Mam Windows 7 64 bity, wstawiam więc dwa logi z OTL:
- Kod: Zaznacz wszystko
OTL logfile created on: 2011-04-30 16:05:11 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\eMaNeTeWu\Downloads
64bit- Enterprise Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 57,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 41,26 Gb Total Space | 10,04 Gb Free Space | 24,34% Space Free | Partition Type: NTFS
Drive D: | 25,02 Gb Total Space | 3,93 Gb Free Space | 15,69% Space Free | Partition Type: NTFS
Drive E: | 60,01 Gb Total Space | 5,67 Gb Free Space | 9,44% Space Free | Partition Type: NTFS
Drive F: | 60,01 Gb Total Space | 0,22 Gb Free Space | 0,37% Space Free | Partition Type: NTFS
Drive G: | 4,12 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive H: | 37,31 Gb Total Space | 0,77 Gb Free Space | 2,06% Space Free | Partition Type: NTFS
Computer Name: PECET | User Name: eMaNeTeWu | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011-04-30 16:03:58 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\eMaNeTeWu\Downloads\OTL (1).exe
PRC - [2010-12-29 13:38:17 | 000,389,215 | ---- | M] (THOMSON Telecom Belgium) -- C:\Program Files (x86)\Thomson\ST330\service\st330service.exe
PRC - [2010-12-29 13:38:14 | 000,557,149 | ---- | M] (THOMSON Telecom Belgium) -- C:\Program Files (x86)\Thomson\ST330\diagnostics\diagnostics.exe
PRC - [2010-11-04 00:51:58 | 000,351,336 | ---- | M] () -- d:\EVGA Precision\EVGAPrecision.exe
PRC - [2010-03-16 02:09:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009-11-26 22:14:14 | 000,042,667 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\winlogon.exe
PRC - [2009-11-26 22:14:14 | 000,042,667 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\services.exe
PRC - [2009-11-26 22:14:14 | 000,042,667 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\lsass.exe
PRC - [2009-07-14 03:14:47 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2009-07-14 03:14:28 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\PING.EXE
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2011-04-30 16:03:58 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\eMaNeTeWu\Downloads\OTL (1).exe
MOD - [2009-07-14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011-03-15 00:18:20 | 000,407,336 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011-02-02 00:01:20 | 001,352,832 | ---- | M] (Lavasoft) [On_Demand | Stopped] -- D:\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010-12-29 13:38:17 | 000,389,215 | ---- | M] (THOMSON Telecom Belgium) [Auto | Running] -- C:\Program Files (x86)\Thomson\ST330\service\st330service.exe -- (st330service)
SRV - [2010-09-10 17:12:52 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-03-16 02:09:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009-09-20 11:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV:[b]64bit:[/b] - [2011-02-02 00:01:38 | 000,069,152 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Lbd.sys -- (Lbd)
DRV:[b]64bit:[/b] - [2010-08-19 13:32:14 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2010-08-19 13:32:13 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2010-08-15 17:08:07 | 000,054,272 | ---- | M] (THOMSON Telecom Belgium) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stppp.sys -- (stppp)
DRV:[b]64bit:[/b] - [2010-08-15 17:08:07 | 000,047,616 | ---- | M] (THOMSON Telecom Belgium) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\st330.sys -- (ST330)
DRV:[b]64bit:[/b] - [2010-08-15 17:08:07 | 000,024,576 | ---- | M] (THOMSON Telecom Belgium) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stbus.sys -- (STBUS)
DRV:[b]64bit:[/b] - [2010-02-04 14:00:08 | 000,020,568 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dgderdrv.sys -- (dgderdrv)
DRV:[b]64bit:[/b] - [2010-02-04 02:05:36 | 000,159,136 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:[b]64bit:[/b] - [2010-02-04 02:05:36 | 000,125,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV:[b]64bit:[/b] - [2010-02-04 02:05:36 | 000,036,256 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:[b]64bit:[/b] - [2010-02-04 02:05:36 | 000,016,800 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV:[b]64bit:[/b] - [2009-11-09 01:42:00 | 000,016,392 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:[b]64bit:[/b] - [2009-06-10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-05-20 23:32:28 | 000,035,840 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BVRPMPR5a64.SYS -- (BVRPMPR5a64)
DRV:[b]64bit:[/b] - [2005-12-23 21:44:56 | 000,009,216 | ---- | M] (Conexant Systems, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UIUSYS64.SYS -- (UIUSys)
DRV - [2010-11-04 00:51:56 | 000,014,440 | ---- | M] () [Kernel | On_Demand | Running] -- d:\EVGA Precision\RTCore64.sys -- (RTCore64)
DRV - [2009-11-09 01:42:00 | 000,016,392 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys -- (TFsExDisk)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
IE - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-09-05 13:55:59 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2011-03-30 21:29:34 | 000,012,393 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
O1 - Hosts: <html lang='en'>
O1 - Hosts: <head>
O1 - Hosts: <meta name="description" content="Yahoo! GeoCities offers you a free web site and all the tools you need to build a dynamic site. Features include easy-to-use site building tools, online help, web site statistics, secure and reliable hosting, and an intuitive control panel.">
O1 - Hosts: <title>Yahoo! GeoCities: Get a web site with easy-to-use site building tools.</title>
O1 - Hosts: <link rel="stylesheet" type="text/css" media="all" href="http://l.yimg.com/a/combo?yui/2.5.2/build/reset-fonts-grids/reset-fonts-grids.css&smbiz/css/headfoot_6.css&smbiz/css/ysbs_glossary_1.css">
O1 - Hosts: <link rel="stylesheet" type="text/css" media="all" href="http://l.yimg.com/a/lib/smbiz/css/geocities_84954.css">
O1 - Hosts: <style>
O1 - Hosts: h1 { line-height:30px;height:30px; padding-left:15px; font-weight:bold;font-size:1.6em;color:#1f296a;}
O1 - Hosts: .services li { margin-left:1.0em; padding-left:0.5em; background:url("http://l.yimg.com/a/lib/smbiz/i/geo_bullet_3x3_1.gif") no-repeat 0 0.5em; margin-bottom:0.5em;margin-left:1.5em;margin-right:0.5em;width:6em}
O1 - Hosts: .services li {float:left; width:17em; font-size:116%;margin-top:0.8em}
O1 - Hosts: .services { font-size:116%; padding-bottom:20px }
O1 - Hosts: .learnmore a {color:#2882DE;font-size:16px}
O1 - Hosts: .image_web {float:right; margin:15px 0 0 15px}
O1 - Hosts: p {margin:20px;font-size:1em;}
O1 - Hosts: h2 {margin:20px 0 0 20px;color:#1F296;font-weight:bold;font-size:1.25em;color:#1f296a;}
O1 - Hosts: h3 {margin:20px;color:#1F296;font-weight:bold;font-size:1.15em;color:#1f296a;}
O1 - Hosts: li.rule {border-top:solid 1px #DBE1E6;}
O1 - Hosts: </style>
O1 - Hosts: </head>
O1 - Hosts: <body>
O1 - Hosts: <!-- following code added by server. PLEASE REMOVE -->
O1 - Hosts: <!-- preceding code added by server. PLEASE REMOVE -->
O1 - Hosts: <div class="ez-mw" style ="height:900px;width:905px">
O1 - Hosts: <div class="ez-wri ez-oh" style="width:900px">
O1 - Hosts: 90 more lines...
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found
O3 - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\..\Toolbar\WebBrowser: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - No CLSID value found.
O3:[b]64bit:[/b] - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Bron-Spizaetus] C:\Windows\ShellNew\sempalong.exe ()
O4 - HKLM..\Run: [diagnostics] C:\Program Files (x86)\Thomson\ST330\diagnostics\diagnostics.exe (THOMSON Telecom Belgium)
O4 - HKU\S-1-5-21-869004159-1201278982-3963955815-1000..\Run: [Tok-Cirrhatus] C:\Users\eMaNeTeWu\AppData\Local\smss.exe ()
O4 - Startup: C:\Users\eMaNeTeWu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Empty.pif ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 1
O7 - HKU\S-1-5-21-869004159-1201278982-3963955815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - ("C:\Windows\eksplorasi.exe") - C:\Windows\eksplorasi.exe ()
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 0
O33 - MountPoints2\I\Shell - "" = AutoRun
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\Setup.exe
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\setup.exe /autorun
O33 - MountPoints2\R\Shell - "" = AutoRun
O33 - MountPoints2\R\Shell\AutoRun\command - "" = R:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011-04-30 11:17:59 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\Desktop\streszczenia
[2011-04-30 09:53:58 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-30
[2011-04-29 08:08:19 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-29
[2011-04-28 21:22:02 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\Desktop\lalka.audiostreszczenie
[2011-04-28 21:03:40 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\Desktop\pan.tadeusz.audiostreszczenie
[2011-04-28 15:50:01 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-28
[2011-04-27 09:48:26 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-27
[2011-04-26 09:30:03 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-26
[2011-04-25 09:45:45 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-25
[2011-04-24 00:00:01 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-24
[2011-04-23 21:36:24 | 000,720,952 | ---- | C] (Duplex Secure Ltd.) -- C:\Users\eMaNeTeWu\Desktop\SPTDinst-v178-x64.exe
[2011-04-23 10:16:39 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-23
[2011-04-22 08:45:59 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-22
[2011-04-21 00:00:00 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-21
[2011-04-20 00:00:01 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-20
[2011-04-19 16:54:00 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-19
[2011-04-18 15:33:48 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-18
[2011-04-17 00:00:00 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-17
[2011-04-16 00:00:01 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-16
[2011-04-15 06:06:53 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-15
[2011-04-14 06:20:20 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-14
[2011-04-13 06:25:42 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-13
[2011-04-07 10:32:23 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011-04-07 06:06:51 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-7
[2011-04-06 17:23:02 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-6
[2011-04-05 19:16:42 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok-12-5
[2011-04-05 18:14:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\nLite
[2011-04-05 18:14:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\nLite
[2011-04-05 16:21:02 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Worms 2
[2011-04-05 16:21:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Worms 2
[2011-04-05 16:19:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Worms
[2011-04-03 12:41:54 | 000,000,000 | ---D | C] -- C:\Users\eMaNeTeWu\Documents\SHIFT 2 UNLEASHED
[2011-04-02 20:43:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2011-04-02 20:43:42 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011-04-30 16:07:28 | 003,145,728 | -HS- | M] () -- C:\Users\eMaNeTeWu\NTUSER.DAT
[2011-04-30 15:52:19 | 000,012,393 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok.A12.em.bin
[2011-04-30 15:41:33 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011-04-30 15:41:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-04-30 15:41:22 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys
[2011-04-30 15:40:27 | 000,009,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-04-30 15:40:27 | 000,009,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-04-30 15:40:04 | 006,291,456 | -H-- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\IconCache.db
[2011-04-30 15:38:00 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-869004159-1201278982-3963955815-1000UA.job
[2011-04-30 11:16:01 | 164,057,148 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\streszczenia.rar
[2011-04-29 21:57:17 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempvn4152.html
[2011-04-29 17:38:00 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-869004159-1201278982-3963955815-1000Core.job
[2011-04-28 21:39:15 | 000,002,379 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\Google Chrome.lnk
[2011-04-27 21:26:49 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempQP1868.html
[2011-04-26 21:25:58 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFI3348.html
[2011-04-26 19:18:41 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Templqs196.html
[2011-04-26 10:29:24 | 000,016,182 | ---- | M] () -- C:\napis.zip
[2011-04-24 19:56:05 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempIK2800.html
[2011-04-24 18:27:58 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempyN3736.html
[2011-04-24 10:58:02 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGXM200.html
[2011-04-23 22:19:21 | 730,560,512 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\canibal.xvid.qix.avi.crdownload
[2011-04-23 21:36:31 | 000,720,952 | ---- | M] (Duplex Secure Ltd.) -- C:\Users\eMaNeTeWu\Desktop\SPTDinst-v178-x64.exe
[2011-04-22 19:52:14 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Temple3824.html
[2011-04-20 19:38:50 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBi3548.html
[2011-04-19 19:02:41 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBV1908.html
[2011-04-18 23:37:35 | 001,557,008 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011-04-18 23:37:35 | 000,703,168 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2011-04-18 23:37:35 | 000,613,980 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011-04-18 23:37:35 | 000,136,466 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2011-04-18 23:37:35 | 000,108,106 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011-04-17 21:30:43 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempug4020.html
[2011-04-17 17:43:06 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempgl3452.html
[2011-04-17 12:57:24 | 024,669,088 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\gg10.exe
[2011-04-17 12:40:36 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSf1948.html
[2011-04-17 12:40:36 | 000,002,089 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbA1948.html
[2011-04-16 21:32:30 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempdR3332.html
[2011-04-15 19:54:20 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHu2596.html
[2011-04-15 06:34:28 | 000,840,278 | ---- | M] () -- C:\2011-04-15 06.34.28.jpg
[2011-04-15 06:34:12 | 000,933,810 | ---- | M] () -- C:\2011-04-15 06.34.13.jpg
[2011-04-15 06:33:58 | 000,850,600 | ---- | M] () -- C:\2011-04-15 06.33.58.jpg
[2011-04-14 20:30:49 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempyc2812.html
[2011-04-14 19:32:18 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempiJ2680.html
[2011-04-14 18:55:31 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOH2932.html
[2011-04-14 17:32:10 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TemplX2380.html
[2011-04-14 17:22:08 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempiC3196.html
[2011-04-14 17:11:10 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempbi2516.html
[2011-04-13 19:23:48 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJu3092.html
[2011-04-13 17:56:47 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFZ3332.html
[2011-04-13 17:34:45 | 000,047,104 | ---- | M] () -- C:\Windows\SysWow64\KMVIDC32.DLL
[2011-04-12 19:24:05 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\Temppy1068.html
[2011-04-12 17:32:39 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TemphH3680.html
[2011-04-11 21:11:21 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHz2788.html
[2011-04-11 21:00:53 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSp3728.html
[2011-04-11 19:36:11 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYw3060.html
[2011-04-10 20:25:55 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbI3652.html
[2011-04-10 19:31:33 | 281,755,687 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\Pi.1998.PL.DVDRip.XviD_up_merez.part2.rar
[2011-04-10 18:41:26 | 450,887,680 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\Pi.1998.PL.DVDRip.XviD_up_merez.part1.rar
[2011-04-10 15:18:52 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAv1828.html
[2011-04-10 12:40:42 | 000,000,934 | ---- | M] () -- C:\Users\eMaNeTeWu\Desktop\shift2u.lnk
[2011-04-08 19:01:20 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBv2024.html
[2011-04-07 15:19:21 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempxBJ752.html
[2011-04-06 20:21:11 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWb4032.html
[2011-04-05 20:29:19 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWr2704.html
[2011-04-05 19:42:16 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWL3024.html
[2011-04-04 19:43:58 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNR2784.html
[2011-04-03 18:39:44 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDT2020.html
[2011-04-03 15:41:24 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbC2284.html
[2011-04-03 15:40:06 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempmzC208.html
[2011-04-02 19:16:46 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkZ2952.html
[2011-03-31 22:09:01 | 000,002,432 | ---- | M] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbI1864.html
[2011-03-31 18:58:16 | 001,708,179 | ---- | M] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0846.jpg
[2011-03-31 18:57:44 | 001,612,203 | ---- | M] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0850.jpg
[2011-03-31 18:56:16 | 001,755,583 | ---- | M] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0849.jpg
[2011-03-31 18:55:42 | 001,593,715 | ---- | M] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0848.jpg
[2011-03-31 18:54:30 | 001,616,043 | ---- | M] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0847.jpg
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011-04-30 15:52:19 | 000,012,393 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Bron.tok.A12.em.bin
[2011-04-30 11:05:10 | 164,057,148 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\streszczenia.rar
[2011-04-29 20:40:50 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempvn4152.html
[2011-04-27 18:23:31 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempQP1868.html
[2011-04-26 21:25:51 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFI3348.html
[2011-04-26 19:05:00 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Templqs196.html
[2011-04-24 19:13:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempIK2800.html
[2011-04-24 18:19:10 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempyN3736.html
[2011-04-24 10:56:51 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGXM200.html
[2011-04-23 21:28:12 | 730,560,512 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\canibal.xvid.qix.avi.crdownload
[2011-04-22 18:56:03 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temple3824.html
[2011-04-20 18:57:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBi3548.html
[2011-04-19 18:59:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBV1908.html
[2011-04-17 19:12:57 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempug4020.html
[2011-04-17 16:35:19 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempgl3452.html
[2011-04-17 12:55:37 | 024,669,088 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\gg10.exe
[2011-04-17 12:40:36 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSf1948.html
[2011-04-17 12:40:36 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbA1948.html
[2011-04-16 20:50:12 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempdR3332.html
[2011-04-15 18:46:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHu2596.html
[2011-04-15 18:19:50 | 000,933,810 | ---- | C] () -- C:\2011-04-15 06.34.13.jpg
[2011-04-15 18:19:50 | 000,850,600 | ---- | C] () -- C:\2011-04-15 06.33.58.jpg
[2011-04-15 18:19:24 | 000,840,278 | ---- | C] () -- C:\2011-04-15 06.34.28.jpg
[2011-04-14 20:30:35 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempyc2812.html
[2011-04-14 19:32:13 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempiJ2680.html
[2011-04-14 18:31:28 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOH2932.html
[2011-04-14 17:31:53 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemplX2380.html
[2011-04-14 17:18:53 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempiC3196.html
[2011-04-14 16:40:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempbi2516.html
[2011-04-13 18:50:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJu3092.html
[2011-04-13 17:03:05 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFZ3332.html
[2011-04-12 19:12:39 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temppy1068.html
[2011-04-12 16:42:20 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemphH3680.html
[2011-04-11 21:05:46 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHz2788.html
[2011-04-11 20:16:13 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSp3728.html
[2011-04-11 18:37:08 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYw3060.html
[2011-04-10 20:23:34 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbI3652.html
[2011-04-10 19:07:23 | 281,755,687 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\Pi.1998.PL.DVDRip.XviD_up_merez.part2.rar
[2011-04-10 17:55:15 | 450,887,680 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\Pi.1998.PL.DVDRip.XviD_up_merez.part1.rar
[2011-04-10 13:47:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAv1828.html
[2011-04-10 12:40:42 | 000,000,934 | ---- | C] () -- C:\Users\eMaNeTeWu\Desktop\shift2u.lnk
[2011-04-08 18:48:53 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBv2024.html
[2011-04-07 14:43:23 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempxBJ752.html
[2011-04-06 18:50:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWb4032.html
[2011-04-05 20:22:51 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWr2704.html
[2011-04-05 19:36:31 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWL3024.html
[2011-04-05 16:21:48 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\KMVIDC32.DLL
[2011-04-04 18:46:55 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNR2784.html
[2011-04-03 22:27:39 | 000,016,182 | ---- | C] () -- C:\napis.zip
[2011-04-03 18:39:23 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDT2020.html
[2011-04-03 15:41:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbC2284.html
[2011-04-03 15:26:29 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempmzC208.html
[2011-04-02 18:59:07 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkZ2952.html
[2011-03-31 18:55:17 | 001,708,179 | ---- | C] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0846.jpg
[2011-03-31 18:55:13 | 001,612,203 | ---- | C] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0850.jpg
[2011-03-31 18:51:37 | 001,755,583 | ---- | C] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0849.jpg
[2011-03-31 18:51:35 | 001,593,715 | ---- | C] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0848.jpg
[2011-03-31 18:51:25 | 001,616,043 | ---- | C] () -- C:\Users\eMaNeTeWu\Documents\Zdjęcie0847.jpg
[2011-03-31 18:38:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbI1864.html
[2011-03-29 21:03:15 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAe3880.html
[2011-03-29 19:00:46 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempht3192.html
[2011-03-28 20:18:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempfvH776.html
[2011-03-27 17:46:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYzq588.html
[2011-03-27 13:58:03 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempzm1724.html
[2011-03-25 18:31:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSon928.html
[2011-03-23 19:14:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNd4004.html
[2011-03-22 19:43:25 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempzR2772.html
[2011-03-22 18:23:12 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSF2184.html
[2011-03-21 18:51:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempzk3844.html
[2011-03-20 18:29:56 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDOp652.html
[2011-03-20 15:11:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempRn3792.html
[2011-03-19 14:56:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempox2200.html
[2011-03-17 18:47:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkK1924.html
[2011-03-16 18:36:12 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempvg3288.html
[2011-03-16 16:59:34 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemprU4060.html
[2011-03-16 16:46:14 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempjZ2356.html
[2011-03-15 18:47:26 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempea2344.html
[2011-03-14 18:31:43 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempqk3884.html
[2011-03-13 19:09:03 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYG3748.html
[2011-03-12 18:48:13 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempolw900.html
[2011-03-11 18:18:50 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempzR3896.html
[2011-03-10 18:17:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGu3684.html
[2011-03-07 18:42:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempoZ3392.html
[2011-03-02 18:24:50 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNb3572.html
[2011-02-28 18:32:20 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temppg2732.html
[2011-02-27 18:28:26 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempKS3792.html
[2011-02-27 12:40:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemptN2320.html
[2011-02-25 19:47:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJE3872.html
[2011-02-24 18:31:30 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSd2328.html
[2011-02-24 13:28:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNr3404.html
[2011-02-23 12:06:27 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempRf2516.html
[2011-02-22 18:06:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempwX3644.html
[2011-02-22 14:49:12 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOsZ700.html
[2011-02-22 14:49:12 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempeBZ700.html
[2011-02-22 14:35:10 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temprd3544.html
[2011-02-21 18:49:28 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempxo3364.html
[2011-02-20 15:55:57 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempdx2300.html
[2011-02-20 15:19:37 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempeOd584.html
[2011-02-20 13:18:46 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempej4004.html
[2011-02-19 21:57:36 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempsYo800.html
[2011-02-19 17:58:01 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempZQt632.html
[2011-02-18 18:05:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempbx3116.html
[2011-02-17 18:52:14 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempoj3588.html
[2011-02-16 18:01:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMu3080.html
[2011-02-11 20:12:36 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempLh3580.html
[2011-02-11 17:45:17 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkeY164.html
[2011-02-08 18:38:21 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempds1424.html
[2011-02-06 21:49:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJA3592.html
[2011-02-06 21:49:47 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYs3592.html
[2011-02-06 17:44:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempnE3824.html
[2011-02-06 17:44:44 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempaY3824.html
[2011-02-06 13:58:39 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempoG2332.html
[2011-02-03 18:05:53 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempsx3344.html
[2011-02-01 20:05:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemprG2280.html
[2011-01-30 20:44:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempEK3452.html
[2011-01-29 18:27:25 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempfX3008.html
[2011-01-29 14:09:08 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAC3468.html
[2011-01-29 14:04:48 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempdl4076.html
[2011-01-28 18:06:55 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempQZ3404.html
[2011-01-28 14:08:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempLP2780.html
[2011-01-27 18:45:55 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempfP2192.html
[2011-01-26 21:08:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSj2128.html
[2011-01-25 18:52:08 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempKM3532.html
[2011-01-24 22:33:35 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWI3708.html
[2011-01-24 20:04:20 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNI3908.html
[2011-01-24 18:23:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNO2068.html
[2011-01-24 16:00:39 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempcx1824.html
[2011-01-23 18:08:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempER2504.html
[2011-01-23 14:02:54 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempej2772.html
[2011-01-22 22:28:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempjp3144.html
[2011-01-22 22:28:52 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGo3144.html
[2011-01-21 20:30:33 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBd1896.html
[2011-01-21 19:10:40 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempZQ3392.html
[2011-01-21 19:10:40 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJa3392.html
[2011-01-21 15:16:57 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempCu3428.html
[2011-01-19 13:58:10 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFt1348.html
[2011-01-18 20:56:21 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempqh2516.html
[2011-01-18 18:14:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempCP1960.html
[2011-01-18 16:43:19 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempVL2932.html
[2011-01-18 12:29:37 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempeS1708.html
[2011-01-17 18:37:30 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempaR3668.html
[2011-01-17 16:03:23 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNOy748.html
[2011-01-17 14:55:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFl2772.html
[2011-01-14 18:45:18 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMJ1608.html
[2011-01-13 19:21:10 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYA1472.html
[2011-01-13 19:21:10 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempvY1472.html
[2011-01-13 18:06:42 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempfo2216.html
[2011-01-12 18:59:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYf1900.html
[2011-01-12 18:40:50 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempfA1996.html
[2011-01-12 16:58:35 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempsAs420.html
[2011-01-12 16:58:35 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempqJo420.html
[2011-01-12 01:09:05 | 006,291,456 | -H-- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\IconCache.db
[2011-01-11 18:50:37 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWz3216.html
[2011-01-10 18:50:42 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempmd1560.html
[2011-01-08 19:44:53 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempcE3092.html
[2011-01-08 01:27:14 | 001,573,418 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-01-07 18:13:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempsU1700.html
[2011-01-07 14:35:30 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempks1672.html
[2011-01-06 17:43:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempvR3140.html
[2011-01-05 18:24:36 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempwe2244.html
[2011-01-04 22:55:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempXg3128.html
[2011-01-04 22:55:32 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMb3128.html
[2011-01-02 15:43:26 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemplT1680.html
[2011-01-02 13:37:27 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempJt2456.html
[2011-01-01 15:41:17 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDb2576.html
[2010-12-31 18:48:40 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAd3992.html
[2010-12-31 00:33:59 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempdC3360.html
[2010-12-31 00:33:59 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGl3360.html
[2010-12-30 18:31:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempoR2612.html
[2010-12-29 20:27:28 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbU3760.html
[2010-12-05 21:13:45 | 000,000,017 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\resmon.resmoncfg
[2010-11-27 17:54:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDV1972.html
[2010-11-26 23:44:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempKf1588.html
[2010-11-26 23:44:58 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Templq1588.html
[2010-11-26 18:00:19 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Templz3052.html
[2010-11-25 18:29:04 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempxU1552.html
[2010-11-23 20:01:04 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSC2700.html
[2010-11-23 19:44:17 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempET3592.html
[2010-11-22 18:56:04 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempEo1272.html
[2010-11-22 17:47:12 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempRO1452.html
[2010-11-21 18:35:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempEu1940.html
[2010-11-20 11:08:08 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYt2600.html
[2010-11-19 18:14:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temptu2660.html
[2010-11-18 18:12:48 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSO2308.html
[2010-11-18 17:39:34 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHW3952.html
[2010-11-18 16:29:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHD3468.html
[2010-11-17 21:49:01 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempDw1320.html
[2010-11-17 18:24:59 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempyM2008.html
[2010-11-16 18:13:13 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempjL3100.html
[2010-11-14 19:41:07 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempcT2296.html
[2010-11-14 18:18:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemprE1840.html
[2010-11-14 12:37:37 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempTe3340.html
[2010-11-14 02:27:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempVG3548.html
[2010-11-14 02:27:06 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempTA3548.html
[2010-11-13 18:28:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemptM2936.html
[2010-11-13 15:08:25 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemprP3228.html
[2010-11-13 15:08:25 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempFa3228.html
[2010-11-12 15:22:05 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempUe3820.html
[2010-11-11 17:53:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempbW3372.html
[2010-11-09 18:16:31 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempEQ2860.html
[2010-11-08 20:57:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempmn3708.html
[2010-11-08 20:57:49 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOf3708.html
[2010-11-08 20:33:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempmA3392.html
[2010-11-08 20:10:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempwO2584.html
[2010-11-08 18:15:33 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSR3480.html
[2010-11-08 16:58:13 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempPYM876.html
[2010-11-07 17:52:26 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempusH528.html
[2010-11-07 13:49:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempTC2052.html
[2010-11-07 13:49:47 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempNX2052.html
[2010-11-07 13:08:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAt3648.html
[2010-11-06 23:06:30 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempUR1324.html
[2010-11-06 18:39:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOz3396.html
[2010-11-06 16:44:43 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempdo2252.html
[2010-11-06 15:14:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOv2228.html
[2010-11-06 13:32:43 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkYW244.html
[2010-11-05 21:19:00 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempzH2316.html
[2010-11-05 21:19:00 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempxP2316.html
[2010-11-05 21:11:30 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempxv1516.html
[2010-11-05 21:11:30 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempXK1516.html
[2010-11-05 19:45:19 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYL2384.html
[2010-11-05 19:45:19 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMh2384.html
[2010-11-05 18:21:23 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempdU2608.html
[2010-11-05 16:51:10 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSN3692.html
[2010-11-03 22:01:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempWB3328.html
[2010-11-03 19:24:28 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempLP2264.html
[2010-11-03 18:11:56 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempth2664.html
[2010-10-31 21:27:56 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempZg3784.html
[2010-10-31 18:25:17 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempdfy972.html
[2010-10-31 13:53:14 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempUb2440.html
[2010-10-30 19:54:01 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempkT1896.html
[2010-10-30 19:54:01 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempzC1896.html
[2010-10-30 18:39:51 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempiU1256.html
[2010-10-30 18:05:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temphq3332.html
[2010-10-30 09:58:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempch2144.html
[2010-10-29 22:40:21 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempUYt580.html
[2010-10-29 18:20:25 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempuj3388.html
[2010-10-28 17:43:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempfq3404.html
[2010-10-27 17:51:38 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempqc3396.html
[2010-10-26 20:10:06 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAn2608.html
[2010-10-26 17:37:00 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempLy2980.html
[2010-10-23 17:57:28 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAH3040.html
[2010-10-23 13:16:31 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempjm1964.html
[2010-10-23 11:10:44 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempYl2104.html
[2010-10-23 10:20:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempPE1820.html
[2010-10-23 10:20:45 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempau1820.html
[2010-10-23 10:18:31 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHq1920.html
[2010-10-23 10:18:31 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempuz1920.html
[2010-10-22 18:06:18 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempSrl776.html
[2010-10-21 21:18:23 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempxp3124.html
[2010-10-21 17:58:14 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMs1772.html
[2010-10-20 19:58:00 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOf3248.html
[2010-10-20 18:47:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempRx3804.html
[2010-10-19 15:23:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempET2028.html
[2010-10-17 12:41:24 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempTQ3592.html
[2010-10-17 12:41:24 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempdX3592.html
[2010-10-16 06:22:24 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempOm2092.html
[2010-10-16 06:22:24 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempLI2092.html
[2010-10-14 21:06:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempTP1964.html
[2010-10-14 21:06:32 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempIM1964.html
[2010-10-14 20:50:09 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMn2172.html
[2010-10-14 20:50:09 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempPN2172.html
[2010-10-14 14:53:34 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempGb2676.html
[2010-10-14 14:53:34 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempqE2676.html
[2010-10-14 11:06:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempfs1864.html
[2010-10-14 11:06:41 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempzi1864.html
[2010-09-28 17:51:54 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Temprj2920.html
[2010-09-28 16:18:14 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempQB3264.html
[2010-09-28 16:18:14 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempqU3264.html
[2010-09-27 20:35:23 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2010-09-19 11:53:25 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempzo2600.html
[2010-09-19 11:53:25 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempox2600.html
[2010-09-14 16:56:02 | 000,002,048 | ---- | C] () -- C:\Windows\SysWow64\winver.exe
[2010-09-14 16:44:20 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempUA2204.html
[2010-09-14 16:44:20 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempIx2204.html
[2010-09-11 15:33:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempuL3116.html
[2010-09-11 15:33:32 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Templj3116.html
[2010-09-05 13:50:56 | 000,229,818 | ---- | C] () -- C:\Windows\hpoins19.dat
[2010-09-05 13:50:56 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2010-09-03 20:21:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempho3504.html
[2010-09-01 16:51:11 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TemphG1104.html
[2010-09-01 16:04:50 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempfS1476.html
[2010-09-01 16:04:32 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempCL1476.html
[2010-09-01 15:41:34 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempHM2152.html
[2010-08-31 20:03:46 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempsh3112.html
[2010-08-31 19:17:45 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempAE3228.html
[2010-08-27 17:34:36 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempso2848.html
[2010-08-23 10:12:07 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempacU512.html
[2010-08-21 20:56:52 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\Tempcs2120.html
[2010-08-20 14:33:41 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempVW1956.html
[2010-08-18 21:37:58 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempQK1060.html
[2010-08-17 12:44:49 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempIJ1840.html
[2010-08-17 12:43:22 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempeP1240.html
[2010-08-17 10:39:47 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempRq1100.html
[2010-08-17 07:37:07 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempBz3172.html
[2010-08-17 07:37:07 | 000,002,089 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempMr3172.html
[2010-08-16 19:20:08 | 000,002,432 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\TempId2680.html
[2010-08-15 18:15:30 | 000,057,344 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-08-15 17:17:59 | 000,000,371 | ---- | C] () -- C:\ProgramData\nvUnsupRes.dat
[2010-08-15 17:17:14 | 000,109,624 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-07-26 10:13:40 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010-06-23 12:35:52 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010-06-23 12:35:52 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009-12-07 13:06:08 | 000,042,667 | -H-- | C] () -- C:\Windows\eksplorasi.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\winlogon.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\smss.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\services.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\lsass.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\inetinfo.exe
[2009-12-07 13:06:08 | 000,042,667 | ---- | C] () -- C:\Users\eMaNeTeWu\AppData\Local\csrss.exe
[2009-08-16 10:08:36 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 04:35:42 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2009-07-14 04:34:57 | 000,000,513 | ---- | C] () -- C:\Windows\win.ini
[2009-07-14 04:34:57 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2007-02-05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2000-03-29 16:17:42 | 000,005,824 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[color=#E56717]========== LOP Check ==========[/color]
[2011-04-30 12:06:10 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\AIMP3
[2011-03-25 21:14:28 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Alawar
[2011-03-03 00:44:28 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\BESTplayer
[2011-02-13 23:57:15 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\BlackBean
[2011-02-13 16:52:44 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\COWON
[2010-08-19 13:42:21 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\DAEMON Tools Lite
[2011-03-03 01:00:21 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\EurekaLog
[2011-04-27 21:26:23 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Gadu-Gadu 10
[2010-12-05 22:07:30 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Guitar Pro 6
[2010-09-11 13:03:03 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\HLSW
[2010-09-13 21:41:41 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\IrfanView
[2010-08-18 21:38:42 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\OpenFM
[2010-09-28 15:47:11 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\PC Suite
[2010-09-06 21:38:04 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Publish Providers
[2011-01-31 23:53:13 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Samsung
[2010-10-03 20:30:21 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Sony
[2010-08-15 17:32:18 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Win7codecs
[2010-09-30 06:49:04 | 000,000,000 | ---D | M] -- C:\Users\eMaNeTeWu\AppData\Roaming\Youtube Downloader HD
[2011-04-02 14:45:31 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86
< End of report >
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2011-04-30 16:05:11 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\eMaNeTeWu\Downloads
64bit- Enterprise Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 57,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 41,26 Gb Total Space | 10,04 Gb Free Space | 24,34% Space Free | Partition Type: NTFS
Drive D: | 25,02 Gb Total Space | 3,93 Gb Free Space | 15,69% Space Free | Partition Type: NTFS
Drive E: | 60,01 Gb Total Space | 5,67 Gb Free Space | 9,44% Space Free | Partition Type: NTFS
Drive F: | 60,01 Gb Total Space | 0,22 Gb Free Space | 0,37% Space Free | Partition Type: NTFS
Drive G: | 4,12 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive H: | 37,31 Gb Total Space | 0,77 Gb Free Space | 2,06% Space Free | Partition Type: NTFS
Computer Name: PECET | User Name: eMaNeTeWu | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" File not found
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L"
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}" = Network64
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2007
"{B61ED343-0B14-4241-999C-490CB1A20DA4}" = HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Smart Web Printing" = HP Smart Web Printing 4.51
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer cenzura! Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{104066F4-5897-4067-85D3-4C88B67CCF75}" = AIO_Scan
"{1148E85C-E1AF-48E0-A29C-68DACE07E054}" = Pro Evolution Soccer 2011
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 24
"{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2E87F4AB-99BF-421C-AF7B-365A9C08549A}" = F300
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{3CD5832D-13D9-4751-8B22-3A7D3F4ACA42}" = Quake Live Mozilla Plugin
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}" = PC TWIN SHOCK
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5E6D6161-5509-4f55-9372-1E01792F843A}" = F300_Help
"{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{680808BA-5D88-48A6-A3F3-9B2DD0C84AAC}_is1" = Call of Duty: Black Ops
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{78EFD06D-7583-42F1-9E77-671D8782EB70}" = Adobe Photoshop CS3
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{2D1F88C2-ADAE-47C4-8648-6EA8F7E6EB2D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0020-0415-0000-0000000FF1CE}" = Pakiet zgodności dla systemu Office 2007
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{00C5525B-3CB3-467D-8100-2E6FB306CD86}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002A-0415-1000-0000000FF1CE}_ENTERPRISE_{94A4609B-0414-4427-81F3-0FD282A2D0D3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{94A4609B-0414-4427-81F3-0FD282A2D0D3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}" = AIO_CDB_Software
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7B3E9B3-FB14-4927-894B-E9124509AF5A}" = Adobe Flash Player 10 ActiveX
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CBF4DADD-974D-49C8-BC83-C6F31554001E}" = Adobe Setup
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{D92B72E2-C854-4738-8ED6-4C3661CC17AE}" = Adobe Color JA Extra Settings
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DC635845-46D3-404B-BCB1-FC4A91091AFA}" = SmartWebPrinting
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E7112940-5F8E-4918-B9FE-251F2F8DC81F}" = AIO_CDB_ProductContext
"{E8C37E27-5205-4C8A-BECB-B00533045AAE}" = SHIFT 2 UNLEASHED™
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F6AC5364-2FB7-437a-811A-D645F22AA6AC}" = F300Trb
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Ad-Aware" = Ad-Aware
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_678cd98c8365a5647f9a2e539d120a8" = Adobe Photoshop CS3
"AIMP3" = AIMP3
"AP Tuner 3.08" = AP Tuner 3.08
"AQQ" = WapSter AQQ
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESET Online Scanner" = ESET Online Scanner v3
"Gadu-Gadu 10" = Gadu-Gadu 10
"Guitar Pro 5_is1" = Guitar Pro 5.2
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"IrfanView" = IrfanView (remove only)
"MoorHunt_is1" = MoorHunt 0.6.7.2
"MyFreeCodec" = MyFreeCodec
"nLite_is1" = nLite 1.4.9.1
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PhotoScape" = PhotoScape
"PowerISO" = PowerISO
"Precision" = EVGA Precision 2.0.1
"SpeedTouch 330" = SpeedTouch 330
"Steam App 10" = Counter-Strike
"Winrar 3.93" = Winrar 3.93
"Worms 2" = Worms 2
"Worms Reloaded_is1" = Worms Reloaded
"Wódz Azteków: Nowe ziemie" = Wódz Azteków: Nowe ziemie
"Youtube Downloader HD_is1" = Youtube Downloader HD v. 2.2
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-869004159-1201278982-3963955815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"MyFreeCodec" = MyFreeCodec
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2011-04-29 12:15:15 | Computer Name = pecet | Source = RasClient | ID = 20227
Description =
Error - 2011-04-29 12:15:16 | Computer Name = pecet | Source = RasClient | ID = 20227
Description =
Error - 2011-04-29 12:15:16 | Computer Name = pecet | Source = RasClient | ID = 20227
Description =
Error - 2011-04-30 03:53:52 | Computer Name = pecet | Source = Software Protection Platform Service | ID = 8198
Description = Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9
Error - 2011-04-30 03:53:52 | Computer Name = pecet | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.
Error - 2011-04-30 06:24:15 | Computer Name = pecet | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\WapSter\wapster
aqq\System\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files (x86)\WapSter\wapster aqq\System\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.
Error - 2011-04-30 06:24:30 | Computer Name = pecet | Source = SideBySide | ID = 16842832
Description = Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\ESET\eset
online scanner\ESETSmartInstaller.exe”. Błąd w pliku manifestu lub w pliku zasad
„” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną
wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik
1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Składnik
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Error - 2011-04-30 06:24:47 | Computer Name = pecet | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\spybot
- search & destroy\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files (x86)\spybot - search & destroy\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.
Error - 2011-04-30 09:41:32 | Computer Name = pecet | Source = Software Protection Platform Service | ID = 8198
Description = Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9
Error - 2011-04-30 09:41:32 | Computer Name = pecet | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.
< End of report >
Proszę o pomoc
