OTL logfile created on: 2012-07-08 12:40:23 - Run 2 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Palik\Desktop Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 66,72% Memory free 6,19 Gb Paging File | 5,35 Gb Available in Paging File | 86,43% Paging File free Paging file location(s): ?:\pagefile.sys %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 97,66 Gb Total Space | 6,70 Gb Free Space | 6,86% Space Free | Partition Type: NTFS Drive D: | 135,21 Gb Total Space | 1,97 Gb Free Space | 1,45% Space Free | Partition Type: NTFS Drive F: | 19,53 Gb Total Space | 9,29 Gb Free Space | 47,55% Space Free | Partition Type: NTFS Drive G: | 129,51 Gb Total Space | 13,43 Gb Free Space | 10,37% Space Free | Partition Type: NTFS Computer Name: PALIK-PC | User Name: Palik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-08 02:18:42 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Palik\Desktop\OTL.exe PRC - [2012-05-15 12:26:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-05-15 02:21:40 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012-03-23 14:25:24 | 000,087,040 | ---- | M] () -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe PRC - [2012-03-07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2011-02-23 07:59:00 | 000,086,016 | ---- | M] () -- C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008-08-28 20:34:14 | 013,145,448 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe PRC - [2008-02-13 07:52:10 | 004,915,200 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe PRC - [2008-01-21 04:32:50 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe PRC - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2006-11-02 20:40:12 | 000,174,656 | ---- | M] () -- C:\Program Files\Common Files\Protexis\License Service\PSIService.exe PRC - [2002-03-22 02:07:00 | 000,114,688 | ---- | M] () -- C:\Windows\System32\wintab32.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-11-08 22:46:02 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll MOD - [2009-07-11 16:00:13 | 000,043,520 | ---- | M] () -- C:\Windows\System32\CmdLineExt03.dll MOD - [2008-08-28 17:54:56 | 000,891,904 | ---- | M] () -- C:\Program Files\Adobe\Adobe Bridge CS4\FileInfo.dll MOD - [2008-08-28 17:54:56 | 000,502,272 | ---- | M] () -- C:\Program Files\Adobe\Adobe Bridge CS4\AdobeXMPFiles.dll MOD - [2008-08-28 17:54:56 | 000,424,960 | ---- | M] () -- C:\Program Files\Adobe\Adobe Bridge CS4\AdobeXMP.dll MOD - [2008-08-28 17:53:58 | 000,073,728 | ---- | M] () -- C:\Program Files\Adobe\Adobe Bridge CS4\Symlib.dll MOD - [2008-08-28 17:47:50 | 002,748,416 | ---- | M] () -- C:\Program Files\Adobe\Adobe Bridge CS4\libmysqld.dll MOD - [2007-08-14 14:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll MOD - [2007-07-12 14:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll MOD - [2007-07-12 14:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll MOD - [2003-05-19 20:24:40 | 000,119,808 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-06-18 20:45:39 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-06-13 00:37:17 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2012-05-15 12:26:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-05-15 02:21:40 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-05-05 12:56:32 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-03-23 14:25:24 | 000,087,040 | ---- | M] () [Auto | Running] -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service) SRV - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2012-02-15 13:30:18 | 000,158,856 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-01-18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [Disabled | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion) SRV - [2011-02-23 07:59:00 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe -- (mi-raysat_3dsmax2012_32) SRV - [2009-11-08 22:45:50 | 000,288,112 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -- (Adobe Version Cue CS4) SRV - [2009-07-03 00:22:32 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service) SRV - [2008-01-21 04:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008-01-21 04:32:50 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008-01-21 04:32:50 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2006-11-02 20:40:12 | 000,174,656 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PSIService.exe -- (ProtexisLicensing) SRV - [2002-03-22 02:07:00 | 000,114,688 | ---- | M] () [Auto | Running] -- C:\Windows\System32\wintab32.exe -- (Wintab32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\tosrfusb.sys -- (Tosrfusb) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\TosRfSnd.sys -- (TosRfSnd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\tosrfnds.sys -- (tosrfnds) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Tosrfhid.sys -- (Tosrfhid) DRV - File not found [Kernel | System | Stopped] -- System32\Drivers\tosrfcom.sys -- (Tosrfcom) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\tosrfbnp.sys -- (tosrfbnp) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\tosrfbd.sys -- (Tosrfbd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\tosporte.sys -- (tosporte) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\Toshidpt.sys -- (toshidpt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - [2012-05-15 12:26:00 | 011,354,944 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2012-03-07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012-03-07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012-03-07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2012-03-07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012-03-07 01:01:48 | 000,057,688 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2012-03-07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012-02-23 18:11:24 | 000,024,408 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd) DRV - [2010-11-02 16:07:54 | 000,010,752 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacmoumonitor.sys -- (wacmoumonitor) DRV - [2010-10-25 10:59:32 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacommousefilter.sys -- (wacommousefilter) DRV - [2010-10-25 10:59:28 | 000,014,120 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacomvhid.sys -- (wacomvhid) DRV - [2010-08-16 16:31:26 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdrvio.sys -- (pwdrvio) DRV - [2010-08-16 16:31:22 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdspio.sys -- (pwdspio) DRV - [2010-06-23 10:23:44 | 000,023,040 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\htcnprot.sys -- (htcnprot) DRV - [2009-06-10 00:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32) DRV - [2009-04-11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2009-03-29 10:41:38 | 000,715,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd) DRV - [2009-03-25 17:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdm.sys -- (s1018mdm) DRV - [2009-03-25 17:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM) DRV - [2009-03-25 17:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM) DRV - [2009-03-25 17:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018obex.sys -- (s1018obex) DRV - [2009-03-25 17:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM) DRV - [2009-03-25 17:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS) DRV - [2009-03-25 17:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s1018mdfl.sys -- (s1018mdfl) DRV - [2009-01-19 11:47:21 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv) DRV - [2008-11-02 10:44:10 | 000,056,572 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2008-09-24 13:45:54 | 000,022,368 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc) DRV - [2008-09-24 13:45:54 | 000,010,976 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt) DRV - [2008-01-25 10:46:40 | 000,106,496 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2006-05-11 18:14:40 | 000,014,416 | ---- | M] (Portrait Displays, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\pdihwctl.sys -- (PDIHWCTL) DRV - [2005-07-28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\hardlock.sys -- (Hardlock) DRV - [2004-05-07 13:02:08 | 000,044,344 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\EyeOneDp.sys -- (eyeonedp) DRV - [2002-03-22 02:07:00 | 000,024,064 | ---- | M] (LCS/Telegraphics) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w2acehid.sys -- (W2acehid) DRV - [2002-03-22 02:07:00 | 000,012,800 | ---- | M] (LCS/Telegraphics) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wtcls2k.sys -- (Wtcls2k) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.mozilla.com/pl/firefox/customize/" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@kontakt.wp.pl/WPMSGPlugin,version=1.0.1: C:\Program Files\Spik\mozilla\npwpk.dll ( ) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll (Sony Media Software and Services Inc) FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10: C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.) FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.) FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Palik\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Palik\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-03-25 07:46:22 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-18 20:45:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-04-18 14:35:05 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 13.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012-07-04 20:55:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2011-02-19 18:47:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Palik\AppData\Roaming\mozilla\Extensions [2011-02-19 18:47:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Palik\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2010-08-25 18:24:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Palik\AppData\Roaming\mozilla\Extensions\songbird@songbirdnest.com [2012-07-08 12:30:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Palik\AppData\Roaming\mozilla\Firefox\Profiles\6zzpnp0x.default\extensions [2012-07-08 12:28:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-03-25 07:46:22 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF File not found (No name found) -- C:\PROGRAM FILES\WEB ASSISTANT\FIREFOX [2012-05-13 23:26:48 | 000,210,138 | ---- | M] () (No name found) -- C:\USERS\PALIK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6ZZPNP0X.DEFAULT\EXTENSIONS\{F13B157F-B174-47E7-A34D-4815DDFDFEB8}.XPI File not found (No name found) -- C:\USERS\PALIK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6ZZPNP0X.DEFAULT\EXTENSIONS\FFXTLBR@INCREDIBAR.COM [2009-06-25 02:12:39 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2012-06-18 20:45:39 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2009-04-01 17:12:28 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll [2009-01-28 20:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\mozilla firefox\plugins\npOggX.dll [2011-12-09 19:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-02-28 01:58:54 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-02-28 01:58:54 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-02-28 01:58:54 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-02-28 01:58:54 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-02-28 01:58:54 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-02-28 01:58:54 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Palik\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Palik\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Palik\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll CHR - plugin: Java Deployment Toolkit 7.0.40.255 (Enabled) = C:\Windows\system32\npDeployJava1.dll CHR - plugin: GanymedeNet.Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll CHR - plugin: Ogg Player Gecko Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npOggX.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll CHR - plugin: (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll CHR - plugin: Media Go Detector (Enabled) = C:\Program Files\Sony\Media Go\npmediago.dll CHR - plugin: Spik support plugin (Enabled) = C:\Program Files\Spik\mozilla\npwpk.dll CHR - plugin: WacomTabletPlugin (Enabled) = C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll CHR - plugin: Wacom Dynamic Link Library (Enabled) = C:\Program Files\TabletPlugins\npwacom.dll CHR - plugin: QUAKE LIVE (Enabled) = C:\ProgramData\id Software\QuakeLive\npquakezero.dll CHR - plugin: Google Update (Enabled) = C:\Users\Palik\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - Extension: Angry Birds = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\ CHR - Extension: Planeto Quiz = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\caekfgjhgmkgdhbiaikgdbpldepnkchg\1.0.5_0\ CHR - Extension: Chris Delbuck = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\elgfababjopgjalkgbfndlempbfdiecf\2_0\ CHR - Extension: WeatherByte = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlgbglmmkibkhhbnhegkokegdodlgfe\1.0.3_0\ CHR - Extension: One tsp. = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlcdnnjdopcaklmkgfligadjfcgieeid\1.0_0\ CHR - Extension: avast! WebRep = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\ CHR - Extension: The Fancy Pants Adventure: World 2 = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk\14_0\ CHR - Extension: Poppit = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\2.2_0\ CHR - Extension: Marble Hop = C:\Users\Palik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcmlfjpbnfnplhflmkkjelhohpggdelf\3.7_0\ O1 HOSTS File: ([2012-05-28 22:06:48 | 000,000,060 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 activate.adobe.com O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found. O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (MediaBar) - {EE9A4208-64EC-11DE-8440-204256D89593} - C:\PROGRA~1\SHAREA~1\MediaBar\ToolBar\ShareazaMediabarDx.dll File not found O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Palik\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (MediaBar) - {EE9A4208-64EC-11DE-8440-204256D89593} - C:\PROGRA~1\SHAREA~1\MediaBar\ToolBar\ShareazaMediabarDx.dll File not found O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKCU\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [AdobeBridge] C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe (Adobe Systems, Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 91.195.232.110 91.195.232.126 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F022487A-6F21-4C44-BD1D-A7EBDFD0A04B}: DhcpNameServer = 91.195.232.110 91.195.232.126 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\wpmsg {2E0AC5A0-3597-11D6-B3ED-0001021DC1C3} - C:\Program Files\Spik\url_wpmsg.dll () O20 - AppInit_DLLs: (C:\PROGRA~1\SHAREA~1\MediaBar\Datamngr\datamngr.dll) - C:\Program Files\Shareaza Applications\MediaBar\Datamngr\datamngr.dll (Discordia, LTD) O20 - AppInit_DLLs: (C:\PROGRA~1\SHAREA~1\MediaBar\Datamngr\IEBHO.dll) - C:\Program Files\Shareaza Applications\MediaBar\Datamngr\IEBHO.dll (Discordia, LTD) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: D:\wallpaper\the_spring_is_comimg_wallpaper.jpg O24 - Desktop BackupWallPaper: D:\wallpaper\the_spring_is_comimg_wallpaper.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-06-12 23:59:06 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2011-07-11 22:08:44 | 000,019,533 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2009-02-06 19:44:49 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-08 11:55:02 | 000,000,000 | ---D | C] -- C:\_OTL [2012-07-08 02:29:58 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Palik\Desktop\OTL.exe [2012-07-03 11:46:35 | 000,000,000 | ---D | C] -- C:\Users\Palik\AppData\Roaming\SendSpace [2012-07-03 11:44:34 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate [2012-06-25 23:46:30 | 000,000,000 | ---D | C] -- C:\Users\Palik\Desktop\ProgEnergy-Nothing EP 2012 [2012-06-24 20:03:27 | 000,000,000 | ---D | C] -- C:\Users\Palik\AppData\Roaming\aerix [2012-06-21 14:00:09 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2012-06-21 14:00:09 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2012-06-21 13:59:25 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll [2012-06-21 13:59:25 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll [2012-06-21 13:59:25 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll [2012-06-21 13:59:10 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2012-06-21 13:59:10 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2012-06-15 12:51:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X3 [2012-06-14 12:59:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Axara [2012-06-14 12:59:09 | 000,000,000 | ---D | C] -- C:\Users\Palik\AppData\Roaming\Axara [2012-06-14 12:58:21 | 000,061,440 | ---- | C] (AxaraMedia.com) -- C:\Windows\System32\mslvddsfilter.ax [2012-06-14 12:58:19 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll [2012-06-14 12:58:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Axara [2012-06-14 12:58:17 | 000,000,000 | ---D | C] -- C:\Program Files\Axara [2012-06-14 12:57:49 | 000,261,632 | ---- | C] (MainConcept) -- C:\Windows\System32\mcdvd_32.dll [2012-06-14 12:57:48 | 000,221,215 | ---- | C] (DivXNetworks, Inc.) -- C:\Windows\System32\divxdec.ax [2012-06-14 12:57:48 | 000,098,304 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\L3CODECX.AX [2012-06-14 12:57:48 | 000,082,944 | ---- | C] (Voxware, Inc.) -- C:\Windows\System32\vct3216.acm [2012-06-14 12:57:48 | 000,038,912 | ---- | C] (NCT Company) -- C:\Windows\System32\alf2cd.acm [2012-06-14 12:57:48 | 000,013,239 | ---- | C] (SHARP Corporation) -- C:\Windows\System32\Scg726.acm [2012-06-13 21:01:20 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012-06-13 21:01:18 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012-06-13 21:01:18 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012-06-13 21:01:17 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012-06-13 21:01:16 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012-06-13 21:01:16 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012-06-13 21:01:14 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012-06-13 18:19:03 | 002,045,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012-06-13 02:23:20 | 000,000,000 | ---D | C] -- C:\Users\Palik\AppData\Local\Autodesk [2012-06-13 00:37:20 | 000,000,000 | ---D | C] -- C:\Users\Palik\Documents\Inventor Server x86 Autodesk 3ds Max 2012 32-bit - English [2012-06-13 00:33:17 | 000,000,000 | ---D | C] -- C:\Users\Palik\Documents\3dsMax [2012-06-13 00:31:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk [2012-06-13 00:31:20 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk [2012-06-13 00:26:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared [2012-06-13 00:26:13 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2012-06-13 00:26:13 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2012-06-13 00:26:12 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll [2012-06-13 00:26:12 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll [2012-06-13 00:26:12 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll [2012-06-13 00:26:12 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll [2012-06-13 00:26:12 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2012-06-13 00:26:11 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll [2012-06-13 00:05:23 | 000,000,000 | ---D | C] -- C:\Users\Palik\AppData\Roaming\Autodesk [2012-06-13 00:05:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk [2012-06-12 23:59:06 | 000,000,000 | ---D | C] -- C:\Autodesk [2010-04-09 08:46:04 | 007,241,176 | ---- | C] (IPS Przedsiębiorstwo Informatyczne ) -- C:\Users\Palik\pity2009ngsetup_pitpl.exe [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-08 12:40:17 | 009,437,184 | -HS- | M] () -- C:\Users\Palik\NTUSER.DAT [2012-07-08 12:39:26 | 001,606,800 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2012-07-08 12:39:26 | 000,711,470 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2012-07-08 12:39:26 | 000,631,438 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012-07-08 12:39:26 | 000,149,456 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2012-07-08 12:39:26 | 000,118,064 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012-07-08 12:36:49 | 000,054,156 | -H-- | M] () -- C:\Windows\QTFont.qfn [2012-07-08 12:33:12 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012-07-08 12:33:11 | 008,405,015 | ---- | M] () -- C:\Windows\TempFile [2012-07-08 12:33:11 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012-07-08 12:33:03 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2012-07-08 12:32:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-07-08 12:31:27 | 006,291,456 | -H-- | M] () -- C:\Users\Palik\AppData\Local\IconCache.db [2012-07-08 12:31:27 | 000,524,288 | -HS- | M] () -- C:\Users\Palik\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms [2012-07-08 12:31:27 | 000,065,536 | -HS- | M] () -- C:\Users\Palik\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf [2012-07-08 12:29:57 | 000,618,655 | ---- | M] () -- C:\Users\Palik\Desktop\adwcleaner.exe [2012-07-08 12:23:00 | 000,000,270 | ---- | M] () -- C:\Windows\tasks\Sprawdź aktualizacje paska narzędzi Windows Live Toolbar.job [2012-07-08 12:22:08 | 000,001,409 | ---- | M] () -- C:\Windows\QTFont.for [2012-07-08 09:52:04 | 000,001,356 | ---- | M] () -- C:\Users\Palik\AppData\Local\d3d9caps.dat [2012-07-08 02:45:01 | 000,124,968 | ---- | M] () -- C:\Users\Palik\AppData\Local\GDIPFONTCACHEV1.DAT [2012-07-08 02:23:18 | 002,353,952 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-08 02:18:42 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Palik\Desktop\OTL.exe [2012-07-08 02:01:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-334412001-3445786627-2903519504-1000UA.job [2012-07-08 01:59:24 | 262,113,378 | ---- | M] () -- C:\Windows\MEMORY.DMP [2012-07-07 17:56:15 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-07 14:01:00 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-334412001-3445786627-2903519504-1000Core.job [2012-07-05 23:51:03 | 000,278,572 | ---- | M] () -- C:\Users\Palik\Desktop\DSC02748.jpg [2012-07-03 11:24:54 | 000,206,848 | ---- | M] () -- C:\Users\Palik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-02 23:39:27 | 000,000,219 | ---- | M] () -- C:\Windows\System32\lsprst7.tgz [2012-07-02 23:39:27 | 000,000,205 | ---- | M] () -- C:\Windows\System32\lsprst7.dll [2012-07-02 23:39:27 | 000,000,087 | ---- | M] () -- C:\Windows\System32\ssprs.tgz [2012-07-02 23:39:27 | 000,000,073 | ---- | M] () -- C:\Windows\System32\ssprs.dll [2012-07-02 23:39:27 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI [2012-06-27 22:21:19 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini [2012-06-27 18:12:08 | 005,184,629 | ---- | M] () -- C:\Users\Palik\Desktop\Dress-Zla_kobieta.mp3 [2012-06-26 18:43:27 | 000,002,828 | -HS- | M] () -- C:\Windows\System32\KGyGaAvL.sys [2012-06-26 16:40:28 | 000,174,311 | ---- | M] () -- C:\Users\Palik\Desktop\strawberry.gif [2012-06-26 16:39:36 | 000,324,630 | ---- | M] () -- C:\Users\Palik\Desktop\strawberry-with-plants-scenery-324630.jpg [2012-06-20 19:07:12 | 023,456,821 | ---- | M] () -- C:\Users\Palik\Desktop\Agnieszka Paliwoda.rar [2012-06-13 00:36:37 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk 3ds Max 2012 32-bit - English.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-08 12:31:27 | 006,291,456 | -H-- | C] () -- C:\Users\Palik\AppData\Local\IconCache.db [2012-07-08 12:29:57 | 000,618,655 | ---- | C] () -- C:\Users\Palik\Desktop\adwcleaner.exe [2012-07-08 12:22:08 | 000,054,156 | -H-- | C] () -- C:\Windows\QTFont.qfn [2012-07-08 12:22:08 | 000,001,409 | ---- | C] () -- C:\Windows\QTFont.for [2012-07-05 23:51:02 | 000,278,572 | ---- | C] () -- C:\Users\Palik\Desktop\DSC02748.jpg [2012-06-26 16:40:29 | 000,174,311 | ---- | C] () -- C:\Users\Palik\Desktop\strawberry.gif [2012-06-26 16:39:40 | 000,324,630 | ---- | C] () -- C:\Users\Palik\Desktop\strawberry-with-plants-scenery-324630.jpg [2012-06-20 19:06:21 | 023,456,821 | ---- | C] () -- C:\Users\Palik\Desktop\Agnieszka Paliwoda.rar [2012-06-14 12:57:48 | 000,156,910 | ---- | C] () -- C:\Windows\WMSysPr8.prx [2012-06-13 00:36:37 | 000,001,887 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk 3ds Max 2012 32-bit - English.lnk [2012-05-29 19:53:19 | 000,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll [2012-05-29 13:44:45 | 000,000,073 | ---- | C] () -- C:\Windows\System32\ssprs.dll [2012-05-15 02:21:50 | 000,423,744 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe [2012-05-13 09:46:22 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2012-04-12 15:19:36 | 000,001,356 | ---- | C] () -- C:\Users\Palik\AppData\Local\d3d9caps.dat [2012-01-11 00:46:20 | 005,804,520 | ---- | C] () -- C:\Users\Palik\AppData\Local\PaintNET.raw [2011-11-11 13:14:20 | 000,001,067 | ---- | C] () -- C:\Users\Palik\no-8-projekt.wfprf [2011-11-11 13:08:58 | 000,001,067 | ---- | C] () -- C:\Users\Palik\no8-ustawienia.wfprf [2011-10-08 09:12:08 | 001,606,800 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI [2011-09-14 15:22:32 | 000,000,008 | RHS- | C] () -- C:\Windows\System32\B8C86027F0.sys [2011-09-14 15:22:15 | 000,000,008 | RHS- | C] () -- C:\Windows\System32\EF62BDCB55.sys [2011-09-12 21:22:49 | 000,002,828 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys [2011-07-16 06:38:47 | 000,000,016 | ---- | C] () -- C:\Windows\furry.ini [2011-05-26 22:33:20 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2011-05-25 21:38:09 | 000,000,745 | ---- | C] () -- C:\Windows\WINTAB.INI [2011-05-25 21:38:00 | 000,114,688 | ---- | C] () -- C:\Windows\System32\wintab32.exe [2011-04-26 11:31:14 | 000,240,851 | ---- | C] () -- C:\Users\Palik\PIT-37(16)_v1-0aga.pdf [2011-04-26 11:17:11 | 000,240,718 | ---- | C] () -- C:\Users\Palik\PIT-37(16)_v1-0.pdf [2011-03-17 13:43:33 | 000,044,344 | ---- | C] () -- C:\Windows\System32\drivers\EyeOneDp.sys [2011-03-02 23:46:07 | 000,725,005 | ---- | C] () -- C:\Windows\unins000.exe [2011-03-02 23:46:07 | 000,161,084 | ---- | C] () -- C:\Windows\unins000.dat [2011-02-21 23:44:47 | 000,000,608 | ---- | C] () -- C:\Users\Palik\stopka.html [2011-02-19 18:47:14 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2011-02-03 23:57:57 | 000,725,064 | ---- | C] () -- C:\Windows\System32\pwNative.exe [2011-02-03 23:57:56 | 000,016,472 | ---- | C] () -- C:\Windows\System32\pwdrvio.sys [2011-02-03 23:57:46 | 000,011,104 | ---- | C] () -- C:\Windows\System32\pwdspio.sys [2011-01-30 22:33:45 | 001,044,110 | ---- | C] () -- C:\Users\Palik\znak.ai [2010-11-17 20:45:06 | 003,601,168 | ---- | C] () -- C:\Users\Palik\P.O.E - nie odejde stad.mp3 [2010-08-29 17:58:27 | 000,000,391 | ---- | C] () -- C:\Windows\COVERE~1.INI [2010-08-20 08:43:19 | 000,023,190 | ---- | C] () -- C:\Windows\hpqins15.dat [2010-04-28 00:34:13 | 001,275,097 | ---- | C] () -- C:\Users\Palik\Aga.PDF [2010-04-28 00:29:56 | 003,491,472 | ---- | C] () -- C:\Users\Palik\tequila sunrise.mp3 [2010-04-28 00:26:41 | 002,623,829 | ---- | C] () -- C:\Users\Palik\Tequila.mp3 [2010-04-26 18:52:31 | 001,275,695 | ---- | C] () -- C:\Users\Palik\rozliczenie_PIT.PDF [2010-03-25 10:05:18 | 003,882,453 | ---- | C] () -- C:\Users\Palik\rufus wainwright - hallelujah karaoke.mp3 [2010-03-25 10:05:10 | 000,000,175 | ---- | C] () -- C:\Users\Palik\pobieresz.html [2010-03-22 13:14:43 | 000,275,954 | ---- | C] () -- C:\Users\Palik\chase.jpg [2010-03-17 14:53:04 | 000,024,038 | ---- | C] () -- C:\Users\Palik\wezwanie.odt [2010-03-17 14:39:02 | 000,148,184 | ---- | C] () -- C:\Users\Palik\font.jpg [2010-03-12 15:54:22 | 034,167,379 | ---- | C] () -- C:\Users\Palik\wojciech_paliwoda_portfolio.pdf [2010-03-12 00:52:02 | 000,001,249 | ---- | C] () -- C:\Users\Palik\http___securesignup.net_pdf.php_u=a000b_5238023&p=G00dster&sql=sql103.000a.biz&webroot=&domain=000a.biz&vhost=designzone.000a.biz&panel=http___cpanel.000a.pdf [2010-02-14 11:58:34 | 017,638,968 | ---- | C] () -- C:\Users\Palik\VIDEO0010.mp4 [2010-02-12 08:37:22 | 023,949,312 | ---- | C] () -- C:\Users\Palik\Export20090729-004_005.mpg [2010-01-27 18:04:22 | 000,123,365 | ---- | C] () -- C:\Users\Palik\CENNIK 2010.pdf [2009-08-21 17:07:23 | 000,008,402 | ---- | C] () -- C:\Users\Palik\potwierdzenie.pdf [2009-03-10 12:24:13 | 000,002,568 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2009-02-28 22:20:48 | 000,206,848 | ---- | C] () -- C:\Users\Palik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-02-28 16:47:44 | 000,124,968 | ---- | C] () -- C:\Users\Palik\AppData\Local\GDIPFONTCACHEV1.DAT [2009-02-28 16:47:22 | 009,437,184 | -HS- | C] () -- C:\Users\Palik\NTUSER.DAT [2009-02-28 16:47:22 | 000,524,288 | -HS- | C] () -- C:\Users\Palik\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms [2009-02-28 16:47:22 | 000,524,288 | -HS- | C] () -- C:\Users\Palik\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms [2009-02-28 16:47:22 | 000,065,536 | -HS- | C] () -- C:\Users\Palik\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf [2009-02-28 16:47:22 | 000,000,020 | -HS- | C] () -- C:\Users\Palik\ntuser.ini [color=#E56717]========== LOP Check ==========[/color] [2012-06-24 20:03:27 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\aerix [2012-06-13 02:28:34 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Autodesk [2012-06-14 12:59:09 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Axara [2010-04-29 19:08:27 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1 [2011-02-04 18:16:51 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\eMule [2012-07-04 23:40:37 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\FileZilla [2012-07-07 00:58:42 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\foobar2000 [2011-12-06 23:20:55 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\FreeHDConverter [2009-09-22 12:45:04 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\GanymedeNet [2009-03-01 21:47:56 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\GHISLER [2011-03-17 13:52:56 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\GretagMacbeth [2012-04-24 17:15:48 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\HTC [2012-04-24 16:47:50 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1 [2009-07-11 14:22:11 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Interactive Studios [2011-08-09 20:48:56 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\ipla [2009-03-26 00:34:38 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Leadertech [2009-08-16 01:13:06 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Nowe Gadu-Gadu [2009-09-28 17:55:54 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\OpenOffice.org [2011-12-29 22:58:03 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Opera [2010-10-20 21:54:31 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\PrintShop Mail [2011-03-25 20:03:53 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\RDRM [2012-07-03 11:46:35 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\SendSpace [2009-07-11 14:40:09 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Soldat [2010-08-25 18:24:32 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Songbird2 [2011-05-28 15:39:52 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Sony [2011-05-28 15:35:10 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Sony Setup [2010-12-23 11:04:25 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Spik [2011-02-21 23:25:38 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Thinstall [2011-02-19 18:47:13 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Thunderbird [2012-02-10 12:16:05 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Tlen.pl [2011-07-24 20:14:13 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\Toshiba [2012-06-14 18:40:23 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\uTorrent [2011-03-17 19:45:52 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\WD [2010-03-08 14:19:55 | 000,000,000 | ---D | M] -- C:\Users\Palik\AppData\Roaming\X-Chat 2 [2012-07-08 12:31:30 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012-07-08 12:23:00 | 000,000,270 | ---- | M] () -- C:\Windows\Tasks\Sprawdź aktualizacje paska narzędzi Windows Live Toolbar.job [color=#E56717]========== Purity Check ==========[/color] < End of report >