCR
[2011-03-19 13:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Symfonia
[2012-03-26 19:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBZEN
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
< End of report >
 
Wygenerowano w 0.244s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!