OTL logfile created on: 2012-04-20 08:48:21 - Run 1 OTL by OldTimer - Version 3.2.7.0 Folder = C:\Documents and Settings\user\Pulpit\KOMP\Ogolne do diagnozy\OTL Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 014,00 Mb Total Physical Memory | 518,00 Mb Available Physical Memory | 51,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 84,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 37,26 Gb Total Space | 14,68 Gb Free Space | 39,39% Space Free | Partition Type: NTFS Drive D: | 37,27 Gb Total Space | 37,20 Gb Free Space | 99,82% Space Free | Partition Type: NTFS E: Drive not present or media not loaded Drive F: | 7,44 Gb Total Space | 0,77 Gb Free Space | 10,35% Space Free | Partition Type: FAT32 G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: USER-7A67844359 Current User Name: user Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-04-06 19:28:40 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\user\Ustawienia lokalne\Temp\RtkBtMnt.exe PRC - [2011-04-17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\5.2.1.3\ccsvchst.exe PRC - [2010-11-16 15:37:38 | 000,264,704 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe PRC - [2010-06-25 13:25:36 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Pulpit\KOMP\Ogolne do diagnozy\OTL\OTL.exe PRC - [2009-04-14 21:28:46 | 000,110,592 | R--- | M] (Huawei Technologies Co., Ltd.) -- C:\Documents and Settings\user\Dane aplikacji\PLAY ONLINE\ouc.exe PRC - [2008-06-06 21:28:38 | 000,221,184 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\system32\UAService7.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-03-21 14:00:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe PRC - [2007-03-21 14:00:00 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2007-02-02 22:38:14 | 002,756,608 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe PRC - [2007-02-02 21:28:06 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe PRC - [2007-02-02 15:56:52 | 000,118,784 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe PRC - [2007-01-30 18:47:48 | 000,307,200 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe PRC - [2007-01-26 12:59:02 | 002,170,880 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe PRC - [2007-01-12 23:41:40 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe PRC - [2006-10-27 21:13:48 | 000,270,336 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe PRC - [2006-03-01 20:43:20 | 000,090,112 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2006-01-24 00:14:10 | 000,069,632 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe PRC - [2005-03-07 03:51:00 | 000,032,768 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe PRC - [2004-11-29 19:10:52 | 000,167,936 | ---- | M] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\WINDOWS\system32\MSTMON_Q.EXE [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2012-03-28 00:39:08 | 000,413,112 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\Engine\5.2.1.3\asoehook.dll MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-06-25 13:25:36 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Pulpit\KOMP\Ogolne do diagnozy\OTL\OTL.exe MOD - [2009-07-12 09:02:02 | 000,653,120 | R--- | M] (Microsoft Corporation) -- C:\Program Files\Norton 360\Engine\5.2.1.3\microsoft.vc90.crt\msvcr90.dll MOD - [2009-07-12 09:02:00 | 000,569,664 | R--- | M] (Microsoft Corporation) -- C:\Program Files\Norton 360\Engine\5.2.1.3\microsoft.vc90.crt\msvcp90.dll MOD - [2008-04-14 19:16:32 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Running] -- -- (HWDeviceService.exe) SRV - [2011-04-17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton 360\Engine\5.2.1.3\ccSvcHst.exe -- (N360) SRV - [2008-06-06 21:28:38 | 000,221,184 | ---- | M] (Sony DADC Austria AG.) [Auto | Running] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7) SRV - [2007-03-21 14:00:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R) SRV - [2007-02-02 15:56:52 | 000,118,784 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2012-04-12 11:27:26 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120416.018\NAVEX15.SYS -- (NAVEX15) DRV - [2012-04-12 11:27:26 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120416.018\NAVENG.SYS -- (NAVENG) DRV - [2012-04-03 01:38:08 | 000,821,880 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20120402.001\BHDrvx86.sys -- (BHDrvx86) DRV - [2012-03-05 02:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2012-02-25 01:38:40 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2012-02-24 17:26:06 | 000,356,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120416.001\IDSXpx86.sys -- (IDSxpx86) DRV - [2012-02-24 02:00:00 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2011-04-21 03:37:49 | 000,369,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\System32\Drivers\N360\0502010.003\SYMTDI.SYS -- (SYMTDI) DRV - [2011-03-31 05:00:09 | 000,516,216 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\windows\System32\Drivers\N360\0502010.003\SRTSP.SYS -- (SRTSP) DRV - [2011-03-31 05:00:09 | 000,050,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\system32\drivers\N360\0502010.003\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL) DRV - [2011-03-15 04:31:23 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\windows\system32\drivers\N360\0502010.003\SYMEFA.SYS -- (SymEFA) DRV - [2011-01-27 08:47:10 | 000,340,088 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\windows\system32\drivers\N360\0502010.003\SYMDS.SYS -- (SymDS) DRV - [2011-01-27 07:07:05 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\system32\drivers\N360\0502010.003\Ironx86.SYS -- (SymIRON) DRV - [2010-10-09 14:48:36 | 000,072,576 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2010-08-27 13:53:32 | 000,117,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet) DRV - [2010-08-07 17:48:30 | 000,106,496 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2010-07-27 09:52:02 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2009-01-21 11:42:56 | 006,278,560 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2008-05-11 03:19:00 | 000,007,040 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ComproHID.sys -- (ComproHID) DRV - [2008-04-13 20:54:36 | 000,028,672 | ---- | M] (National Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nscirda.sys -- (NSCIRDA) DRV - [2008-04-13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE) DRV - [2008-04-13 18:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007-05-31 12:04:56 | 004,424,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-03-21 13:58:56 | 000,304,920 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\iaStor.sys -- (iaStor) DRV - [2007-03-01 22:22:04 | 000,988,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2007-03-01 22:21:24 | 000,210,688 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2007-03-01 22:21:22 | 000,731,136 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2007-02-16 16:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2007-01-25 06:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21) DRV - [2007-01-24 15:57:38 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Tosrfhid.sys -- (Tosrfhid) DRV - [2007-01-22 11:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TosRfSnd.sys -- (TosRfSnd) DRV - [2007-01-12 22:41:32 | 000,113,792 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfbd.sys -- (tosrfbd) DRV - [2007-01-12 22:16:54 | 000,040,576 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (tosrfusb) DRV - [2006-11-20 18:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfbnp.sys -- (tosrfbnp) DRV - [2006-10-12 16:28:42 | 000,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bcmwl5.sys -- (BCM43XX) DRV - [2006-10-10 20:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte) DRV - [2005-08-01 17:45:00 | 000,064,896 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom) DRV - [2005-01-06 14:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfnds.sys -- (tosrfnds) DRV - [2003-07-22 16:44:18 | 000,018,848 | ---- | M] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\MLPTDR_Q.SYS -- (MLPTDR_Q) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1004336348-1958367476-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.gazeta.pl/0,0.html?p=115 [binary data] IE - HKU\S-1-5-21-1004336348-1958367476-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1004336348-1958367476-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2012-02-25 01:45:52 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_6_3 [2012-04-20 08:22:06 | 000,000,000 | ---D | M] [2008-05-23 22:29:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\q0v8l4kh.default\extensions [2011-07-26 13:48:07 | 000,000,000 | ---D | M] (BS Player Community Toolbar) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\q0v8l4kh.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} [2008-03-24 20:21:00 | 002,889,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll O1 HOSTS File: ([2006-03-02 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (no name) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - No CLSID value found. O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\5.2.1.3\coieplg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\5.2.1.3\ips\ipsbho.dll (Symantec Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\5.2.1.3\coieplg.dll (Symantec Corporation) O3 - HKLM\..\Toolbar: (no name) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - No CLSID value found. O3 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\5.2.1.3\coieplg.dll (Symantec Corporation) O4 - HKLM..\Run: [Alcmtr] C:\windows\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation) O4 - HKLM..\Run: [KONICA MINOLTA PagePro 1350WStatusDisplay] C:\WINDOWS\system32\MSTMON_Q.EXE (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) O4 - HKLM..\Run: [QuickTime Task] C:\qttask.exe File not found O4 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004..\Run: [ChomikBox] C:\Program Files\ChomikBox\ChomikBox.exe File not found O4 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004..\Run: [HW_OPENEYE_OUC_] C:\Documents and Settings\user\Pulpit\PLAY ONLINE\UpdateDog\ouc.exe File not found O4 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004..\Run: [HW_OPENEYE_OUC_PLAY ONLINE] C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe (Huawei Technologies Co., Ltd.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Bluetooth Manager.lnk = C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-21-1004336348-1958367476-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html () O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} http://www.srtest.com/srl_bin/sysreqlab_ind.cab (System Requirements Lab Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\windows\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0f0c5d78-5e5c-11df-9792-001bdc001198}\Shell\AutoRun\command - "" = F:\nemoj\meni.exe -- File not found O33 - MountPoints2\{0f0c5d78-5e5c-11df-9792-001bdc001198}\Shell\explore\command - "" = F:\nemoj\\meni.exe -- File not found O33 - MountPoints2\{0f0c5d78-5e5c-11df-9792-001bdc001198}\Shell\open\command - "" = F:\nemoj\\meni.exe -- File not found O33 - MountPoints2\{2ee51058-d537-11de-96b7-001e4c1ca28b}\Shell\AutoRun\command - "" = F:\lphfa.exe -- File not found O33 - MountPoints2\{2ee51058-d537-11de-96b7-001e4c1ca28b}\Shell\open\Command - "" = F:\lphfa.exe -- File not found O33 - MountPoints2\{67807122-b6aa-11e0-991c-001e4c1ca28b}\Shell - "" = AutoRun O33 - MountPoints2\{67807122-b6aa-11e0-991c-001e4c1ca28b}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{81e3d2ba-6ec9-11dd-94fc-001bdc001198}\Shell - "" = AutoRun O33 - MountPoints2\{81e3d2ba-6ec9-11dd-94fc-001bdc001198}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{86892e36-3d10-11df-9756-001bdc001198}\Shell\AutoRun\command - "" = G:\USBNB.exe -- File not found O33 - MountPoints2\{bfa5f334-a590-11e0-98c6-dcbc0295a5b2}\Shell - "" = AutoRun O33 - MountPoints2\{bfa5f334-a590-11e0-98c6-dcbc0295a5b2}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{bfa5f337-a590-11e0-98c6-81ca387fe8d9}\Shell - "" = AutoRun O33 - MountPoints2\{bfa5f337-a590-11e0-98c6-81ca387fe8d9}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{c65916bc-704f-11dd-9504-001bdc001198}\Shell - "" = AutoRun O33 - MountPoints2\{c65916bc-704f-11dd-9504-001bdc001198}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{c65916bd-704f-11dd-9504-001bdc001198}\Shell - "" = AutoRun O33 - MountPoints2\{c65916bd-704f-11dd-9504-001bdc001198}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{d521a51c-ac4c-11de-9656-001e4c1ca28b}\Shell\AutoRun\command - "" = H:\nds0q.exe -- File not found O33 - MountPoints2\{d521a51c-ac4c-11de-9656-001e4c1ca28b}\Shell\open\Command - "" = H:\nds0q.exe -- File not found O33 - MountPoints2\{db36f736-a196-11e0-98ad-001bdc001198}\Shell - "" = AutoRun O33 - MountPoints2\{db36f736-a196-11e0-98ad-001bdc001198}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{db36f739-a196-11e0-98ad-001bdc001198}\Shell - "" = AutoRun O33 - MountPoints2\{db36f739-a196-11e0-98ad-001bdc001198}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-04-17 14:24:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\KOMP [2012-04-17 09:08:30 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent [6 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [2 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-06-02 22:49:42 | 000,331,287 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Zdjęcie0141.jpg [2012-06-02 22:49:26 | 000,314,313 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Zdjęcie0140.jpg [2012-04-20 08:35:38 | 000,000,000 | ---- | M] () -- C:\boot.ini [2012-04-20 08:22:04 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT [2012-04-20 08:22:02 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat [2012-04-20 08:20:51 | 009,961,472 | ---- | M] () -- C:\Documents and Settings\user\ntuser.dat [2012-04-20 08:20:51 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\user\ntuser.ini [2012-04-20 08:20:42 | 002,538,306 | -H-- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\IconCache.db [2012-04-20 07:46:36 | 000,004,566 | ---- | M] () -- C:\windows\imsins.BAK [2012-04-20 07:16:50 | 000,013,646 | ---- | M] () -- C:\windows\System32\wpa.dbl [2012-04-15 07:53:40 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\user\Pulpit\~$kst motywacyjny.doc [2012-04-14 05:48:39 | 000,103,424 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-04-13 21:55:54 | 000,000,116 | ---- | M] () -- C:\windows\NeroDigital.ini [2012-04-13 10:39:04 | 000,000,735 | ---- | M] () -- C:\Documents and Settings\user\intlname.ols [2012-04-12 21:19:57 | 000,023,040 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Wzór ogłoszenia.doc [2012-04-12 16:51:58 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Wzór E-maila.doc [2012-04-12 14:51:12 | 000,731,302 | ---- | M] () -- C:\windows\System32\drivers\N360\0502010.003\Cat.DB [2012-04-12 14:49:36 | 000,843,964 | ---- | M] () -- C:\windows\System32\perfh015.dat [2012-04-12 14:49:36 | 000,749,206 | ---- | M] () -- C:\windows\System32\perfh009.dat [2012-04-12 14:49:36 | 000,274,518 | ---- | M] () -- C:\windows\System32\perfc015.dat [2012-04-12 14:49:36 | 000,236,394 | ---- | M] () -- C:\windows\System32\perfc009.dat [2012-04-12 14:49:36 | 000,005,054 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI [2012-04-10 23:34:21 | 001,296,911 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\joalis_abc.pdf [2012-04-08 10:34:50 | 000,054,156 | -H-- | M] () -- C:\windows\QTFont.qfn [2012-04-07 19:37:41 | 000,001,889 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Norton 360.LNK [2012-03-28 03:17:55 | 000,000,172 | ---- | M] () -- C:\windows\System32\drivers\N360\0502010.003\isolate.ini [6 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [2 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-04-20 08:35:38 | 000,000,000 | ---- | C] () -- C:\boot.ini [2012-04-17 13:51:57 | 000,004,566 | ---- | C] () -- C:\windows\imsins.BAK [2012-04-15 07:53:40 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\user\Pulpit\~$kst motywacyjny.doc [2012-04-12 21:19:57 | 000,023,040 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Wzór ogłoszenia.doc [2012-04-12 16:41:50 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Wzór E-maila.doc [2012-04-10 23:34:20 | 001,296,911 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\joalis_abc.pdf [2012-04-07 19:37:41 | 000,001,889 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Norton 360.LNK [2012-02-15 20:55:49 | 000,003,072 | ---- | C] () -- C:\windows\System32\iacenc.dll [2009-11-11 19:57:09 | 000,000,127 | ---- | C] () -- C:\windows\System32\MRT.INI [2009-10-14 16:01:51 | 000,000,232 | ---- | C] () -- C:\windows\BSL.INI [2009-04-15 14:34:02 | 000,003,972 | ---- | C] () -- C:\windows\System32\drivers\PciBus.sys [2009-04-15 13:35:16 | 000,168,448 | ---- | C] () -- C:\windows\System32\unrar.dll [2009-04-15 13:35:12 | 003,596,288 | ---- | C] () -- C:\windows\System32\qt-dx331.dll [2009-04-15 13:35:12 | 000,795,648 | ---- | C] () -- C:\windows\System32\xvidcore.dll [2009-04-15 13:35:12 | 000,130,048 | ---- | C] () -- C:\windows\System32\xvidvfw.dll [2009-04-15 13:35:10 | 000,000,547 | ---- | C] () -- C:\windows\System32\ff_vfw.dll.manifest [2009-04-15 13:35:09 | 000,067,584 | ---- | C] () -- C:\windows\System32\ff_vfw.dll [2008-09-30 19:18:50 | 000,000,072 | ---- | C] () -- C:\windows\Pex.INI [2008-09-30 16:47:07 | 000,363,520 | ---- | C] () -- C:\windows\System32\psisdecd.dll [2008-06-06 21:23:05 | 000,000,161 | ---- | C] () -- C:\windows\disney.ini [2008-02-17 13:26:20 | 000,001,102 | ---- | C] () -- C:\windows\bestplayer.ini [2008-02-10 01:26:32 | 000,000,116 | ---- | C] () -- C:\windows\NeroDigital.ini [2008-02-06 02:14:59 | 000,000,151 | ---- | C] () -- C:\windows\PhotoSnapViewer.INI [2008-02-02 18:28:45 | 000,000,421 | ---- | C] () -- C:\windows\ODBC.INI [2008-02-02 12:16:34 | 000,000,000 | ---- | C] () -- C:\windows\tosOBEX.INI [2008-02-02 12:10:53 | 000,000,098 | ---- | C] () -- C:\windows\WirelessFTP.INI [2008-01-26 21:39:50 | 000,000,037 | ---- | C] () -- C:\windows\VPlayer.INI [2008-01-15 15:30:47 | 000,910,464 | ---- | C] () -- C:\windows\System32\igmedkrn.dll [2008-01-15 15:30:47 | 000,204,800 | ---- | C] () -- C:\windows\System32\igfxCoIn_v4820.dll [2006-12-05 14:05:06 | 000,114,688 | ---- | C] () -- C:\windows\System32\TosBtAcc.dll [2005-07-22 22:30:20 | 000,065,536 | ---- | C] () -- C:\windows\System32\TosCommAPI.dll [2004-09-14 04:42:52 | 000,015,200 | ---- | C] () -- C:\windows\MSTMON_Q.INI [2003-07-14 12:53:56 | 000,011,521 | ---- | C] () -- C:\windows\MSUMLT_Q.INI [2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\windows\System32\OUTLPERF.INI [color=#E56717]========== LOP Check ==========[/color] [2011-07-03 18:24:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService [2008-06-06 21:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Disney Interactive [2011-08-25 15:06:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2011-08-25 18:58:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2009-04-15 14:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems [2009-05-17 16:01:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BESTplayer [2011-07-26 13:53:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BSplayer [2011-07-26 13:48:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BSplayer Pro [2009-11-12 17:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ESET [2008-01-26 21:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu [2011-12-27 20:24:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu 10 [2011-08-25 16:32:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenFM [2011-07-07 14:40:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\PLAY ONLINE [2009-10-14 18:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Thinstall [2012-02-25 02:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Tific [2009-04-15 14:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ulead Systems [color=#E56717]========== Purity Check ==========[/color] < End of report >