OTL logfile created on: 2010-08-14 10:47:10 - Run 1
OTL by OldTimer - Version 3.2.9.1     Folder = H:\Downloads
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = H: | %SystemRoot% = H:\Windows | %ProgramFiles% = H:\Program Files
Drive C: | 107,42 Gb Total Space | 75,28 Gb Free Space | 70,08% Space Free | Partition Type: NTFS
Drive D: | 148,92 Gb Total Space | 34,30 Gb Free Space | 23,03% Space Free | Partition Type: NTFS
Drive E: | 25,49 Gb Total Space | 3,13 Gb Free Space | 12,29% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 185,55 Gb Total Space | 179,31 Gb Free Space | 96,64% Space Free | Partition Type: NTFS
Drive H: | 146,48 Gb Total Space | 81,91 Gb Free Space | 55,92% Space Free | Partition Type: NTFS
Drive I: | 26,31 Gb Total Space | 25,53 Gb Free Space | 97,04% Space Free | Partition Type: NTFS
Drive K: | 98,85 Gb Total Space | 6,98 Gb Free Space | 7,06% Space Free | Partition Type: NTFS
Drive L: | 49,07 Gb Total Space | 8,79 Gb Free Space | 17,91% Space Free | Partition Type: NTFS
Drive N: | 35,47 Gb Total Space | 24,07 Gb Free Space | 67,87% Space Free | Partition Type: NTFS
Drive O: | 98,57 Gb Total Space | 17,25 Gb Free Space | 17,50% Space Free | Partition Type: NTFS
 
Computer Name: ADAM
Current User Name: ANDRZEJ
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010-08-14 10:44:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- H:\Downloads\OTL.exe
PRC - [2010-08-09 20:16:50 | 000,151,552 | ---- | M] () -- H:\Windows\KMService.exe
PRC - [2010-07-24 21:14:53 | 000,910,296 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-06-09 22:05:05 | 000,008,192 | ---- | M] () -- H:\Windows\System32\srvany.exe
PRC - [2010-05-23 11:16:54 | 000,723,248 | ---- | M] (Antibody Software) -- H:\Program Files\WizMouse\WizMouse.exe
PRC - [2010-05-14 15:06:30 | 000,406,848 | ---- | M] (Panda Security, S.L.) -- H:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
PRC - [2010-05-11 16:43:48 | 006,061,400 | ---- | M] (Logitech Inc.) -- H:\Program Files\Logitech\Logitech Vid\Vid.exe
PRC - [2010-05-07 18:47:32 | 000,162,648 | ---- | M] (Logitech Inc.) -- H:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
PRC - [2010-05-07 18:43:52 | 000,651,096 | ---- | M] () -- H:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
PRC - [2010-05-07 18:35:22 | 000,165,208 | ---- | M] (Logitech Inc.) -- H:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2010-05-07 18:34:58 | 000,168,792 | ---- | M] () -- H:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
PRC - [2010-04-30 13:47:30 | 000,136,448 | ---- | M] (Panda Security, S.L.) -- H:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PRC - [2010-03-29 20:26:00 | 000,227,712 | ---- | M] (Microsoft Corporation) -- H:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
PRC - [2010-03-13 05:54:28 | 008,546,848 | ---- | M] (Realtek Semiconductor) -- H:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
PRC - [2010-03-03 06:12:32 | 000,372,736 | ---- | M] (AMD) -- H:\Windows\System32\atieclxx.exe
PRC - [2010-03-03 06:11:58 | 000,172,032 | ---- | M] (AMD) -- H:\Windows\System32\atiesrxx.exe
PRC - [2010-02-19 12:58:44 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2010-01-22 20:55:44 | 000,941,320 | ---- | M] (ABBYY.) -- H:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe
PRC - [2010-01-15 01:14:14 | 000,603,904 | ---- | M] (TuneUp Software) -- H:\Windows\System32\TUProgSt.exe
PRC - [2009-12-22 01:08:39 | 000,814,344 | ---- | M] (ABBYY) -- H:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2009-10-31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- H:\Windows\explorer.exe
PRC - [2009-10-07 14:50:26 | 000,185,640 | ---- | M] (TeamViewer GmbH) -- H:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
PRC - [2009-09-28 03:02:44 | 001,529,432 | ---- | M] (PeerBlock, LLC) -- H:\Downloads\PeerBlock_r181__Win32_Release_(Vista)\peerblock.exe
PRC - [2009-09-23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) -- H:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009-07-14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\taskhost.exe
PRC - [2009-07-14 03:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\conhost.exe
PRC - [2009-03-30 17:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) -- H:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2009-03-30 17:28:36 | 000,183,152 | ---- | M] (Microsoft Corporation) -- H:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2009-03-15 12:15:16 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- H:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2008-11-13 13:04:56 | 000,189,824 | ---- | M] (IncrediMail, Ltd.) -- H:\Program Files\IncrediMail\bin\ImApp.exe
PRC - [2008-11-13 12:59:32 | 000,243,072 | ---- | M] (IncrediMail, Ltd.) -- H:\Program Files\IncrediMail\bin\IncMail.exe
PRC - [2008-08-19 09:47:38 | 001,795,656 | ---- | M] (FLASHGET) -- H:\Program Files\FlashGet Network\FlashGet universal\flashget.exe
PRC - [2008-07-18 16:23:42 | 000,314,584 | R--- | M] (cFos Software GmbH) -- H:\Program Files\cFosSpeed\spd.exe
PRC - [2008-07-18 16:23:36 | 000,867,544 | R--- | M] (cFos Software GmbH) -- H:\Program Files\cFosSpeed\cfosspeed.exe
PRC - [2007-12-27 16:39:30 | 000,166,520 | ---- | M] () -- H:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
PRC - [2007-12-27 16:39:28 | 000,706,056 | ---- | M] (IVT Corporation.) -- H:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
PRC - [2007-12-27 16:39:20 | 000,051,816 | ---- | M] () -- H:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
PRC - [2007-06-18 16:10:32 | 000,271,360 | ---- | M] (Nokia) -- H:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
PRC - [2007-06-15 17:55:00 | 000,300,544 | ---- | M] (Nokia.) -- H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2007-05-11 03:09:48 | 001,050,120 | ---- | M] (O&O Software GmbH) -- H:\Windows\System32\oodag.exe
PRC - [2007-02-11 17:09:06 | 000,204,800 | ---- | M] (A4Tech Co.,Ltd.) -- H:\Program Files\A4Tech\Mouse\Amoumain.exe
PRC - [2006-12-03 01:14:03 | 000,310,784 | ---- | M] (http://autoconnect.prv.pl) -- H:\Program Files\AutoConnect\AutoConnect.exe
PRC - [2006-10-23 00:24:00 | 000,620,152 | ---- | M] (Adobe Systems Inc.) -- H:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
PRC - [2005-01-31 10:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- H:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010-08-14 10:44:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- H:\Downloads\OTL.exe
MOD - [2009-07-14 03:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\sspicli.dll
MOD - [2009-07-14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\sechost.dll
MOD - [2009-07-14 03:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\samcli.dll
MOD - [2009-07-14 03:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\profapi.dll
MOD - [2009-07-14 03:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\netutils.dll
MOD - [2009-07-14 03:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\KernelBase.dll
MOD - [2009-07-14 03:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 03:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\devobj.dll
MOD - [2009-07-14 03:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 03:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\cfgmgr32.dll
MOD - [2009-07-14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- H:\Windows\System32\msscript.ocx
MOD - [2009-07-14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- H:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2010-06-09 22:05:05 | 000,008,192 | ---- | M] () [Auto | Running] -- H:\Windows\System32\srvany.exe -- (KMService)
SRV - [2010-05-07 18:47:32 | 000,162,648 | ---- | M] (Logitech Inc.) [Auto | Running] -- H:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2010-04-30 13:47:30 | 000,136,448 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- H:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain)
SRV - [2010-03-03 06:11:58 | 000,172,032 | ---- | M] (AMD) [Auto | Running] -- H:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- H:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010-02-19 12:58:44 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-01-15 01:14:14 | 000,603,904 | ---- | M] (TuneUp Software) [Auto | Running] -- H:\Windows\System32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010-01-15 01:14:04 | 000,360,192 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- H:\Windows\System32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010-01-09 21:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2009-12-22 01:08:39 | 000,814,344 | ---- | M] (ABBYY) [Auto | Running] -- H:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.10.0)
SRV - [2009-10-20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- H:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009-10-07 14:50:26 | 000,185,640 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- H:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe -- (TeamViewer4)
SRV - [2009-09-23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- H:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-08-24 22:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- H:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe -- (DfSdkS)
SRV - [2009-07-14 03:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009-07-14 03:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009-07-14 03:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Windows\System32\umpo.dll -- (Power)
SRV - [2009-07-14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009-07-14 03:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009-07-14 03:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- H:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009-07-14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009-07-14 03:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009-07-14 03:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 03:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009-07-14 03:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009-07-14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009-07-14 03:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\defragsvc.dll -- (DEFRAGSVC)
SRV - [2009-07-14 03:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- H:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009-07-14 03:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\AxInstSv.dll -- (AxInstSV) Instalator formantów ActiveX (AxInstSV)
SRV - [2009-07-14 03:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009-07-14 03:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009-03-30 17:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2008-12-11 14:31:36 | 000,027,904 | ---- | M] (TuneUp Software) [Auto | Stopped] -- H:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008-07-18 16:23:42 | 000,314,584 | R--- | M] (cFos Software GmbH) [Auto | Running] -- H:\Program Files\cFosSpeed\spd.exe -- (cFosSpeedS)
SRV - [2007-12-27 16:39:30 | 000,166,520 | ---- | M] () [Auto | Running] -- H:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe -- (BlueSoleil Hid Service)
SRV - [2007-12-27 16:39:20 | 000,051,816 | ---- | M] () [Auto | Running] -- H:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe -- (Start BT in service)
SRV - [2007-06-15 17:55:00 | 000,300,544 | ---- | M] (Nokia.) [On_Demand | Running] -- H:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007-05-31 16:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007-05-31 16:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007-05-11 03:09:48 | 001,050,120 | ---- | M] (O&O Software GmbH) [Auto | Running] -- H:\Windows\System32\oodag.exe -- (O&O Defrag)
SRV - [2005-01-31 10:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- H:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- H:\Windows\System32\DRIVERS\usbscan.sys -- (usbscan)
DRV - File not found [Kernel | On_Demand | Stopped] -- H:\Windows\System32\DRIVERS\motswch.sys -- (MotoSwitchService)
DRV - File not found [Kernel | On_Demand | Stopped] -- H:\Windows\System32\DRIVERS\motodrv.sys -- (MotDev)
DRV - File not found [Kernel | On_Demand | Stopped] -- H:\Windows\System32\DRIVERS\motccgp.sys -- (motccgp)
DRV - File not found [Kernel | On_Demand | Stopped] -- H:\Windows\System32\DRIVERS\Apfiltr.sys -- (ApfiltrService)
DRV - [2010-07-07 14:55:34 | 006,842,464 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech QuickCam Pro 9000(UVC)
DRV - [2010-07-07 14:53:48 | 000,282,336 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010-05-27 18:39:34 | 000,141,384 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- H:\Windows\System32\drivers\PSINAflt.sys -- (PSINAflt)
DRV - [2010-05-12 10:57:58 | 000,111,176 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- H:\Windows\System32\drivers\PSINProt.sys -- (PSINProt)
DRV - [2010-05-07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2010-05-04 08:36:34 | 000,125,960 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- H:\Windows\System32\drivers\PSINKNC.sys -- (PSINKNC)
DRV - [2010-04-30 13:46:34 | 000,111,112 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- H:\Windows\System32\drivers\PSINProc.sys -- (PSINProc)
DRV - [2010-04-30 13:46:32 | 000,099,336 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- H:\Windows\System32\drivers\PSINFile.sys -- (PSINFile)
DRV - [2010-03-13 05:45:36 | 003,036,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010-03-04 13:42:58 | 000,277,536 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2010-03-03 06:22:26 | 005,340,160 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2010-03-03 06:22:26 | 005,340,160 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\atipmdag.sys -- (amdkmdag)
DRV - [2010-03-03 05:07:16 | 000,152,064 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010-01-28 16:33:30 | 000,100,352 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2010-01-09 16:10:22 | 000,016,376 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- H:\Windows\gdrv.sys -- (gdrv)
DRV - [2009-12-11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009-10-20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- H:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2009-09-28 03:02:44 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Running] -- H:\Downloads\PeerBlock_r181__Win32_Release_(Vista)\pbfilter.sys -- (pbfilter)
DRV - [2009-09-23 03:19:31 | 000,294,912 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\vpcvmm.sys -- (vpcvmm)
DRV - [2009-09-23 03:19:31 | 000,055,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\vpcnfltr.sys -- (vpcnfltr)
DRV - [2009-09-23 03:18:08 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\vpcusb.sys -- (vpcusb)
DRV - [2009-09-23 03:18:07 | 000,165,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\vpchbus.sys -- (vpcbus)
DRV - [2009-07-14 03:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009-07-14 03:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009-07-14 03:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009-07-14 03:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009-07-14 03:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009-07-14 03:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009-07-14 03:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009-07-14 03:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009-07-14 03:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- H:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009-07-14 03:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009-07-14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009-07-14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009-07-14 03:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009-07-14 03:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009-07-14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009-07-14 03:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009-07-14 03:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009-07-14 03:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009-07-14 03:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009-07-14 03:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009-07-14 03:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009-07-14 03:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009-07-14 03:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009-07-14 03:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009-07-14 03:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009-07-14 03:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- H:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009-07-14 03:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009-07-14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009-07-14 03:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009-07-14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009-07-14 03:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009-07-14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- H:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 03:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009-07-14 03:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009-07-14 03:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009-07-14 03:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009-07-14 03:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009-07-14 03:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009-07-14 03:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009-07-14 03:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009-07-14 03:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- H:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009-07-14 02:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009-07-14 02:14:49 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2009-07-14 02:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009-07-14 02:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009-07-14 01:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009-07-14 01:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009-07-14 01:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009-07-14 01:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009-07-14 01:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009-07-14 01:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009-07-14 01:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV - [2009-07-14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009-07-14 01:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009-07-14 01:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009-07-14 01:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009-07-14 01:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009-07-14 01:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- H:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009-07-14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009-07-14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009-07-14 01:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009-07-14 01:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009-07-14 01:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009-07-14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009-07-14 00:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009-07-14 00:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009-07-14 00:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009-07-14 00:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009-07-14 00:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009-07-14 00:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009-07-14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009-07-14 00:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009-07-14 00:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009-06-30 09:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- H:\Windows\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2009-06-26 15:13:44 | 000,090,464 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- H:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2009-03-15 12:25:46 | 000,056,268 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- H:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008-11-11 19:29:42 | 000,154,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService)
DRV - [2008-07-26 17:26:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008-07-18 16:23:46 | 000,732,888 | R--- | M] (cFos Software GmbH) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\cfosspeed.sys -- (cFosSpeed)
DRV - [2008-06-02 04:07:50 | 000,272,256 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\VMXVid.sys -- (CXEAGLE)
DRV - [2008-05-02 10:58:28 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2008-05-02 10:58:14 | 000,020,864 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2008-05-02 10:58:14 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2008-05-02 10:58:12 | 000,017,536 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2007-11-03 12:21:02 | 000,068,096 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- H:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2007-10-12 03:59:12 | 001,920,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2007-06-24 22:56:54 | 000,038,920 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007-06-24 22:56:40 | 000,027,656 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007-06-24 22:56:34 | 000,034,312 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007-06-18 14:18:26 | 000,023,680 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\motmodem.sys -- (motmodem)
DRV - [2007-03-05 21:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\btnetdrv.sys -- (BT)
DRV - [2007-03-05 21:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- H:\Windows\System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007-03-05 21:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- H:\Windows\System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007-03-05 21:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\VCommMgr.sys -- (VcommMgr)
DRV - [2007-03-05 21:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\VComm.sys -- (VComm)
DRV - [2007-02-11 00:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2007-02-10 03:04:50 | 000,014,336 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\Amps2prt.sys -- (Amps2prt)
DRV - [2007-02-06 17:08:24 | 000,684,672 | ---- | M] () [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\torususb.sys -- (TaurusUsb)
DRV - [2007-01-24 18:46:48 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- H:\Windows\System32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2007-01-22 18:33:00 | 000,007,680 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\motccgpfl.sys -- (motccgpfl)
DRV - [2007-01-22 12:52:56 | 000,060,533 | ---- | M] (STMicroelectronics              ) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\stmatm.sys -- (Stmatm)
DRV - [2006-04-11 14:56:10 | 000,010,240 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\Arfumx86.sys -- (Arfumdev)
DRV - [2004-12-23 18:27:56 | 000,027,392 | ---- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- H:\Windows\System32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2004-05-05 22:48:40 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- H:\Windows\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2003-02-27 06:55:58 | 000,017,376 | ---- | M] (         ) [Kernel | On_Demand | Stopped] -- H:\Windows\System32\drivers\GT680x.SYS -- (GT680xNT)
DRV - [2001-12-27 10:59:34 | 000,067,072 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- H:\Windows\System32\drivers\Wibukey.sys -- (WIBUKEY)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKLM\..\URLSearchHook: {8567a644-e36c-470c-86cf-9c5b4f37db81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-331633451-3218925785-401016916-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
IE - HKU\S-1-5-21-331633451-3218925785-401016916-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/english/
IE - HKU\S-1-5-21-331633451-3218925785-401016916-1000\..\URLSearchHook: {8567a644-e36c-470c-86cf-9c5b4f37db81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-331633451-3218925785-401016916-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "OnlineSharing"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1210541&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:3.1.1
FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.5.7
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.29
FF - prefs.js..extensions.enabledItems: {ba14329e-9550-4989-b3f2-9732e92d17cc}:2.5.6.0
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.3
FF - prefs.js..extensions.enabledItems: {8567a644-e36c-470c-86cf-9c5b4f37db81}:2.5.6.0
FF - prefs.js..extensions.enabledItems: {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}:1.0
FF - prefs.js..extensions.enabledItems: widgetruntime@surfsecret.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..keyword.URL: ""
 
 
FF - HKLM\software\mozilla\Firefox\Extensions\\widgetruntime@surfsecret.com: H:\Program Files\Panda Security\Panda ID Protect\Firefox [2010-08-02 00:21:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2010-08-02 00:45:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2010-08-04 10:49:44 | 000,000,000 | ---D | M]
 
[2010-03-30 11:17:02 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Extensions
[2010-03-30 11:17:02 | 000,000,000 | ---D | M] (No name found) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010-08-13 23:52:09 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions
[2010-08-04 11:27:21 | 000,000,000 | ---D | M] (FlashGot) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2010-08-02 00:26:04 | 000,000,000 | ---D | M] (Online Sharing Toolbar) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{8567a644-e36c-470c-86cf-9c5b4f37db81}
[2010-08-02 00:26:05 | 000,000,000 | ---D | M] (ImTranslator) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2010-08-02 00:26:05 | 000,000,000 | ---D | M] (Panda Security Toolbar) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
[2010-08-01 23:59:42 | 000,000,000 | ---D | M] (Vuze Remote Toolbar) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2010-08-02 00:26:10 | 000,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2010-08-02 00:26:11 | 000,000,000 | ---D | M] (Adblock Plus) -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010-08-02 00:26:02 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\mozilla\Firefox\Profiles\f1y5a3my.default\extensions\firegestures@xuldev.org
[2010-01-10 21:23:56 | 000,002,257 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Roaming\Mozilla\FireFox\Profiles\f1y5a3my.default\searchplugins\askcom.xml
[2010-04-14 00:31:06 | 000,000,887 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Roaming\Mozilla\FireFox\Profiles\f1y5a3my.default\searchplugins\conduit.xml
[2010-05-29 10:34:41 | 000,002,060 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Roaming\Mozilla\FireFox\Profiles\f1y5a3my.default\searchplugins\MyStart Search.xml
[2010-08-04 10:49:46 | 000,000,000 | ---D | M] -- H:\Program Files\Mozilla Firefox\extensions
[2010-08-04 10:49:46 | 000,000,000 | ---D | M] (Java Console) -- H:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-08-02 00:20:25 | 000,000,000 | ---D | M] (flashget3 Extension) -- H:\Program Files\Mozilla Firefox\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2010-07-17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- H:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-02-23 12:43:10 | 000,002,767 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-02-23 12:43:10 | 000,001,406 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-02-23 12:43:10 | 000,000,917 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-02-23 12:43:11 | 000,000,858 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-02-23 12:43:11 | 000,001,183 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-02-23 12:43:11 | 000,001,683 | ---- | M] () -- H:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2010-06-23 21:52:10 | 000,000,808 | ---- | M]) - H:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (FG2CatchUrl) - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - H:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll (FlashGet)
O2 - BHO: (Online Sharing Toolbar) - {8567a644-e36c-470c-86cf-9c5b4f37db81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - H:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - H:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - H:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3 - HKLM\..\Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Online Sharing Toolbar) - {8567a644-e36c-470c-86cf-9c5b4f37db81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - H:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Online Sharing Toolbar) - {8567A644-E36C-470C-86CF-9C5B4F37DB81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Online Sharing Toolbar) - {8567A644-E36C-470C-86CF-9C5B4F37DB81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-331633451-3218925785-401016916-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-331633451-3218925785-401016916-1000\..\Toolbar\WebBrowser: (Online Sharing Toolbar) - {8567A644-E36C-470C-86CF-9C5B4F37DB81} - H:\Program Files\Online_Sharing\tbOnli.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] H:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] H:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdslTaskBar] H:\Windows\System32\stmctrl.dll (STMicroelectronics              )
O4 - HKLM..\Run: [Bonus.SSR.FR10] H:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe (ABBYY.)
O4 - HKLM..\Run: [cFosSpeed] H:\Program Files\cFosSpeed\cfosspeed.exe (cFos Software GmbH)
O4 - HKLM..\Run: [LWS] H:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [PCSuiteTrayApplication] H:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
O4 - HKLM..\Run: [PSUNMain] H:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [PWRISOVM.EXE] H:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [RtHDVCpl] H:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] H:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [WheelMouse] H:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
O4 - HKU\S-1-5-21-331633451-3218925785-401016916-1000..\Run: [AutoConnect] H:\Program Files\AutoConnect\AutoConnect.exe (http://autoconnect.prv.pl)
O4 - HKU\S-1-5-21-331633451-3218925785-401016916-1000..\Run: [Logitech Vid] H:\Program Files\Logitech\Logitech Vid\Vid.exe (Logitech Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: H:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PeerGuardian.lnk = H:\Program Files\PeerGuardian2\pg2.exe File not found
O4 - Startup: H:\Users\ANDRZEJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk = H:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-331633451-3218925785-401016916-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-331633451-3218925785-401016916-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSizeChoice = 1
O8 - Extra context menu item: &Download All by FlashGet - H:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm ()
O8 - Extra context menu item: &Download by FlashGet - H:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm ()
O8 - Extra context menu item: &Pobierz wszystko przez FlashGet - H:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm ()
O8 - Extra context menu item: &Pobrane przez FlashGet - H:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm ()
O8 - Extra context menu item: Append to existing PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - H:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Download by GAS - H:\Program Files\GetASFStream\ie_MenuExt.htm ()
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - H:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij &do programu OneNote - H:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: @H:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - H:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @H:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - H:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - H:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - H:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - H:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - H:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - H:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - H:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O12 - Plugin for: .spop - H:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-331633451-3218925785-401016916-1000\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash5r42.cab (Shockwave Flash Object)
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - H:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - H:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\Windows\System32\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - H:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - H:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - H:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - H:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - H:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - H:\Windows\System32\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-26 20:53:59 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - H:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010-02-07 17:43:57 | 000,000,000 | ---D | M] - L:\Autoconnect -- [ NTFS ]
O33 - MountPoints2\M\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (oodbs) - H:\Windows\System32\oodbs.exe (O&O Software GmbH)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-08-13 22:53:30 | 000,000,000 | ---D | C] -- H:\IExp1.tmp
[2010-08-13 22:53:18 | 000,000,000 | ---D | C] -- H:\Windows\RegisteredPackages
[2010-08-13 22:53:18 | 000,000,000 | ---D | C] -- H:\IExp0.tmp
[2010-08-13 22:53:14 | 000,000,000 | ---D | C] -- H:\Program Files\Windows Media Components
[2010-08-11 23:43:25 | 000,037,376 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\rtutils.dll
[2010-08-11 23:43:23 | 000,197,632 | ---- | C] (Intel(R) Corporation) -- H:\Windows\System32\ir32_32.dll
[2010-08-11 23:43:23 | 000,082,944 | ---- | C] (Radius Inc.) -- H:\Windows\System32\iccvid.dll
[2010-08-11 23:43:22 | 003,955,080 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\ntkrnlpa.exe
[2010-08-11 23:43:22 | 003,899,784 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\ntoskrnl.exe
[2010-08-11 23:43:18 | 001,638,912 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\mshtml.tlb
[2010-08-11 23:43:18 | 000,606,208 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\mstime.dll
[2010-08-11 23:43:18 | 000,381,440 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\iedkcs32.dll
[2010-08-11 23:43:18 | 000,185,856 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\iepeers.dll
[2010-08-11 23:43:18 | 000,176,640 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\ieui.dll
[2010-08-11 23:43:18 | 000,064,512 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\msfeedsbs.dll
[2010-08-11 23:43:18 | 000,048,128 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\jsproxy.dll
[2010-08-11 23:43:18 | 000,012,800 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\msfeedssync.exe
[2010-08-11 23:42:46 | 002,326,016 | ---- | C] (Microsoft Corporation) -- H:\Windows\System32\win32k.sys
[2010-08-10 20:45:12 | 000,000,000 | ---D | C] -- H:\Windows\WindowsMobile
[2010-08-04 11:31:46 | 000,000,000 | ---D | C] -- H:\Program Files\Xenocode
[2010-08-04 11:31:45 | 000,000,000 | ---D | C] -- H:\Windows\XSxS
[2010-08-04 10:49:44 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- H:\Windows\System32\deployJava1.dll
[2010-08-04 10:49:44 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- H:\Windows\System32\javaws.exe
[2010-08-04 10:49:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- H:\Windows\System32\javaw.exe
[2010-08-04 10:49:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- H:\Windows\System32\java.exe
[2010-08-01 22:52:01 | 000,000,000 | ---D | C] -- H:\ProgramData\Sun
[2010-08-01 22:52:00 | 000,000,000 | ---D | C] -- H:\Program Files\Common Files\Java
[2010-07-30 23:58:37 | 000,028,552 | ---- | C] (Panda Security, S.L.) -- H:\Windows\System32\drivers\pavboot.sys
[2010-07-27 16:03:49 | 000,000,000 | ---D | C] -- H:\Program Files\WizMouse
[2010-07-26 19:15:27 | 000,000,000 | ---D | C] -- H:\Users\ANDRZEJ\AppData\Roaming\SurfSecret Privacy Suite
[2010-07-26 19:14:33 | 000,000,000 | ---D | C] -- H:\ProgramData\Panda Security
[2010-07-19 17:49:29 | 000,000,000 | ---D | C] -- H:\Users\ANDRZEJ\Documents\Projekty masek wideo
[2010-07-19 17:48:03 | 000,000,000 | ---D | C] -- H:\Users\ANDRZEJ\Documents\SightSpeed Recordings
[2010-07-19 17:45:56 | 000,000,000 | ---D | C] -- H:\Windows\System32\logishrd
[2010-07-19 17:45:48 | 000,000,000 | ---D | C] -- H:\Program Files\Common Files\LWS
[2010-01-16 18:55:34 | 000,017,376 | ---- | C] (         ) -- H:\Windows\System32\drivers\GT680x.SYS
[2 H:\*.tmp files -> H:\*.tmp -> ]
[1 H:\Windows\*.tmp files -> H:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-08-14 10:49:11 | 009,175,040 | ---- | M] () -- H:\Users\ANDRZEJ\ntuser.dat
[2010-08-14 10:36:03 | 000,065,536 | ---- | M] () -- H:\Windows\System32\Ikeext.etl
[2010-08-14 10:36:02 | 000,000,006 | -H-- | M] () -- H:\Windows\tasks\SA.DAT
[2010-08-14 10:35:58 | 000,067,584 | --S- | M] () -- H:\Windows\bootstat.dat
[2010-08-14 10:35:53 | 1609,424,896 | -HS- | M] () -- H:\hiberfil.sys
[2010-08-14 10:35:52 | 000,902,944 | ---- | M] () -- H:\Windows\System32\oodbs.lor
[2010-08-14 00:05:45 | 001,388,101 | -H-- | M] () -- H:\Users\ANDRZEJ\AppData\Local\IconCache.db
[2010-08-14 00:04:31 | 539,212,841 | ---- | M] () -- H:\Windows\MEMORY.DMP
[2010-08-13 23:04:10 | 000,001,068 | ---- | M] () -- H:\Users\Public\Desktop\Ashampoo Snap 3.lnk
[2010-08-13 13:53:43 | 000,002,998 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\andrew0803.PW2
[2010-08-13 10:42:49 | 001,523,412 | ---- | M] () -- H:\Windows\System32\PerfStringBackup.INI
[2010-08-13 10:42:49 | 000,689,136 | ---- | M] () -- H:\Windows\System32\perfh015.dat
[2010-08-13 10:42:49 | 000,607,530 | ---- | M] () -- H:\Windows\System32\perfh009.dat
[2010-08-13 10:42:49 | 000,131,792 | ---- | M] () -- H:\Windows\System32\perfc015.dat
[2010-08-13 10:42:49 | 000,103,908 | ---- | M] () -- H:\Windows\System32\perfc009.dat
[2010-08-13 01:18:07 | 000,016,944 | -H-- | M] () -- H:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010-08-13 01:18:07 | 000,016,944 | -H-- | M] () -- H:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010-08-13 00:13:09 | 000,002,066 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\andrew0803.1.pw2-bak
[2010-08-13 00:03:17 | 000,012,115 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Cennik pocztowy  .xlsx
[2010-08-12 23:55:07 | 000,011,820 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Cennik listów  .xlsx
[2010-08-12 20:27:26 | 000,000,974 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\andrew0803.2.pw2-bak
[2010-08-12 13:26:59 | 000,031,562 | ---- | M] () -- H:\Windows\System32\peerblock.dmp
[2010-08-12 13:25:43 | 003,814,272 | ---- | M] () -- H:\Windows\System32\FNTCACHE.DAT
[2010-08-11 23:47:53 | 000,001,959 | ---- | M] () -- H:\Users\Public\Desktop\IncrediMail.lnk
[2010-08-11 10:03:07 | 000,015,907 | ---- | M] () -- H:\Windows\unins001.dat
[2010-08-11 10:02:41 | 000,709,641 | ---- | M] () -- H:\Windows\unins001.exe
[2010-08-11 10:01:29 | 000,000,000 | -H-- | M] () -- H:\Windows\System32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
[2010-08-11 09:44:11 | 000,145,807 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Jak_zainstalowac_MapaMap.doc
[2010-08-09 20:16:50 | 000,151,552 | ---- | M] () -- H:\Windows\KMService.exe
[2010-08-04 12:13:03 | 000,010,566 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Cennik paczek  .xlsx
[2010-08-02 21:00:46 | 000,001,642 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\naprawa.reg
[2010-08-02 17:28:18 | 000,001,314 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk
[2010-08-01 23:57:18 | 000,524,288 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TMContainer00000000000000000002.regtrans-ms
[2010-08-01 23:57:18 | 000,524,288 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TMContainer00000000000000000001.regtrans-ms
[2010-08-01 23:57:18 | 000,065,536 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TM.blf
[2010-08-01 23:56:28 | 000,130,832 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-08-01 19:37:19 | 000,524,288 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TMContainer00000000000000000002.regtrans-ms
[2010-08-01 19:37:19 | 000,524,288 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TMContainer00000000000000000001.regtrans-ms
[2010-08-01 19:37:19 | 000,065,536 | -HS- | M] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TM.blf
[2010-07-29 08:30:49 | 000,197,632 | ---- | M] (Intel(R) Corporation) -- H:\Windows\System32\ir32_32.dll
[2010-07-29 08:30:34 | 000,082,944 | ---- | M] (Radius Inc.) -- H:\Windows\System32\iccvid.dll
[2010-07-28 13:06:08 | 000,014,020 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Andrzej Łamaszewski                                                                           Warszawa 28 lipca 2010.docx
[2010-07-27 16:03:49 | 000,000,921 | ---- | M] () -- H:\Users\ANDRZEJ\Desktop\WizMouse.lnk
[2010-07-26 21:02:56 | 000,212,260 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Roaming\PandaIDProtectHelp.chm
[2010-07-26 19:14:43 | 000,000,264 | ---- | M] () -- H:\Windows\System32\PSUNCpl.dat
[2010-07-19 17:47:32 | 000,001,031 | ---- | M] () -- H:\Users\Public\Desktop\Logitech Vid.lnk
[2010-07-19 17:45:33 | 000,001,600 | ---- | M] () -- H:\Users\Public\Desktop\Logitech Webcam Software  .lnk
[2010-07-18 14:43:54 | 000,051,712 | ---- | M] () -- H:\Users\ANDRZEJ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-07-18 14:28:11 | 000,000,000 | -H-- | M] () -- H:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010-07-18 14:22:31 | 000,002,577 | ---- | M] () -- H:\Users\Public\Desktop\Nokia PC Suite.lnk
[2010-07-17 15:58:21 | 000,094,661 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Asrock.rtf
[2010-07-17 13:20:17 | 000,038,157 | ---- | M] () -- H:\Users\ANDRZEJ\Documents\Asrock.doc
[2010-07-17 05:00:12 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- H:\Windows\System32\javaws.exe
[2010-07-17 05:00:12 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- H:\Windows\System32\javaw.exe
[2010-07-17 05:00:10 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- H:\Windows\System32\java.exe
[2010-07-17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- H:\Windows\System32\deployJava1.dll
[2 H:\*.tmp files -> H:\*.tmp -> ]
[1 H:\Windows\*.tmp files -> H:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-08-13 22:52:46 | 000,001,068 | ---- | C] () -- H:\Users\Public\Desktop\Ashampoo Snap 3.lnk
[2010-08-13 00:13:08 | 000,002,066 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\andrew0803.1.pw2-bak
[2010-08-13 00:13:08 | 000,000,974 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\andrew0803.2.pw2-bak
[2010-08-13 00:03:17 | 000,012,115 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Cennik pocztowy  .xlsx
[2010-08-12 23:55:06 | 000,011,820 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Cennik listów  .xlsx
[2010-08-11 10:03:04 | 000,709,641 | ---- | C] () -- H:\Windows\unins001.exe
[2010-08-11 10:03:04 | 000,015,907 | ---- | C] () -- H:\Windows\unins001.dat
[2010-08-11 10:01:29 | 000,000,000 | -H-- | C] () -- H:\Windows\System32\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
[2010-08-11 09:42:05 | 000,145,807 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Jak_zainstalowac_MapaMap.doc
[2010-08-10 15:46:57 | 000,001,230 | ---- | C] () -- H:\Users\ANDRZEJ\Desktop\Calculator.lnk
[2010-08-04 11:28:41 | 000,002,998 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\andrew0803.PW2
[2010-08-03 19:26:43 | 000,010,566 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Cennik paczek  .xlsx
[2010-08-02 21:00:46 | 000,001,642 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\naprawa.reg
[2010-08-02 00:47:12 | 000,524,288 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TMContainer00000000000000000002.regtrans-ms
[2010-08-02 00:47:12 | 000,524,288 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TMContainer00000000000000000001.regtrans-ms
[2010-08-02 00:47:12 | 000,065,536 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{50e2af06-9dad-11df-943b-00030d000001}.TM.blf
[2010-08-01 19:35:59 | 000,524,288 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TMContainer00000000000000000002.regtrans-ms
[2010-08-01 19:35:59 | 000,524,288 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TMContainer00000000000000000001.regtrans-ms
[2010-08-01 19:35:59 | 000,065,536 | -HS- | C] () -- H:\Users\ANDRZEJ\ntuser.dat{2b43a96e-9d93-11df-9a46-00030d000001}.TM.blf
[2010-07-28 09:28:54 | 000,014,020 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Andrzej Łamaszewski                                                                           Warszawa 28 lipca 2010.docx
[2010-07-27 16:03:49 | 000,000,921 | ---- | C] () -- H:\Users\ANDRZEJ\Desktop\WizMouse.lnk
[2010-07-26 21:02:50 | 000,212,260 | ---- | C] () -- H:\Users\ANDRZEJ\AppData\Roaming\PandaIDProtectHelp.chm
[2010-07-26 19:36:39 | 000,151,552 | ---- | C] () -- H:\Windows\KMService.exe
[2010-07-26 19:14:43 | 000,000,264 | ---- | C] () -- H:\Windows\System32\PSUNCpl.dat
[2010-07-19 17:47:32 | 000,001,031 | ---- | C] () -- H:\Users\Public\Desktop\Logitech Vid.lnk
[2010-07-19 17:45:33 | 000,001,600 | ---- | C] () -- H:\Users\Public\Desktop\Logitech Webcam Software  .lnk
[2010-07-18 14:28:11 | 000,000,000 | -H-- | C] () -- H:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010-07-17 15:58:20 | 000,094,661 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Asrock.rtf
[2010-07-17 13:01:41 | 000,038,157 | ---- | C] () -- H:\Users\ANDRZEJ\Documents\Asrock.doc
[2010-07-07 14:44:30 | 010,829,656 | ---- | C] () -- H:\Windows\System32\LogiDPP.dll
[2010-07-07 14:44:20 | 000,290,648 | ---- | C] () -- H:\Windows\System32\DevManagerCore.dll
[2010-06-09 00:13:42 | 000,009,728 | ---- | C] () -- H:\Windows\System32\BASSMOD.dll
[2010-05-29 22:02:58 | 000,000,412 | ---- | C] () -- H:\Windows\ODBC.INI
[2010-05-19 14:29:29 | 000,372,736 | ---- | C] () -- H:\Windows\System32\winscard (2).dll
[2010-05-14 21:47:00 | 000,090,071 | ---- | C] () -- H:\Windows\System32\lvcoinst.ini
[2010-05-07 18:46:36 | 000,014,168 | ---- | C] () -- H:\Windows\System32\drivers\iKeyLFT2.dll
[2010-05-07 18:43:30 | 000,025,824 | ---- | C] () -- H:\Windows\System32\drivers\LVPr2Mon.sys
[2010-04-14 11:42:08 | 000,005,632 | ---- | C] () -- H:\Windows\System32\CNMVS1E.DLL
[2010-03-30 19:26:28 | 000,001,746 | ---- | C] () -- H:\Windows\Language_trs.ini
[2010-03-12 11:53:34 | 000,258,048 | ---- | C] () -- H:\Windows\System32\libFLAC.dll
[2010-03-12 11:52:22 | 000,079,360 | ---- | C] () -- H:\Windows\System32\mkzlib.dll
[2010-03-12 11:52:20 | 000,023,552 | ---- | C] () -- H:\Windows\System32\mkunicode.dll
[2010-03-04 23:47:33 | 000,000,409 | ---- | C] () -- H:\Windows\System32\StreamGet.ini
[2010-02-28 16:54:12 | 003,596,288 | ---- | C] () -- H:\Windows\System32\qt-dx331.dll
[2010-02-28 16:54:12 | 000,881,664 | ---- | C] () -- H:\Windows\System32\xvidcore.dll
[2010-02-28 16:54:12 | 000,130,048 | ---- | C] () -- H:\Windows\System32\xvidvfw.dll
[2010-02-28 16:54:11 | 000,067,584 | ---- | C] () -- H:\Windows\System32\ff_vfw.dll
[2010-02-28 16:54:11 | 000,000,547 | ---- | C] () -- H:\Windows\System32\ff_vfw.dll.manifest
[2010-02-05 19:06:07 | 000,000,025 | ---- | C] () -- H:\Windows\libem.INI
[2010-01-25 22:22:58 | 000,178,176 | ---- | C] () -- H:\Windows\System32\unrar.dll
[2010-01-15 14:36:28 | 000,000,023 | -HS- | C] () -- H:\Windows\System32\abfbdaff7_z.dll
[2010-01-11 11:45:20 | 000,049,152 | ---- | C] () -- H:\Windows\AutoSet.dll
[2010-01-11 11:45:03 | 000,001,256 | ---- | C] () -- H:\Windows\If42le.ini
[2010-01-11 11:45:01 | 000,011,776 | ---- | C] () -- H:\Windows\System32\pmsbfn32.dll
[2010-01-10 21:34:50 | 000,000,000 | ---- | C] () -- H:\Windows\oodcnt.INI
[2010-01-09 19:59:48 | 000,000,613 | ---- | C] () -- H:\Windows\if40le.ini
[2010-01-09 19:59:41 | 000,000,222 | ---- | C] () -- H:\Windows\SCNDRVU.INI
[2010-01-09 19:59:29 | 000,000,205 | ---- | C] () -- H:\Windows\pexplore.ini
[2010-01-09 19:59:24 | 000,000,064 | ---- | C] () -- H:\Windows\UMXADDIN.INI
[2010-01-09 16:01:06 | 000,000,010 | ---- | C] () -- H:\Windows\GSetup.ini
[2010-01-09 13:07:20 | 000,684,672 | ---- | C] () -- H:\Windows\System32\drivers\torususb.sys
[2010-01-09 13:07:19 | 000,000,930 | ---- | C] () -- H:\Windows\System32\setup.ini
[2010-01-09 13:07:19 | 000,000,161 | ---- | C] () -- H:\Windows\DSLSetup.ini
[2009-12-03 10:27:28 | 000,080,416 | ---- | C] () -- H:\Windows\System32\RtNicProp32.dll
[2009-10-20 20:19:30 | 000,053,299 | ---- | C] () -- H:\Windows\System32\pthreadVC.dll
[2009-07-14 01:51:43 | 000,073,728 | ---- | C] () -- H:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- H:\Windows\System32\BWContextHandler.dll
[2009-07-14 01:36:08 | 000,193,024 | ---- | C] () -- H:\Windows\System32\sppcomapi.dll
[2007-03-30 00:00:40 | 000,203,264 | ---- | C] () -- H:\Windows\System32\CddbCdda.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-01-31 18:19:57 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\ACD Systems
[2010-01-10 21:48:18 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Ashampoo Cover Studio
[2010-08-13 00:47:31 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Azureus
[2010-08-14 10:48:00 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\BITS
[2010-08-13 09:04:19 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\BVS Solitaire Collection
[2010-02-22 14:02:10 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\CD-LabelPrint
[2010-05-27 11:58:12 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010-08-01 23:59:38 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\ChomikBox
[2010-01-20 23:25:50 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Classic Start Menu
[2010-03-30 19:16:05 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\DeviceDoctorSoftware
[2010-08-01 23:35:46 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\FlashGet
[2010-08-02 00:25:40 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\FlashGetBHO
[2010-01-09 20:00:42 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\InterTrust
[2010-08-01 23:59:39 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\ipla
[2010-01-09 20:44:12 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Leadertech
[2010-02-08 18:43:24 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Locktime
[2010-02-20 12:44:17 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Nokia
[2010-07-18 14:30:59 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Nokia Multimedia Player
[2010-08-01 23:59:42 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Panda Security
[2010-05-03 16:50:30 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\PC Suite
[2010-08-01 23:35:57 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\PdfMerger
[2010-02-11 17:31:43 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\SeriousBit
[2010-05-21 14:31:39 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010-07-26 19:15:27 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\SurfSecret Privacy Suite
[2010-02-09 10:54:44 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\TeamViewer
[2010-08-01 23:35:57 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Thinstall
[2010-08-02 00:26:13 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Thunderbird
[2010-01-15 01:14:03 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\TuneUp Software
[2010-04-14 10:53:28 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\Uniblue
[2010-08-01 23:35:57 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\URSoft
[2010-03-30 20:44:07 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\VitySoft
[2010-03-10 19:58:46 | 000,000,000 | ---D | M] -- H:\Users\ANDRZEJ\AppData\Roaming\X-Setup Pro
[2010-07-27 13:00:54 | 000,032,604 | ---- | M] () -- H:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 157 bytes -> H:\ProgramData\TEMP:1CE11B51
@Alternate Data Stream - 150 bytes -> H:\ProgramData\TEMP:B3D74A13
@Alternate Data Stream - 134 bytes -> H:\ProgramData\TEMP:58A5270D
@Alternate Data Stream - 124 bytes -> H:\ProgramData\TEMP:C8B8CEBD
< End of report >