OTL logfile created on: 7/17/2012 3:08:42 AM - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = D:\ 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000409 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 8.00 Gb Total Physical Memory | 7.01 Gb Available Physical Memory | 87.60% Memory free 25.57 Gb Paging File | 24.63 Gb Available in Paging File | 96.29% Paging File free Paging file location(s): c:\pagefile.sys 18000 20000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 458.95 Gb Total Space | 49.48 Gb Free Space | 10.78% Space Free | Partition Type: NTFS Drive D: | 459.46 Gb Total Space | 70.94 Gb Free Space | 15.44% Space Free | Partition Type: NTFS Computer Name: KAROL-PC | User Name: Karol | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012/07/17 03:07:10 | 000,596,480 | ---- | M] (OldTimer Tools) -- D:\OTL.exe PRC - [2012/07/14 04:14:57 | 001,536,712 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe PRC - [2012/04/21 03:16:21 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012/07/14 04:14:56 | 009,465,032 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll MOD - [2012/04/21 03:16:53 | 001,952,696 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2010/01/30 03:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2010/07/13 23:26:12 | 000,719,216 | ---- | M] (Wacom Technology, Corp.) [Auto | Stopped] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen) SRV:[b]64bit:[/b] - [2010/07/13 23:26:08 | 007,329,648 | ---- | M] (Wacom Technology, Corp.) [Auto | Stopped] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen) SRV:[b]64bit:[/b] - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009/07/04 03:47:12 | 000,240,160 | ---- | M] (Acer) [Auto | Stopped] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service) SRV:[b]64bit:[/b] - [2009/06/15 11:10:00 | 000,382,976 | ---- | M] (Marvell) [Auto | Stopped] -- C:\Windows\SysNative\yk62x64.dll -- (yksvc) SRV - [2012/07/10 19:50:39 | 004,419,392 | ---- | M] () [Auto | Stopped] -- c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll -- (Akamai) SRV - [2012/06/27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- D:\Programy\Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012/04/21 03:16:42 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012/03/23 10:19:13 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2011/07/07 19:31:08 | 000,195,336 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc) SRV - [2011/06/15 17:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate) SRV - [2011/01/11 14:09:23 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- D:\Programy\Avast\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- D:\Programy\Avast\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Stopped] -- D:\Programy\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2010/08/03 00:11:31 | 003,732,680 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc) SRV - [2010/07/09 16:09:52 | 000,248,936 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/02/19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009/09/10 15:42:46 | 000,305,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe -- (MWLService) SRV - [2009/08/28 11:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe -- (Greg_Service) SRV - [2009/08/25 19:38:06 | 000,935,208 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2009/08/13 00:04:44 | 000,062,208 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2007/05/31 17:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2007/05/31 17:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2006/10/23 14:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\aol\acs\AOLacsd.exe -- (AOL ACS) SRV - [2003/09/14 22:08:14 | 002,928,700 | ---- | M] () [Auto | Stopped] -- c:\usr/MYSQL/bin/mysqld.exe -- (MySql) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2012/02/22 12:34:36 | 000,028,160 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple) DRV:[b]64bit:[/b] - [2012/01/11 08:11:20 | 000,034,304 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam) DRV:[b]64bit:[/b] - [2011/09/03 18:35:18 | 000,314,016 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:[b]64bit:[/b] - [2011/09/03 18:35:17 | 000,043,680 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:[b]64bit:[/b] - [2010/09/07 16:52:29 | 000,051,280 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi) DRV:[b]64bit:[/b] - [2010/09/07 16:52:09 | 000,121,936 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP) DRV:[b]64bit:[/b] - [2010/09/07 16:47:49 | 000,028,752 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr) DRV:[b]64bit:[/b] - [2010/09/07 16:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt) DRV:[b]64bit:[/b] - [2010/09/07 16:47:10 | 000,020,048 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk) DRV:[b]64bit:[/b] - [2010/07/24 18:52:33 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2010/05/19 23:52:38 | 000,018,288 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor) DRV:[b]64bit:[/b] - [2009/10/07 09:13:34 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009/10/07 09:13:34 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009/09/22 01:29:22 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid) DRV:[b]64bit:[/b] - [2009/08/18 16:20:00 | 000,180,280 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt) DRV:[b]64bit:[/b] - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009/07/14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx) DRV:[b]64bit:[/b] - [2009/07/14 02:09:15 | 000,145,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\rmcast.sys -- (RMCAST) DRV:[b]64bit:[/b] - [2009/07/14 02:09:10 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\loop.sys -- (msloop) DRV:[b]64bit:[/b] - [2009/07/14 02:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc) DRV:[b]64bit:[/b] - [2009/07/13 23:59:33 | 005,020,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:[b]64bit:[/b] - [2009/06/15 11:10:00 | 000,393,216 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:[b]64bit:[/b] - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009/06/02 13:15:30 | 000,060,464 | ---- | M] (Egis Technology Inc.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk) DRV:[b]64bit:[/b] - [2009/06/02 13:15:30 | 000,022,576 | ---- | M] (Egis Technology Inc.) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter) DRV:[b]64bit:[/b] - [2009/06/02 13:15:30 | 000,020,016 | ---- | M] (Egis Technology Inc.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ) DRV:[b]64bit:[/b] - [2009/05/06 01:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr) DRV:[b]64bit:[/b] - [2009/05/06 01:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper) DRV:[b]64bit:[/b] - [2009/05/04 18:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO) DRV:[b]64bit:[/b] - [2009/03/18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV:[b]64bit:[/b] - [2009/03/12 15:37:00 | 000,106,040 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr) DRV:[b]64bit:[/b] - [2008/09/26 18:02:36 | 000,115,328 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard) DRV:[b]64bit:[/b] - [2007/10/12 02:00:22 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64) DRV:[b]64bit:[/b] - [2007/10/12 01:56:34 | 000,582,680 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LV561V64.sys -- (PID_0928) Logitech QuickCam Express(PID_0928) DRV:[b]64bit:[/b] - [2007/02/16 21:12:36 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter) DRV:[b]64bit:[/b] - [2006/11/30 00:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wanatw64.sys -- (wanatw) WAN Miniport (ATW) DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2009/04/06 10:08:04 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&m=aspire_m5300&r=17360710qn069741548l5yj481q338 IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&m=aspire_m5300&r=17360710qn069741548l5yj481q338 IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&m=aspire_m5300&r=17360710qn069741548l5yj481q338 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&m=aspire_m5300&r=17360710qn069741548l5yj481q338 IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms} IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&m=aspire_m5300&r=17360710qn069741548l5yj481q338 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2790392 IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_enPL389 IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms} IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392 IE - HKCU\..\SearchScopes\{D897A229-E385-4115-B2E8-D84EF6422D11}: "URL" = http://myclearsearch.com/?prt=Guppymcs&clid=2210ee0fa9b341e79344d98daf7f8d21&Keywords={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1:9421; [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Yahoo-MyClearSearch" FF - prefs.js..browser.search.defaultenginename: "Web Search" FF - prefs.js..browser.search.defaultthis.engineName: "BitTorrentBar Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2790392&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.order.1: "Web Search" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.selectedEngineURL: "http://myclearsearch.com/?tmp=toolbar_MyClearSearch_results&prt=Guppymcs01ff&clid=2210ee0fa9b341e79344d98daf7f8d21&subid=&Keywords={searchTerms}" FF - prefs.js..browser.startup.homepage: "http://igoogle.pl/" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.14.0.100010 FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0 FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2790392&SearchSource=2&q=" FF - prefs.js..network.proxy.type: 0 FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_265.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll () FF - HKLM\Software\MozillaPlugins\@ahnlab.com/asp/npaosmgr.1: C:\Program Files (x86)\AhnLab\ASP\Components\aosmgr\conflict_221\npaosmgr.dll (AhnLab, Inc.) FF - HKLM\Software\MozillaPlugins\@ahnlab.com/asp/npmkd25aos: C:\Program Files (x86)\AhnLab\ASP\MyKeyDefense 2.5\npmkd25aos.dll (AhnLab, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\3.0.40624.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon) FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll () FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.4: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) FF - HKCU\Software\MozillaPlugins\@ahnlab.com/asp/npmkd25aos: C:\Program Files (x86)\AhnLab\ASP\MyKeyDefense 2.5\npmkd25aos.dll (AhnLab, Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Karol\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/05/02 15:58:31 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/05/02 15:58:30 | 000,000,000 | ---D | M] [2011/08/31 22:02:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Karol\AppData\Roaming\Mozilla\Extensions [2012/07/10 17:33:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\extensions [2012/05/31 09:24:48 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} [2011/08/31 22:02:08 | 000,000,000 | ---D | M] (MediaBar) -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} [2011/03/29 21:37:46 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\extensions\cacaoweb@cacaoweb.org [2012/05/25 00:13:46 | 000,000,000 | ---D | M] ("Ask Toolbar") -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\extensions\toolbar@ask.com [2012/04/18 00:59:52 | 000,000,929 | ---- | M] () -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\searchplugins\conduit.xml [2011/08/31 22:02:05 | 000,002,503 | ---- | M] () -- C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\z3mbd0ek.default\searchplugins\SearchResults.xml [2012/05/02 15:58:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2011/11/06 20:43:42 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012/07/10 17:33:22 | 000,413,408 | ---- | M] () (No name found) -- C:\USERS\KAROL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\Z3MBD0EK.DEFAULT\EXTENSIONS\{C45C406E-AB73-11D8-BE73-000A95BE3B12}.XPI [2012/04/21 03:18:00 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2010/07/22 20:03:26 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010/07/27 16:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll [2010/07/12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012/04/21 04:18:44 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2012/04/21 04:18:44 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2012/04/21 04:18:44 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2011/03/26 09:35:38 | 000,001,253 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\myclearsearch.xml [2012/04/21 04:18:44 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2011/08/31 22:02:05 | 000,002,503 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\SearchResults.xml [2012/04/21 04:18:44 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2012/04/21 04:18:44 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011/01/06 23:42:00 | 000,000,829 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\x64\IEBHO.dll (MusicLab, LLC) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC) O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll () O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll () O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O4:[b]64bit:[/b] - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [avast5] D:\Programy\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe () O4 - HKLM..\Run: [cjeqwxdktlludvj] C:\ProgramData\cjeqwxdk.exe () O4 - HKLM..\Run: [DATAMNGR] C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe (MusicLab, LLC) O4 - HKLM..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe () O4 - HKLM..\Run: [LogMeIn Hamachi Ui] D:\Programy\Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKCU..\Run: [cjeqwxdktlludvj] C:\ProgramData\cjeqwxdk.exe () O4 - HKCU..\Run: [Fuuwletu] C:\Users\Karol\AppData\Roaming\Qohyyt\unpi.exe () O4 - HKCU..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe (NEXON Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8:[b]64bit:[/b] - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{157A8A51-FF31-4166-A462-188EDC678F74}: DhcpNameServer = 8.8.8.8 8.8.4.4 O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-itss - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\datamngr.dll) - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\x64\datamngr.dll (MusicLab, LLC) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\IEBHO.dll) - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\x64\IEBHO.dll (MusicLab, LLC) O20 - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\datamngr.dll) - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\datamngr.dll (MusicLab, LLC) O20 - AppInit_DLLs: (C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\IEBHO.dll) - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC) O20 - AppInit_DLLs: (nmklo) - File not found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{0a61ae7f-f9d9-11e0-b8e0-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{0a61ae7f-f9d9-11e0-b8e0-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{0a61ae86-f9d9-11e0-b8e0-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{0a61ae86-f9d9-11e0-b8e0-00038a000015}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{432150f4-07c2-11e1-b9f1-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{432150f4-07c2-11e1-b9f1-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{45516e21-ff14-11e0-918e-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{45516e21-ff14-11e0-918e-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{45516e25-ff14-11e0-918e-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{45516e25-ff14-11e0-918e-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{45516e41-ff14-11e0-918e-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{45516e41-ff14-11e0-918e-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{46dbb8a5-ce35-11e0-b711-00038a000015}\Shell - "" = AutoRun O33 - MountPoints2\{46dbb8a5-ce35-11e0-b711-00038a000015}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{58931df0-9d51-11df-bfa7-90fba62ab7c8}\Shell - "" = AutoRun O33 - MountPoints2\{58931df0-9d51-11df-bfa7-90fba62ab7c8}\Shell\AutoRun\command - "" = L:\Autorun.exe O33 - MountPoints2\{93420ed4-fb0b-11df-9532-90fba62ab7c8}\Shell - "" = AutoRun O33 - MountPoints2\{93420ed4-fb0b-11df-9532-90fba62ab7c8}\Shell\AutoRun\command - "" = F:\Startme.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012/07/17 03:06:40 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Karol\Desktop\OTL.exe [2012/07/17 02:44:56 | 000,000,000 | ---D | C] -- C:\ProgramData\xwyyeklstgetkre [2012/07/16 21:55:35 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\The Walking Dead CBRs [2012/07/15 21:32:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project Zomboid [2012/07/15 21:31:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Project Zomboid [2012/07/15 21:26:23 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\ZomboidRRC2Crack [2012/07/14 02:04:43 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\pixelComic126 [2012/07/14 02:01:29 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Roaming\eSobi [2012/07/12 23:33:16 | 000,000,000 | ---D | C] -- C:\Users\Karol\Documents\NFS Most Wanted [2012/07/12 23:31:25 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\NFSMW-MINI [2012/07/12 22:26:46 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\Need For Speed Most Wanted PC DVD [2012/07/11 15:14:43 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\nfsc_patch1.4_english [2012/07/11 14:31:54 | 000,000,000 | ---D | C] -- C:\Users\Karol\Documents\NFS Carbon [2012/07/11 14:00:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Carbon PL [2012/07/11 14:00:30 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts [2012/07/10 17:30:23 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\Adobe Photoshop CS5 Extended [2012/07/10 15:43:58 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\Need For Speed Carbon + Deamon Tools pl [2012/07/10 11:55:17 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Local\Trapped Dead [2012/07/10 11:38:47 | 000,000,000 | ---D | C] -- C:\Users\Karol\Documents\Trapped Dead [2012/07/10 11:33:54 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trapped Dead [2012/07/10 00:50:45 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\Trapped Dead SKIDROW [2012/07/08 19:31:28 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\need for speed 2 [2012/07/07 13:44:08 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\WalkingDead102 [2012/07/05 21:42:35 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Roaming\PhotoScape [2012/07/05 21:42:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape [2012/07/05 21:42:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoScape [2012/07/05 21:41:31 | 018,376,624 | ---- | C] (Mooii) -- C:\Users\Karol\Desktop\PhotoScape_V3.6.2(dobreprogramy.pl).exe [2012/06/28 09:31:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2012/06/27 12:27:17 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\TS3 Store - June 2nd, 2009 [2012/06/25 16:01:50 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\Sims3_Pets_bended [2012/06/25 15:59:31 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\crack [2012/06/24 16:31:34 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\The_Sims_3_Pets-FLT [2012/06/22 15:42:58 | 000,000,000 | ---D | C] -- C:\Users\Karol\Documents\The Lord of the Rings Online [2012/06/22 15:42:58 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Local\The Lord of the Rings Online [2012/06/22 15:11:23 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Local\Turbine [2012/06/22 15:09:32 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Local\ApplicationHistory [2012/06/22 15:07:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\URTTEMP [2012/06/22 15:06:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turbine [2012/06/21 11:42:45 | 000,000,000 | ---D | C] -- C:\Users\Karol\Desktop\gta_iv_crack [2012/06/18 01:47:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam [2012/06/18 01:47:14 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Roaming\ManyCam [2012/06/18 01:47:14 | 000,000,000 | ---D | C] -- C:\Users\Karol\AppData\Local\ManyCam [2012/06/18 01:47:14 | 000,000,000 | ---D | C] -- C:\ProgramData\ManyCam [2012/06/18 01:46:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ManyCam [2011/04/22 22:00:00 | 001,654,869 | ---- | C] (Dynu Systems Inc.) -- C:\ProgramData\DynuEncrypt.dll [2009/10/19 09:45:58 | 000,036,136 | ---- | C] (Oberon Media) -- C:\ProgramData\FullRemove.exe [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012/07/17 03:06:56 | 000,795,438 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012/07/17 03:06:56 | 000,663,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012/07/17 03:06:56 | 000,125,252 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012/07/17 03:06:42 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Karol\Desktop\OTL.exe [2012/07/17 03:02:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012/07/17 03:02:11 | 2146,136,063 | -HS- | M] () -- C:\hiberfil.sys [2012/07/17 02:57:18 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012/07/17 02:57:18 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012/07/17 02:50:42 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012/07/17 02:44:58 | 000,000,051 | ---- | M] () -- C:\ProgramData\eoupxpjxpxjujom [2012/07/17 02:44:53 | 000,049,152 | ---- | M] () -- C:\ProgramData\cjeqwxdk.exe [2012/07/17 02:44:53 | 000,049,152 | ---- | M] () -- C:\Users\Karol\0.9092262267309759.exe [2012/07/17 02:44:53 | 000,049,152 | ---- | M] () -- C:\Users\Karol\0.07036185803643702.exe [2012/07/17 02:28:00 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012/07/15 21:32:00 | 000,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Project Zomboid.lnk [2012/07/15 21:28:52 | 091,780,322 | ---- | M] () -- C:\Users\Karol\Desktop\Project Zomboid 0.2.0r RC2.exe [2012/07/14 04:05:18 | 581,974,652 | ---- | M] () -- C:\Windows\MEMORY.DMP [2012/07/14 02:04:33 | 000,500,537 | ---- | M] () -- C:\Users\Karol\Desktop\pixelComic126.zip [2012/07/12 23:25:06 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\Need for Speed™ Most Wanted.lnk [2012/07/12 22:25:54 | 000,022,837 | ---- | M] () -- C:\Users\Karol\Desktop\Need_For_Speed_Most_Wanted_[DVD]_[PL][Torrenty.org].torrent [2012/07/12 21:39:11 | 007,180,710 | ---- | M] () -- C:\Users\Karol\Desktop\ActiveSync_4.5.rar [2012/07/12 21:38:24 | 000,436,919 | ---- | M] () -- C:\Users\Karol\Desktop\Spolszczenie WM 5.0 for PocketPC.zip [2012/07/12 21:37:55 | 029,083,307 | ---- | M] () -- C:\Users\Karol\Desktop\Windows_mobile_5.rar [2012/07/11 15:14:47 | 000,000,044 | ---- | M] () -- C:\Windows\nfsc_patch.ini [2012/07/11 15:12:12 | 007,557,420 | ---- | M] () -- C:\Users\Karol\Desktop\nfsc_patch1.4_english.zip [2012/07/11 13:59:20 | 000,000,764 | ---- | M] () -- C:\Users\Public\Desktop\Need for Speed™ Carbon.lnk [2012/07/10 17:29:39 | 000,020,290 | ---- | M] () -- C:\Users\Karol\Desktop\Adobe_Photoshop_CS5_Extended_[ENG]_[ Crack_100 _Working][Torrenty.org].torrent [2012/07/10 14:49:45 | 4236,160,638 | ---- | M] () -- C:\Users\Karol\Desktop\Need For Speed Carbon + Deamon Tools pl.rar [2012/07/10 12:48:55 | 000,020,497 | ---- | M] () -- C:\Users\Karol\Desktop\Need_For_Speed_Carbon_[PL]_[ iso][Torrenty.org].torrent [2012/07/10 11:33:54 | 000,000,742 | ---- | M] () -- C:\Users\Karol\Desktop\Trapped Dead.lnk [2012/07/10 00:49:21 | 000,017,959 | ---- | M] () -- C:\Users\Karol\Desktop\Trapped_Dead_[ENG]_[Skidrow][Torrenty.org].torrent [2012/07/08 19:18:07 | 000,016,111 | ---- | M] () -- C:\Users\Karol\Desktop\Need_for_Speed _Underground_2_[PL][Torrenty.org].torrent [2012/07/05 21:42:22 | 000,001,059 | ---- | M] () -- C:\Users\Karol\Application Data\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk [2012/07/05 21:42:22 | 000,001,035 | ---- | M] () -- C:\Users\Karol\Desktop\PhotoScape.lnk [2012/07/05 21:41:54 | 018,376,624 | ---- | M] (Mooii) -- C:\Users\Karol\Desktop\PhotoScape_V3.6.2(dobreprogramy.pl).exe [2012/07/05 21:35:46 | 000,220,595 | ---- | M] () -- C:\Users\Karol\Desktop\elfen-lied-22.jpg [2012/07/05 21:34:57 | 000,248,671 | ---- | M] () -- C:\Users\Karol\Desktop\elfen_lied_lucy_desktop_1600x1200_wallpaper-441248.jpg [2012/07/05 21:34:52 | 000,324,705 | ---- | M] () -- C:\Users\Karol\Desktop\elfen_lied_desktop_1024x768_wallpaper-416973.jpg [2012/06/27 12:26:19 | 000,014,539 | ---- | M] () -- C:\Users\Karol\Desktop\The_Sims_3_Store_[PL]_ drugie_miasto_-_Riverview[Torrenty.org].torrent [2012/06/25 17:13:12 | 000,002,206 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 Pokolenia.lnk [2012/06/25 16:01:38 | 000,005,385 | ---- | M] () -- C:\Users\Karol\Desktop\Sims3_Pets_bended.rar [2012/06/25 15:59:13 | 006,864,094 | ---- | M] () -- C:\Users\Karol\Desktop\crack.rar [2012/06/25 15:28:32 | 000,002,206 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 Zwierzaki.lnk [2012/06/25 02:07:54 | 000,000,002 | ---- | M] () -- C:\Users\Karol\uz.dat [2012/06/24 16:28:32 | 000,007,446 | ---- | M] () -- C:\Users\Karol\Desktop\The_Sims_3 _Zwierzaki_ 2011 _[MULTI16-PL]_[DVD9]_[ iso]_[FAIRLIGHT][Torrenty.org].torrent [2012/06/22 15:11:25 | 000,000,093 | ---- | M] () -- C:\Users\Karol\AppData\Local\fusioncache.dat [2012/06/22 15:09:19 | 000,802,946 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012/06/22 15:06:24 | 000,000,839 | ---- | M] () -- C:\Users\Karol\Desktop\The Lord of the Rings Online.lnk [2012/06/22 00:36:02 | 002,377,640 | ---- | M] () -- C:\Users\Karol\Desktop\lotrostandard.exe [2012/06/21 11:42:34 | 000,026,668 | ---- | M] () -- C:\Users\Karol\Desktop\gta_iv_crack.rar [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012/07/17 02:44:57 | 000,049,152 | ---- | C] () -- C:\ProgramData\cjeqwxdk.exe [2012/07/17 02:44:54 | 000,000,051 | ---- | C] () -- C:\ProgramData\eoupxpjxpxjujom [2012/07/17 02:44:53 | 000,049,152 | ---- | C] () -- C:\Users\Karol\0.9092262267309759.exe [2012/07/17 02:44:53 | 000,049,152 | ---- | C] () -- C:\Users\Karol\0.07036185803643702.exe [2012/07/15 21:32:00 | 000,001,994 | ---- | C] () -- C:\Users\Public\Desktop\Project Zomboid.lnk [2012/07/15 21:26:22 | 091,780,322 | ---- | C] () -- C:\Users\Karol\Desktop\Project Zomboid 0.2.0r RC2.exe [2012/07/14 04:05:18 | 581,974,652 | ---- | C] () -- C:\Windows\MEMORY.DMP [2012/07/14 02:04:32 | 000,500,537 | ---- | C] () -- C:\Users\Karol\Desktop\pixelComic126.zip [2012/07/12 23:31:23 | 000,879,008 | ---- | C] () -- C:\Users\Karol\Desktop\NFSMW-MINI.rar [2012/07/12 23:25:06 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\Need for Speed™ Most Wanted.lnk [2012/07/12 22:25:53 | 000,022,837 | ---- | C] () -- C:\Users\Karol\Desktop\Need_For_Speed_Most_Wanted_[DVD]_[PL][Torrenty.org].torrent [2012/07/12 21:39:00 | 007,180,710 | ---- | C] () -- C:\Users\Karol\Desktop\ActiveSync_4.5.rar [2012/07/12 21:38:23 | 000,436,919 | ---- | C] () -- C:\Users\Karol\Desktop\Spolszczenie WM 5.0 for PocketPC.zip [2012/07/12 21:36:57 | 029,083,307 | ---- | C] () -- C:\Users\Karol\Desktop\Windows_mobile_5.rar [2012/07/11 15:14:47 | 000,000,044 | ---- | C] () -- C:\Windows\nfsc_patch.ini [2012/07/11 15:11:59 | 007,557,420 | ---- | C] () -- C:\Users\Karol\Desktop\nfsc_patch1.4_english.zip [2012/07/11 13:59:20 | 000,000,764 | ---- | C] () -- C:\Users\Public\Desktop\Need for Speed™ Carbon.lnk [2012/07/10 17:29:37 | 000,020,290 | ---- | C] () -- C:\Users\Karol\Desktop\Adobe_Photoshop_CS5_Extended_[ENG]_[ Crack_100 _Working][Torrenty.org].torrent [2012/07/10 12:50:29 | 4236,160,638 | ---- | C] () -- C:\Users\Karol\Desktop\Need For Speed Carbon + Deamon Tools pl.rar [2012/07/10 12:48:53 | 000,020,497 | ---- | C] () -- C:\Users\Karol\Desktop\Need_For_Speed_Carbon_[PL]_[ iso][Torrenty.org].torrent [2012/07/10 11:33:54 | 000,000,742 | ---- | C] () -- C:\Users\Karol\Desktop\Trapped Dead.lnk [2012/07/10 00:49:20 | 000,017,959 | ---- | C] () -- C:\Users\Karol\Desktop\Trapped_Dead_[ENG]_[Skidrow][Torrenty.org].torrent [2012/07/08 19:18:06 | 000,016,111 | ---- | C] () -- C:\Users\Karol\Desktop\Need_for_Speed _Underground_2_[PL][Torrenty.org].torrent [2012/07/05 21:42:22 | 000,001,059 | ---- | C] () -- C:\Users\Karol\Application Data\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk [2012/07/05 21:42:22 | 000,001,035 | ---- | C] () -- C:\Users\Karol\Desktop\PhotoScape.lnk [2012/07/05 21:34:56 | 000,248,671 | ---- | C] () -- C:\Users\Karol\Desktop\elfen_lied_lucy_desktop_1600x1200_wallpaper-441248.jpg [2012/07/05 21:34:51 | 000,324,705 | ---- | C] () -- C:\Users\Karol\Desktop\elfen_lied_desktop_1024x768_wallpaper-416973.jpg [2012/07/05 21:34:45 | 000,220,595 | ---- | C] () -- C:\Users\Karol\Desktop\elfen-lied-22.jpg [2012/07/04 21:46:09 | 727,118,266 | ---- | C] () -- C:\Users\Karol\Desktop\Era.smokow.2011.PL.DVDRip.XviD-BiDA.avi [2012/06/27 12:26:17 | 000,014,539 | ---- | C] () -- C:\Users\Karol\Desktop\The_Sims_3_Store_[PL]_ drugie_miasto_-_Riverview[Torrenty.org].torrent [2012/06/25 17:13:12 | 000,002,206 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 Pokolenia.lnk [2012/06/25 16:01:37 | 000,005,385 | ---- | C] () -- C:\Users\Karol\Desktop\Sims3_Pets_bended.rar [2012/06/25 15:58:56 | 006,864,094 | ---- | C] () -- C:\Users\Karol\Desktop\crack.rar [2012/06/25 15:28:32 | 000,002,206 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 Zwierzaki.lnk [2012/06/25 02:07:54 | 000,000,002 | ---- | C] () -- C:\Users\Karol\uz.dat [2012/06/24 16:28:30 | 000,007,446 | ---- | C] () -- C:\Users\Karol\Desktop\The_Sims_3 _Zwierzaki_ 2011 _[MULTI16-PL]_[DVD9]_[ iso]_[FAIRLIGHT][Torrenty.org].torrent [2012/06/22 15:11:25 | 000,000,093 | ---- | C] () -- C:\Users\Karol\AppData\Local\fusioncache.dat [2012/06/22 15:06:24 | 000,000,839 | ---- | C] () -- C:\Users\Karol\Desktop\The Lord of the Rings Online.lnk [2012/06/22 00:36:00 | 002,377,640 | ---- | C] () -- C:\Users\Karol\Desktop\lotrostandard.exe [2012/06/21 11:42:32 | 000,026,668 | ---- | C] () -- C:\Users\Karol\Desktop\gta_iv_crack.rar [2012/04/16 10:40:18 | 000,010,870 | ---- | C] () -- C:\Users\Karol\.recently-used.xbel [2011/09/03 21:16:38 | 000,045,056 | RHS- | C] () -- C:\Windows\SysWow64\mgqih.exe [2011/08/11 15:15:42 | 000,115,912 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat [2011/07/19 03:18:58 | 000,000,523 | ---- | C] () -- C:\Windows\eReg.dat [2011/07/09 16:01:37 | 000,000,000 | ---- | C] () -- C:\Users\Karol\AppData\Local\{608F9FEA-BB09-4890-A3AC-A36028E9387B} [2011/05/31 08:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll [2011/05/31 08:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll [2011/04/02 22:49:25 | 000,802,946 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011/03/27 03:11:25 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat [2011/01/31 20:13:37 | 000,548,864 | ---- | C] () -- C:\Windows\SysWow64\JWinAPI.dll [2011/01/20 15:05:47 | 000,003,120 | ---- | C] () -- C:\Windows\SysWow64\0810be8f-b2fd-4cfc-bbc2-e45e10a7568b.dll [2010/12/27 12:08:34 | 000,000,006 | ---- | C] () -- C:\Windows\msoffice.ini [2010/12/12 12:54:05 | 000,000,132 | ---- | C] () -- C:\Users\Karol\AppData\Roaming\Preferencje Adobe CS5 dla formatu BMP [2010/12/11 12:36:27 | 000,000,056 | RHS- | C] () -- C:\Windows\SysWow64\88D2E57434.sys [2010/12/11 12:36:24 | 000,001,838 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys [2010/12/04 12:20:56 | 000,045,269 | ---- | C] () -- C:\Windows\War3Unin.dat [2010/10/09 19:33:39 | 000,000,155 | ---- | C] () -- C:\Windows\GKLauncherInfo.ini [2010/10/06 22:08:47 | 000,000,284 | ---- | C] () -- C:\Windows\vtmb.ini [2010/10/01 11:37:29 | 000,003,120 | ---- | C] () -- C:\Windows\SysWow64\6ffdbcaf-f6c1-42d3-a4a9-c7957224a70b.dll [2010/09/04 01:43:27 | 000,000,287 | ---- | C] () -- C:\Windows\game.ini [2010/08/26 22:39:46 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini [2010/08/11 16:31:02 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat [2010/07/29 21:33:32 | 000,000,888 | ---- | C] () -- C:\Windows\VPlayer.INI [2010/07/22 18:31:13 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat [2009/07/14 01:16:42 | 000,143,360 | ---- | C] () -- C:\Users\Karol\winlogon.exe [2009/07/14 01:16:42 | 000,000,036 | ---- | C] () -- C:\Users\Karol\uidsave.dat [color=#E56717]========== LOP Check ==========[/color] [2010/07/20 21:17:18 | 000,000,000 | -HSD | M] -- C:\Users\Karol\AppData\Roaming\.# [2012/06/02 18:08:13 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\.minecraft [2011/10/07 14:12:06 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\2K Sports [2012/02/23 12:24:32 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Anyplace Control 4 [2011/08/28 01:51:31 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\AutoUpdate [2012/07/17 02:48:20 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\BitTorrent [2012/03/25 11:36:53 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\cacaoweb [2012/03/22 00:38:03 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\calibre [2011/01/09 18:47:06 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\CELSYS [2009/11/18 16:31:00 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\com.gugga.radiomini [2012/04/22 15:29:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\DAEMON Tools Lite [2010/11/22 21:32:01 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Dev-Cpp [2010/10/01 11:37:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\e frontier [2011/05/15 14:19:40 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Enterbrain [2012/07/14 02:01:53 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\eSobi [2011/12/30 23:58:27 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Gadu-Gadu 10 [2010/07/17 09:46:52 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\GameConsole [2010/12/26 22:54:03 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\GetRightToGo [2012/02/23 12:42:12 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\GG Tools [2012/05/02 08:20:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\gtk-2.0 [2011/09/10 16:02:02 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Java Update Sheduler [2012/03/11 06:13:54 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Kamerzysta [2011/06/07 21:00:16 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Lionhead Studios [2011/01/15 20:43:44 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\LolClient [2012/05/24 21:00:19 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\LolClient2 [2010/10/07 15:15:28 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Magic Academy [2012/06/18 01:47:54 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\ManyCam [2012/04/01 12:35:09 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Moje pliki Bitwy o Śródziemie™ II [2012/05/02 08:20:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\My Battle for Middle-earth Files [2012/02/20 23:51:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\My Battle for Middle-earth(tm) II Files [2012/05/04 00:59:32 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Noyl [2010/10/17 23:09:58 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\OpenFM [2012/03/08 09:09:58 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\PandoraRecovery [2012/07/05 21:53:47 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\PhotoScape [2010/07/17 09:22:11 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\PlayFirst [2010/07/17 09:03:31 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\PowerCinema [2011/03/25 20:32:09 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\PunkBuster [2012/05/04 00:59:32 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Qohyyt [2012/03/25 15:40:24 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Raptr [2011/01/09 18:01:32 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Smith Micro [2010/07/19 07:07:36 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\SoftDMA [2012/01/14 17:10:27 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\SYSTEMAX Software Development [2011/04/06 16:30:18 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\The Creative Assembly [2010/12/19 23:43:39 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Tibia [2012/05/02 08:20:41 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\TS3Client [2010/08/08 08:11:34 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Ubisoft [2009/11/17 02:14:50 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Unity [2010/07/17 09:26:58 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\ViquaSoft [2011/01/07 22:45:42 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Wacom [2011/01/07 22:45:44 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1 [2011/07/14 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\WB Games [2012/05/10 15:50:35 | 000,000,000 | ---D | M] -- C:\Users\Karol\AppData\Roaming\Ybfeo [2012/06/25 12:45:14 | 000,032,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Files - Unicode (All) ==========[/color] [2010/09/28 11:50:20 | 000,000,000 | ---D | M](C:\Users\Karol\Documents\?? ???) -- C:\Users\Karol\Documents\넥슨 플러그 [2010/09/28 11:50:20 | 000,000,000 | ---D | C](C:\Users\Karol\Documents\?? ???) -- C:\Users\Karol\Documents\넥슨 플러그 [2009/11/17 19:52:46 | 000,000,000 | ---D | M](C:\Users\Karol\Documents\????) -- C:\Users\Karol\Documents\마비노기 [2009/11/17 19:52:46 | 000,000,000 | ---D | C](C:\Users\Karol\Documents\????) -- C:\Users\Karol\Documents\마비노기 [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 146 bytes -> C:\ProgramData\Temp:AB689DEA @Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:5D7E5A8F @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:93DE1838 @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:4D066AD2 @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:0B9176C0 @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:E3C56885 @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:E1F04E8D @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:4CF61E54 @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:ABE89FFE @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:444C53BA < End of report >