[code] OTS logfile created on: 2010-08-22 15:00:57 - Run 2 OTS by OldTimer - Version 3.1.34.0 Folder = C:\Program Files\Programy_Naprawcze\OTS Windows XP Home Edition Dodatek Service Pack. 1 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2800.1106) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 128,00 Mb Total Physical Memory | 29,00 Mb Available Physical Memory | 22,00% Memory free 307,00 Mb Paging File | 251,00 Mb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,30 Gb Total Space | 0,75 Gb Free Space | 2,00% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded Drive F: | 465,76 Gb Total Space | 246,39 Gb Free Space | 52,90% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: PECET Current User Name: ADMIN Logged in as Administrator. Current Boot Mode: SafeMode Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 90 Days Quick Scan [Processes - Safe List] ots.exe -> C:\Program Files\Programy_Naprawcze\OTS\OTS.exe -> [2010-08-13 01:12:50 | 000,641,536 | ---- | M] (OldTimer Tools) explorer.exe -> C:\WINDOWS\explorer.exe -> [2003-04-16 14:00:00 | 001,005,568 | ---- | M] (Microsoft Corporation) [Modules - Safe List] ots.exe -> C:\Program Files\Programy_Naprawcze\OTS\OTS.exe -> [2010-08-13 01:12:50 | 000,641,536 | ---- | M] (OldTimer Tools) msscript.ocx -> C:\WINDOWS\system32\msscript.ocx -> [2003-04-16 14:00:00 | 000,106,547 | ---- | M] (Microsoft Corporation) serwvdrv.dll -> C:\WINDOWS\system32\serwvdrv.dll -> [2003-04-16 14:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) umdmxfrm.dll -> C:\WINDOWS\system32\umdmxfrm.dll -> [2003-04-16 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) comctl32.dll -> C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll -> [2002-09-20 18:03:32 | 000,921,600 | ---- | M] (Microsoft Corporation) [Win32 Services - Safe List] (MksVirMonSvc) MkS_Vir Monitor [Disabled | Stopped] -> C:\Program Files\MKS\Bin\mksmonsv.exe -> File not found (HidServ) Dostęp do urządzeń interfejsu HID [Disabled | Stopped] -> C:\WINDOWS\System32\hidserv.dll -> File not found (AppMgmt) Zarządzanie aplikacjami [On_Demand | Stopped] -> C:\WINDOWS\System32\appmgmts.dll -> File not found (AntiVirScheduler) Avira AntiVir Personal - Free Antivirus Scheduler [Auto | Stopped] -> C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe -> [2009-09-13 19:18:31 | 000,068,865 | ---- | M] (Avira GmbH) (AntiVirService) Avira AntiVir Personal - Free Antivirus Guard [Auto | Stopped] -> C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe -> [2009-09-13 19:18:30 | 000,151,297 | ---- | M] (Avira GmbH) (Veoh Client Service) Veoh Client Service [Disabled | Stopped] -> C:\Program Files\Veoh\VeohClientService.exe -> [2006-07-15 00:16:32 | 000,991,232 | ---- | M] (Veoh Networks, Inc.) (vsmon) TrueVector Internet Monitor [Disabled | Stopped] -> C:\WINDOWS\System32\ZoneLabs\vsmon.exe -> [2004-05-17 04:55:26 | 000,914,712 | ---- | M] (Zone Labs Inc.) [Driver Services - Safe List] (MksMonFd) MkS_Mon Kernel Filter Driver [Kernel | On_Demand | Stopped] -> C:\Program Files\MKS\Bin\MksMonFd.sys -> File not found (MksMonEv) MkS_Mon Kernel Events [Kernel | On_Demand | Stopped] -> C:\Program Files\MKS\Bin\MksMonEv.sys -> File not found (MksMonEn) MkS_Mon Kernel Engine [Kernel | On_Demand | Stopped] -> C:\Program Files\MKS\Bin\MksMonEn.sys -> File not found (adiusbaw) USB ADSL WAN Adapter [Kernel | On_Demand | Stopped] -> C:\WINDOWS\System32\DRIVERS\adiusbaw.sys -> File not found (ADILOADER) General Purpose USB Driver (adildr.sys) [Kernel | Auto | Stopped] -> C:\WINDOWS\System32\Drivers\adildr.sys -> File not found (avipbb) avipbb [Kernel | System | Stopped] -> C:\WINDOWS\system32\drivers\avipbb.sys -> [2009-09-13 19:18:45 | 000,075,096 | ---- | M] (Avira GmbH) (avgntdd) avgntdd [File_System | System | Running] -> C:\WINDOWS\system32\drivers\avgntdd.sys -> [2009-09-13 19:18:45 | 000,045,400 | ---- | M] (Avira GmbH) (avgntmgr) avgntmgr [File_System | Boot | Running] -> C:\WINDOWS\SYSTEM32\DRIVERS\avgntmgr.sys -> [2009-09-13 19:18:45 | 000,022,360 | ---- | M] (Avira GmbH) (ssmdrv) ssmdrv [Kernel | System | Stopped] -> C:\WINDOWS\system32\drivers\ssmdrv.sys -> [2007-03-01 10:34:22 | 000,028,352 | ---- | M] (Avira GmbH) (vsdatant) vsdatant [Kernel | System | Stopped] -> C:\WINDOWS\system32\vsdatant.sys -> [2004-05-17 04:55:14 | 000,264,376 | ---- | M] (Zone Labs Inc.) (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN) [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\alcan5wn.sys -> [2003-12-08 11:53:48 | 000,053,600 | ---- | M] (THOMSON) (alcaudsl) SpeedTouch ADSL Modem ATM Transport [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\alcaudsl.sys -> [2003-12-08 11:53:46 | 000,070,688 | ---- | M] (THOMSON) (nv) nv [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\nv4_mini.sys -> [2003-10-06 14:16:00 | 001,550,043 | ---- | M] (NVIDIA Corporation) (viaagp1) VIA AGP Filter [Kernel | Boot | Running] -> C:\WINDOWS\System32\DRIVERS\viaagp1.sys -> [2003-07-02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) (PLUsbbc2) High-Speed USB Bridge Cable Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\usbbc2.sys -> [2003-05-07 15:54:38 | 000,008,960 | ---- | M] (Prolific Technology Inc.) (cmpci) C-Media PCI Audio Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\cmaudio.sys -> [2002-11-18 16:51:40 | 000,377,358 | ---- | M] (C-Media Inc) (gameenum) Licznik portów gier [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\gameenum.sys -> [2002-08-29 01:32:44 | 000,009,856 | ---- | M] (Microsoft Corporation) (Aspi32) Aspi32 [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\ASPI32.SYS -> [2002-07-17 08:53:02 | 000,016,877 | ---- | M] (Adaptec) (CDRPDACC) Arrowkey Device Access [Kernel | Auto | Stopped] -> C:\Program Files\Arrowkey\Shared\CDRPDACC.SYS -> [2002-07-05 13:13:14 | 000,004,633 | ---- | M] (Arrowkey) (NeroCd2k) NeroCd2k [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\NeroCd2k.sys -> [2002-01-14 21:07:50 | 000,015,584 | ---- | M] (Ahead Software AG im Stoeckmaedle 18 76307 Karlsbad, Germany Fax: ++49-7248-911-888 e-mail: info@nero.com) (NtApm) Sterownik interfejsu NT Apm/Legacy [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\NtApm.sys -> [2001-10-26 17:48:56 | 000,009,600 | ---- | M] (Microsoft Corporation) (MODEMCSA) Urządzenie filtru strumieniowego usługi Unimodem [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\MODEMCSA.sys -> [2001-08-17 22:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) (V124) V124 [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_V124.sys -> [2001-08-17 22:28:12 | 000,488,383 | ---- | M] (Conexant) (Tones) Tones [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_TONE.sys -> [2001-08-17 22:28:12 | 000,050,751 | ---- | M] (Conexant) (hsf_msft) hsf_msft [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\HSF_MSFT.sys -> [2001-08-17 22:28:10 | 000,542,879 | ---- | M] (Conexant) (SpeakerPhone) SpeakerPhone [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_SPKP.sys -> [2001-08-17 22:28:10 | 000,073,279 | ---- | M] (Conexant) (Rksample) Rksample [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\HSF_SAMP.sys -> [2001-08-17 22:28:10 | 000,057,471 | ---- | M] (Conexant) (K56) K56 [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_K56K.sys -> [2001-08-17 22:28:08 | 000,391,199 | ---- | M] (Conexant) (Fallback) Fallback [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_FALL.sys -> [2001-08-17 22:28:06 | 000,289,887 | ---- | M] (Conexant) (SoftFax) SoftFax [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_FAXX.sys -> [2001-08-17 22:28:06 | 000,199,711 | ---- | M] (Conexant) (Fsks) Fsks [Kernel | Auto | Stopped] -> C:\WINDOWS\system32\drivers\HSF_FSKS.sys -> [2001-08-17 22:28:06 | 000,115,807 | ---- | M] (Conexant) (basic2) basic2 [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\HSF_BSC2.sys -> [2001-08-17 22:28:04 | 000,067,167 | ---- | M] (Conexant) [Registry - Safe List] < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://www.msn.com/ -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\"Start Page" -> about:blank -> HKEY_CURRENT_USER\: SearchURL\\"provider" -> -> HKEY_CURRENT_USER\: URLSearchHooks\\"{08C06D61-F1F3-4799-86F8-BE1A89362C85}" [HKLM] -> C:\Program Files\Neostrada TP\SearchPageURL.dll [Search Class] -> [2003-10-16 19:06:40 | 000,053,248 | ---- | M] () HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> < FireFox Settings [Prefs.js] > -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\FireFox\Profiles\dirsfpi9.default\prefs.js -> extensions.enabledItems -> artur.dubovoy@gmail.com:1.9.96 -> extensions.enabledItems -> {1392b8d2-5c05-419f-a8f6-b9f15a596612}:2.4.0.4 -> extensions.enabledItems -> {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.2.3 -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Components -> C:\Program Files\Mozilla Firefox\components [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2010-07-15 12:24:00 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Plugins -> C:\Program Files\Mozilla Firefox\plugins [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2010-07-15 12:24:01 | 000,000,000 | ---D | M] < FireFox Extensions [User Folders] > -> -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Extensions -> [2008-08-16 22:24:33 | 000,000,000 | ---D | M] -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Firefox\Profiles\dirsfpi9.default\extensions -> [2010-08-22 14:05:20 | 000,000,000 | ---D | M] Freecorder Toolbar -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Firefox\Profiles\dirsfpi9.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612} -> [2010-01-01 03:53:15 | 000,000,000 | ---D | M] Flashblock -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Firefox\Profiles\dirsfpi9.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} -> [2009-12-07 01:22:33 | 000,000,000 | ---D | M] NoScript -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Firefox\Profiles\dirsfpi9.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} -> [2010-08-22 14:05:20 | 000,000,000 | ---D | M] -> C:\Documents and Settings\ADMIN\Dane aplikacji\Mozilla\Firefox\Profiles\dirsfpi9.default\extensions\artur.dubovoy@gmail.com -> [2009-12-13 01:55:02 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Program Files\Mozilla Firefox\extensions -> [2008-08-16 22:22:54 | 000,000,000 | ---D | M] < HOSTS File > ([2006-08-26 01:42:32 | 000,000,734 | R--- | M] - 19 lines) -> C:\WINDOWS\nsdb\hosts -> Reset Hosts 127.0.0.1 localhost < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx [AcroIEHlprObj Class] -> [2001-04-16 18:39:02 | 000,037,808 | ---- | M] () {53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [] -> [2004-05-02 14:44:28 | 000,744,960 | ---- | M] (Safer Networking Limited) {9527D42F-D666-11D3-B8DD-00600838CD5F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{8E718888-423F-11D2-876E-00A0C9082467}" [HKLM] -> C:\WINDOWS\system32\msdxm.ocx [&Radio] -> [2003-04-16 14:00:00 | 000,845,340 | ---- | M] (Microsoft Corporation) "{E0E899AB-F487-11D5-8D29-0050BA6940E3}" [HKLM] -> C:\Program Files\FlashGet\fgiebar.dll [FlashGet Bar] -> [2002-05-27 03:17:56 | 000,086,016 | ---- | M] (Amaze Soft) < Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> ShellBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found WebBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "avgnt" -> C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe ["C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min] -> [2008-06-12 14:28:45 | 000,266,497 | ---- | M] (Avira GmbH) "Freecorder FLV Service" -> C:\Program Files\Freecorder\FLVSrvc.exe ["C:\Program Files\Freecorder\FLVSrvc.exe" /run] -> [2009-11-15 22:59:11 | 000,158,752 | ---- | M] (Applian Technologies, Inc.) "MSConfig" -> C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto] -> [2003-04-16 14:00:00 | 000,146,944 | ---- | M] (Microsoft Corporation) "NvCplDaemon" -> C:\WINDOWS\System32\NvCpl.DLL [RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup] -> [2003-10-06 14:16:00 | 005,058,560 | ---- | M] (NVIDIA Corporation) "WooCnxMon" -> C:\Program Files\Neostrada TP\CnxMon.exe [C:\PROGRA~1\NEOSTR~1\CnxMon.exe] -> [2003-10-16 19:07:10 | 000,024,576 | ---- | M] () "WOOTASKBARICON" -> C:\Program Files\Neostrada TP\TaskBarIcon.exe [C:\PROGRA~1\NEOSTR~1\TaskbarIcon.exe] -> [2003-10-16 19:07:12 | 000,053,248 | ---- | M] (France Télécom R&D) "WOOWATCH" -> C:\Program Files\Neostrada TP\Watch.exe [C:\PROGRA~1\NEOSTR~1\Watch.exe] -> [2003-10-16 19:07:12 | 000,020,480 | ---- | M] (France Télécom R&D) < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "SpybotSD TeaTimer" -> C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe] -> [2004-05-02 14:43:52 | 001,034,240 | ---- | M] (Safer Networking Limited) < RunOnce [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "^SetupICWDesktop" -> [] -> File not found "FlashPlayerUpdate" -> C:\WINDOWS\System32\Macromed\Flash\FlashUtil10h_Plugin.exe [C:\WINDOWS\System32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin] -> [2010-07-09 01:16:53 | 000,231,888 | ---- | M] (Adobe Systems, Inc.) < Software Policy Settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer -> HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer\Control Panel \Control Panel\\"Homepage" -> [1] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System < CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [95 00 00 00 [binary data]] -> File not found \\"NoBandCustomize" -> [0] -> File not found \\"NoMovingBands" -> [0] -> File not found \\"NoCloseDragDropBands" -> [0] -> File not found \\"NoSetTaskbar" -> [0] -> File not found \\"NoToolbarsOnTaskbar" -> [0] -> File not found \\"NoSaveSettings" -> [0] -> File not found \\"NoActiveDesktop" -> [0] -> File not found \\"ClassicShell" -> [0] -> File not found < Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> Download with GetRight -> C:\Program Files\GetRight\GRDownload.htm [C:\Program Files\GetRight\GRdownload.htm] -> [2001-12-11 13:49:46 | 000,000,638 | ---- | M] () E&ksport do programu Microsoft Excel -> C:\Program Files\Microsoft Office\Office10\EXCEL.EXE [res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000] -> [2001-02-16 10:05:38 | 009,164,192 | R--- | M] (Microsoft Corporation) Open with GetRight Browser -> C:\Program Files\GetRight\GRBrowse.htm [C:\Program Files\GetRight\GRbrowse.htm] -> [2001-12-11 13:49:38 | 000,000,638 | ---- | M] () Ściągnij przy pomocy FlashGet'a -> C:\Program Files\FlashGet\jc_link.htm [C:\Program Files\FlashGet\jc_link.htm] -> [2000-02-06 11:06:34 | 000,001,898 | ---- | M] () Ściągnij wszystko przy pomocy FlashGet'a -> C:\Program Files\FlashGet\jc_all.htm [C:\Program Files\FlashGet\jc_all.htm] -> [2000-02-06 11:06:06 | 000,000,575 | ---- | M] () < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {D6E814A0-E0C5-11d4-8D29-0050BA6940E3}:Exec [HKLM] -> C:\Program Files\FlashGet\flashget.exe [Button: FlashGet] -> [2002-10-09 12:15:58 | 001,179,648 | ---- | M] (Amaze Soft) {D6E814A0-E0C5-11d4-8D29-0050BA6940E3}:Exec [HKLM] -> C:\Program Files\FlashGet\flashget.exe [Menu: &FlashGet] -> [2002-10-09 12:15:58 | 001,179,648 | ---- | M] (Amaze Soft) < Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\"{578FC4E3-151E-456c-AF8E-B63061EFE228}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{c95fe080-8f5d-11d2-a20b-00aa003c157a}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}" [HKLM] -> C:\Program Files\FlashGet\flashget.exe [FlashGet] -> [2002-10-09 12:15:58 | 001,179,648 | ---- | M] (Amaze Soft) < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Galeria Microsoft ActiveX -> < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 997 domain(s) found. -> .[msn] -> Mój komputer -> < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 18 range(s) found. -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {17492023-C23A-453E-A040-C7C580BBF700} [HKLM] -> Reg Error: Value error. [Reg Error: Key error.] -> {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} [HKLM] -> http://office.microsoft.com/officeupdate/content/opuc.cab [Office Update Installation Engine] -> {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] -> Microsoft XML Parser for Java [HKLM] -> file://C:\WINDOWS\Java\classes\xmldso.cab [Reg Error: Key error.] -> IE Styles -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Styles "Use My Stylesheet" -> Reg Error: Invalid data type. "User Stylesheet" -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> Explorer.exe -> C:\WINDOWS\explorer.exe -> [2003-04-16 14:00:00 | 001,005,568 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> Sterownik stacji dysków CD-ROM -> "ImagePath" -> [System32\DRIVERS\cdrom.sys] -> File not found < Drives with AutoRun files > -> -> C:\AUTOEXEC.BAT [] -> C:\AUTOEXEC.BAT [ NTFS ] -> [2003-08-26 12:49:21 | 000,000,000 | ---- | M] () < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Files/Folders - Created Within 90 Days] Programy_Naprawcze -> C:\Program Files\Programy_Naprawcze -> [2010-08-22 14:17:21 | 000,000,000 | ---D | C] OTS.exe -> C:\Documents and Settings\ADMIN\Pulpit\OTS.exe -> [2010-08-13 01:15:56 | 000,641,536 | ---- | C] (OldTimer Tools) ArcaVirMicroScan -> C:\Documents and Settings\ADMIN\Dane aplikacji\ArcaVirMicroScan -> [2010-08-12 14:13:12 | 000,000,000 | ---D | C] uTorrent -> C:\Program Files\uTorrent -> [2010-07-11 21:56:48 | 000,000,000 | ---D | C] uTorrent -> C:\Documents and Settings\ADMIN\Dane aplikacji\uTorrent -> [2010-07-11 21:55:50 | 000,000,000 | ---D | C] Cache -> C:\WINDOWS\Cache -> [2010-06-22 12:34:45 | 000,000,000 | ---D | C] 1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> [Files/Folders - Modified Within 90 Days] system.ini -> C:\WINDOWS\system.ini -> [2010-08-22 14:55:14 | 000,000,227 | ---- | M] () win.ini -> C:\WINDOWS\win.ini -> [2010-08-22 14:55:14 | 000,000,209 | ---- | M] () boot.ini -> C:\boot.ini -> [2010-08-22 14:55:14 | 000,000,194 | -HS- | M] () ntuser.dat -> C:\Documents and Settings\ADMIN\ntuser.dat -> [2010-08-22 14:13:10 | 004,194,304 | ---- | M] () wpa.dbl -> C:\WINDOWS\System32\wpa.dbl -> [2010-08-22 14:12:31 | 000,013,646 | ---- | M] () bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2010-08-22 14:12:22 | 000,002,048 | --S- | M] () OTS.exe -> C:\Documents and Settings\ADMIN\Pulpit\OTS.exe -> [2010-08-13 01:12:50 | 000,641,536 | ---- | M] (OldTimer Tools) ArcaVirMicroScan.lnk -> C:\Documents and Settings\ADMIN\Pulpit\ArcaVirMicroScan.lnk -> [2010-08-12 14:32:22 | 000,000,645 | ---- | M] () Neostrada TP.lnk -> C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk -> [2010-08-12 14:02:28 | 000,001,533 | ---- | M] () ntuser.ini -> C:\Documents and Settings\ADMIN\ntuser.ini -> [2010-08-11 02:52:54 | 000,000,294 | -HS- | M] () winamp.ini -> C:\WINDOWS\winamp.ini -> [2010-08-09 03:24:19 | 000,001,065 | ---- | M] () PDOXUSRS.NET -> C:\PDOXUSRS.NET -> [2010-08-01 01:51:14 | 000,013,030 | ---- | M] () LEXSTAT.INI -> C:\WINDOWS\LEXSTAT.INI -> [2010-08-01 01:50:23 | 000,000,439 | ---- | M] () DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\ADMIN\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2010-07-25 19:17:09 | 000,113,664 | ---- | M] () NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2010-07-18 16:42:03 | 000,000,049 | ---- | M] () µTorrent.lnk -> C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk -> [2010-07-11 21:56:51 | 000,000,630 | ---- | M] () TextSpy.ini -> C:\WINDOWS\TextSpy.ini -> [2010-06-24 01:54:39 | 000,000,030 | ---- | M] () 1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> [Files - No Company Name] ArcaVirMicroScan.lnk -> C:\Documents and Settings\ADMIN\Pulpit\ArcaVirMicroScan.lnk -> [2010-08-12 14:32:22 | 000,000,645 | ---- | C] () µTorrent.lnk -> C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk -> [2010-07-11 21:56:51 | 000,000,630 | ---- | C] () LEXSTAT.INI -> C:\WINDOWS\LEXSTAT.INI -> [2007-11-09 01:37:28 | 000,000,439 | ---- | C] () Promedin.dll -> C:\WINDOWS\System32\Promedin.dll -> [2006-09-03 13:17:06 | 000,368,128 | ---- | C] () xobglu16.dll -> C:\WINDOWS\xobglu16.dll -> [2006-09-02 12:29:18 | 000,063,488 | ---- | C] () xobglu32.dll -> C:\WINDOWS\xobglu32.dll -> [2006-09-02 12:29:18 | 000,023,552 | ---- | C] () impborl.dll -> C:\WINDOWS\impborl.dll -> [2006-07-23 18:16:20 | 000,012,288 | ---- | C] () stci.dll -> C:\WINDOWS\System32\stci.dll -> [2005-09-16 23:11:52 | 000,005,606 | ---- | C] () NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2004-09-21 11:16:36 | 000,000,049 | ---- | C] () cpuinf32.dll -> C:\WINDOWS\System32\cpuinf32.dll -> [2004-05-20 10:52:25 | 000,009,216 | ---- | C] () xvidvfw.dll -> C:\WINDOWS\System32\xvidvfw.dll -> [2004-05-20 10:51:36 | 000,155,648 | ---- | C] () xvidcore.dll -> C:\WINDOWS\System32\xvidcore.dll -> [2004-05-20 10:51:33 | 000,675,840 | ---- | C] () xvid.dll -> C:\WINDOWS\System32\xvid.dll -> [2004-05-20 10:51:22 | 000,626,688 | ---- | C] () fxsperf.ini -> C:\WINDOWS\System32\fxsperf.ini -> [2003-12-26 21:42:54 | 000,003,619 | ---- | C] () cdplayer.ini -> C:\WINDOWS\cdplayer.ini -> [2003-12-20 19:58:23 | 000,005,741 | ---- | C] () nvcod.dll -> C:\WINDOWS\System32\nvcod.dll -> [2003-10-06 14:16:00 | 000,027,136 | ---- | C] () TextSpy.ini -> C:\WINDOWS\TextSpy.ini -> [2003-08-28 19:02:00 | 000,000,030 | ---- | C] () ECMS.INI -> C:\WINDOWS\ECMS.INI -> [2003-08-27 11:55:39 | 000,000,365 | ---- | C] () Ferro.INI -> C:\WINDOWS\Ferro.INI -> [2003-08-27 11:54:12 | 000,000,210 | ---- | C] () winamp.ini -> C:\WINDOWS\winamp.ini -> [2003-08-27 11:12:26 | 000,001,065 | ---- | C] () OWL252.DLL -> C:\WINDOWS\OWL252.DLL -> [2003-08-27 11:05:09 | 000,484,880 | ---- | C] () _delis32.ini -> C:\WINDOWS\_delis32.ini -> [2003-08-27 10:35:15 | 000,000,260 | ---- | C] () mixerdef.ini -> C:\WINDOWS\mixerdef.ini -> [2003-08-26 14:50:33 | 000,000,025 | ---- | C] () wincmd.ini -> C:\WINDOWS\wincmd.ini -> [2003-08-26 14:22:57 | 000,000,921 | ---- | C] () ODBC.INI -> C:\WINDOWS\ODBC.INI -> [2003-08-26 13:19:55 | 000,000,427 | ---- | C] () secdrv.sys -> C:\WINDOWS\System32\drivers\secdrv.sys -> [2003-04-16 14:00:00 | 000,027,440 | ---- | C] () OggDS.dll -> C:\WINDOWS\System32\OggDS.dll -> [2002-10-06 19:42:58 | 000,237,568 | ---- | C] () VorbisEnc.dll -> C:\WINDOWS\System32\VorbisEnc.dll -> [2002-10-05 00:04:26 | 000,921,600 | ---- | C] () vorbis.dll -> C:\WINDOWS\System32\vorbis.dll -> [2002-10-05 00:04:26 | 000,188,416 | ---- | C] () ogg.dll -> C:\WINDOWS\System32\ogg.dll -> [2002-10-05 00:04:18 | 000,045,056 | ---- | C] () archlib.dll -> C:\WINDOWS\System32\archlib.dll -> [2002-08-13 10:03:13 | 000,204,800 | --S- | C] () [File - Lop Check] ArcaVirMicroScan -> C:\Documents and Settings\ADMIN\Dane aplikacji\ArcaVirMicroScan -> [2010-08-12 21:39:50 | 000,000,000 | ---D | M] InterTrust -> C:\Documents and Settings\ADMIN\Dane aplikacji\InterTrust -> [2003-08-26 13:00:43 | 000,000,000 | ---D | M] uTorrent -> C:\Documents and Settings\ADMIN\Dane aplikacji\uTorrent -> [2010-07-16 13:42:03 | 000,000,000 | ---D | M] wsInspector -> C:\Documents and Settings\ADMIN\Dane aplikacji\wsInspector -> [2008-08-17 02:50:25 | 000,000,000 | ---D | M] veoh -> C:\Documents and Settings\All Users\Dane aplikacji\veoh -> [2006-08-23 02:42:19 | 000,000,000 | ---D | M] [File - Purity Scan] < End of report > [/code]