OTL logfile created on: 2012-08-07 10:07:48 - Run 3
OTL by OldTimer - Version 3.2.56.0     Folder = C:\Users\Artek\Downloads
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,75 Gb Total Physical Memory | 2,57 Gb Available Physical Memory | 68,53% Memory free
7,50 Gb Paging File | 6,42 Gb Available in Paging File | 85,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 48,73 Gb Total Space | 7,47 Gb Free Space | 15,34% Space Free | Partition Type: NTFS
Drive D: | 416,93 Gb Total Space | 416,61 Gb Free Space | 99,92% Space Free | Partition Type: NTFS
Drive F: | 7,26 Gb Total Space | 7,26 Gb Free Space | 100,00% Space Free | Partition Type: FAT32
 
Computer Name: ARTEK-KOMPUTER | User Name: Artek | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - File not found -- 
PRC - [2012-08-07 09:36:50 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Artek\Downloads\OTL (1).exe
PRC - [2012-08-05 15:46:46 | 000,023,552 | RHS- | M] () -- C:\Users\Artek\M-10-8754-86589-55555\windogz.exe
PRC - [2011-03-22 20:38:10 | 001,596,032 | ---- | M] (Nullsoft, Inc.) -- D:\Winamp\winamp.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-08-07 09:35:51 | 000,257,024 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\winamp.lng
MOD - [2012-08-07 09:35:51 | 000,161,792 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\vis_milk2.lng
MOD - [2012-08-07 09:35:51 | 000,087,552 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\vis_avs.lng
MOD - [2012-08-07 09:35:51 | 000,054,272 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_local.lng
MOD - [2012-08-07 09:35:51 | 000,047,616 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_disc.lng
MOD - [2012-08-07 09:35:51 | 000,046,080 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_pmp.lng
MOD - [2012-08-07 09:35:51 | 000,041,984 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_wifi.lng
MOD - [2012-08-07 09:35:51 | 000,036,864 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ombrowser.lng
MOD - [2012-08-07 09:35:51 | 000,016,896 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\out_ds.lng
MOD - [2012-08-07 09:35:51 | 000,014,848 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_wm.lng
MOD - [2012-08-07 09:35:51 | 000,014,336 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_wire.lng
MOD - [2012-08-07 09:35:51 | 000,014,336 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_online.lng
MOD - [2012-08-07 09:35:51 | 000,013,312 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_playlists.lng
MOD - [2012-08-07 09:35:51 | 000,012,800 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_plg.lng
MOD - [2012-08-07 09:35:51 | 000,011,264 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_vorbis.lng
MOD - [2012-08-07 09:35:51 | 000,010,752 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_usb.lng
MOD - [2012-08-07 09:35:51 | 000,010,752 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_android.lng
MOD - [2012-08-07 09:35:51 | 000,009,216 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_downloads.lng
MOD - [2012-08-07 09:35:51 | 000,008,704 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_history.lng
MOD - [2012-08-07 09:35:51 | 000,008,704 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_devices.lng
MOD - [2012-08-07 09:35:51 | 000,008,192 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_transcode.lng
MOD - [2012-08-07 09:35:51 | 000,007,680 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\vis_nsfs.lng
MOD - [2012-08-07 09:35:51 | 000,007,168 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\out_wave.lng
MOD - [2012-08-07 09:35:51 | 000,007,168 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_autotag.lng
MOD - [2012-08-07 09:35:51 | 000,006,656 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_ipod.lng
MOD - [2012-08-07 09:35:51 | 000,006,144 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\tagz.lng
MOD - [2012-08-07 09:35:51 | 000,006,144 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\out_disk.lng
MOD - [2012-08-07 09:35:51 | 000,005,632 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_rg.lng
MOD - [2012-08-07 09:35:51 | 000,005,632 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_wave.lng
MOD - [2012-08-07 09:35:51 | 000,005,120 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_impex.lng
MOD - [2012-08-07 09:35:51 | 000,005,120 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_bookmarks.lng
MOD - [2012-08-07 09:35:51 | 000,004,608 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_activesync.lng
MOD - [2012-08-07 09:35:51 | 000,004,096 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_p4s.lng
MOD - [2012-08-07 09:35:51 | 000,004,096 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_orb.lng
MOD - [2012-08-07 09:35:51 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\winampa.lng
MOD - [2012-08-07 09:35:51 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\pmp_njb.lng
MOD - [2012-08-07 09:35:51 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_nowplaying.lng
MOD - [2012-08-07 09:35:51 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\ml_addons.lng
MOD - [2012-08-07 09:35:51 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_swf.lng
MOD - [2012-08-07 09:35:51 | 000,003,072 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\playlist.lng
MOD - [2012-08-07 09:35:50 | 000,066,560 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\burnlib.lng
MOD - [2012-08-07 09:35:50 | 000,040,448 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_jumpex.lng
MOD - [2012-08-07 09:35:50 | 000,022,528 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_mp3.lng
MOD - [2012-08-07 09:35:50 | 000,022,016 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_ff.lng
MOD - [2012-08-07 09:35:50 | 000,021,504 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_ml.lng
MOD - [2012-08-07 09:35:50 | 000,020,992 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_midi.lng
MOD - [2012-08-07 09:35:50 | 000,018,432 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_mod.lng
MOD - [2012-08-07 09:35:50 | 000,013,312 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_cdda.lng
MOD - [2012-08-07 09:35:50 | 000,012,800 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\dsp_sps.lng
MOD - [2012-08-07 09:35:50 | 000,011,264 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_nsv.lng
MOD - [2012-08-07 09:35:50 | 000,011,264 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_hotkeys.lng
MOD - [2012-08-07 09:35:50 | 000,011,264 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\auth.lng
MOD - [2012-08-07 09:35:50 | 000,010,240 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\enc_aacplus.lng
MOD - [2012-08-07 09:35:50 | 000,007,680 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_tray.lng
MOD - [2012-08-07 09:35:50 | 000,007,168 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_dshow.lng
MOD - [2012-08-07 09:35:50 | 000,007,168 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_orgler.lng
MOD - [2012-08-07 09:35:50 | 000,007,168 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\gen_crasher.lng
MOD - [2012-08-07 09:35:50 | 000,006,144 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_flac.lng
MOD - [2012-08-07 09:35:50 | 000,006,144 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\enc_wma.lng
MOD - [2012-08-07 09:35:50 | 000,005,632 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\enc_lame.lng
MOD - [2012-08-07 09:35:50 | 000,005,120 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_avi.lng
MOD - [2012-08-07 09:35:50 | 000,004,608 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_mp4.lng
MOD - [2012-08-07 09:35:50 | 000,004,608 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_mkv.lng
MOD - [2012-08-07 09:35:50 | 000,004,096 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\enc_wav.lng
MOD - [2012-08-07 09:35:50 | 000,004,096 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\enc_flac.lng
MOD - [2012-08-07 09:35:50 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_linein.lng
MOD - [2012-08-07 09:35:50 | 000,003,584 | ---- | M] () -- C:\Users\Artek\AppData\Local\Temp\WLZA751.tmp\in_flv.lng
MOD - [2012-08-05 15:46:46 | 000,023,552 | RHS- | M] () -- C:\Users\Artek\M-10-8754-86589-55555\windogz.exe
MOD - [2012-07-31 07:36:14 | 000,442,392 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
MOD - [2012-07-31 07:36:13 | 012,235,288 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll
MOD - [2012-07-31 07:36:12 | 003,997,720 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll
MOD - [2012-07-31 07:34:45 | 000,144,424 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\avutil-51.dll
MOD - [2012-07-31 07:34:43 | 000,266,792 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\avformat-54.dll
MOD - [2012-07-31 07:34:42 | 002,480,680 | ---- | M] () -- C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\avcodec-54.dll
MOD - [2011-11-16 09:44:34 | 000,623,616 | ---- | M] () -- D:\Winamp\System\jnetlib.w5s
MOD - [2011-11-16 09:44:34 | 000,154,624 | ---- | M] () -- D:\Winamp\System\jpeg.w5s
MOD - [2011-11-16 09:44:34 | 000,103,936 | ---- | M] () -- D:\Winamp\System\png.w5s
MOD - [2011-11-16 09:44:34 | 000,090,112 | ---- | M] () -- D:\Winamp\System\xml.w5s
MOD - [2011-11-16 09:44:34 | 000,084,480 | ---- | M] () -- D:\Winamp\System\playlist.w5s
MOD - [2011-11-16 09:44:34 | 000,083,968 | ---- | M] () -- D:\Winamp\tataki.dll
MOD - [2011-11-16 09:44:34 | 000,047,616 | ---- | M] () -- D:\Winamp\zlib.dll
MOD - [2011-11-16 09:44:34 | 000,035,328 | ---- | M] () -- D:\Winamp\System\timer.w5s
MOD - [2011-11-16 09:44:34 | 000,021,504 | ---- | M] () -- D:\Winamp\System\tagz.w5s
MOD - [2011-11-16 09:44:34 | 000,013,824 | ---- | M] () -- D:\Winamp\System\primo.w5s
MOD - [2011-11-16 09:44:33 | 001,737,728 | ---- | M] () -- D:\Winamp\Plugins\gen_ff.dll
MOD - [2011-11-16 09:44:33 | 000,410,624 | ---- | M] () -- D:\Winamp\nsutil.dll
MOD - [2011-11-16 09:44:33 | 000,340,992 | ---- | M] () -- D:\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
MOD - [2011-11-16 09:44:33 | 000,313,344 | ---- | M] () -- D:\Winamp\Plugins\in_wm.dll
MOD - [2011-11-16 09:44:33 | 000,312,832 | ---- | M] () -- D:\Winamp\Plugins\gen_ml.dll
MOD - [2011-11-16 09:44:33 | 000,293,888 | ---- | M] () -- D:\Winamp\Plugins\ml_local.dll
MOD - [2011-11-16 09:44:33 | 000,288,768 | ---- | M] () -- D:\Winamp\Plugins\in_mp3.dll
MOD - [2011-11-16 09:44:33 | 000,253,440 | ---- | M] () -- D:\Winamp\libsndfile.dll
MOD - [2011-11-16 09:44:33 | 000,252,416 | ---- | M] () -- D:\Winamp\Plugins\in_vorbis.dll
MOD - [2011-11-16 09:44:33 | 000,250,368 | ---- | M] () -- D:\Winamp\Plugins\ml_devices.dll
MOD - [2011-11-16 09:44:33 | 000,240,640 | ---- | M] () -- D:\Winamp\Plugins\ml_pmp.dll
MOD - [2011-11-16 09:44:33 | 000,200,704 | ---- | M] () -- D:\Winamp\Plugins\ml_disc.dll
MOD - [2011-11-16 09:44:33 | 000,183,808 | ---- | M] () -- D:\Winamp\Plugins\gen_jumpex.dll
MOD - [2011-11-16 09:44:33 | 000,174,080 | ---- | M] () -- D:\Winamp\System\auth.w5s
MOD - [2011-11-16 09:44:33 | 000,171,008 | ---- | M] () -- D:\Winamp\Plugins\pmp_ipod.dll
MOD - [2011-11-16 09:44:33 | 000,165,376 | ---- | M] () -- D:\Winamp\Plugins\in_mod.dll
MOD - [2011-11-16 09:44:33 | 000,126,464 | ---- | M] () -- D:\Winamp\Plugins\ml_online.dll
MOD - [2011-11-16 09:44:33 | 000,118,272 | ---- | M] () -- D:\Winamp\Plugins\pmp_p4s.dll
MOD - [2011-11-16 09:44:33 | 000,113,152 | ---- | M] () -- D:\Winamp\Plugins\pmp_wifi.dll
MOD - [2011-11-16 09:44:33 | 000,109,568 | ---- | M] () -- D:\Winamp\Plugins\in_midi.dll
MOD - [2011-11-16 09:44:33 | 000,102,400 | ---- | M] () -- D:\Winamp\Plugins\in_cdda.dll
MOD - [2011-11-16 09:44:33 | 000,083,456 | ---- | M] () -- D:\Winamp\Plugins\ml_plg.dll
MOD - [2011-11-16 09:44:33 | 000,082,944 | ---- | M] () -- D:\Winamp\Plugins\ml_playlists.dll
MOD - [2011-11-16 09:44:33 | 000,079,360 | ---- | M] () -- D:\Winamp\nde.dll
MOD - [2011-11-16 09:44:33 | 000,074,752 | ---- | M] () -- D:\Winamp\Plugins\in_nsv.dll
MOD - [2011-11-16 09:44:33 | 000,072,192 | ---- | M] () -- D:\Winamp\Plugins\in_dshow.dll
MOD - [2011-11-16 09:44:33 | 000,068,608 | ---- | M] () -- D:\Winamp\Plugins\in_avi.dll
MOD - [2011-11-16 09:44:33 | 000,060,928 | ---- | M] () -- D:\Winamp\Plugins\pmp_android.dll
MOD - [2011-11-16 09:44:33 | 000,060,928 | ---- | M] () -- D:\Winamp\Plugins\in_flac.dll
MOD - [2011-11-16 09:44:33 | 000,057,344 | ---- | M] () -- D:\Winamp\Plugins\ml_impex.dll
MOD - [2011-11-16 09:44:33 | 000,057,344 | ---- | M] () -- D:\Winamp\Plugins\gen_orgler.dll
MOD - [2011-11-16 09:44:33 | 000,053,760 | ---- | M] () -- D:\Winamp\Plugins\pmp_usb.dll
MOD - [2011-11-16 09:44:33 | 000,052,224 | ---- | M] () -- D:\Winamp\Plugins\out_ds.dll
MOD - [2011-11-16 09:44:33 | 000,052,224 | ---- | M] () -- D:\Winamp\Plugins\ml_history.dll
MOD - [2011-11-16 09:44:33 | 000,050,688 | ---- | M] () -- D:\Winamp\Plugins\in_mp4.dll
MOD - [2011-11-16 09:44:33 | 000,049,152 | ---- | M] () -- D:\Winamp\Plugins\in_mkv.dll
MOD - [2011-11-16 09:44:33 | 000,044,544 | ---- | M] () -- D:\Winamp\System\devices.w5s
MOD - [2011-11-16 09:44:33 | 000,043,008 | ---- | M] () -- D:\Winamp\Plugins\in_flv.dll
MOD - [2011-11-16 09:44:33 | 000,033,792 | ---- | M] () -- D:\Winamp\Plugins\ml_rg.dll
MOD - [2011-11-16 09:44:33 | 000,031,744 | ---- | M] () -- D:\Winamp\Plugins\ml_transcode.dll
MOD - [2011-11-16 09:44:33 | 000,028,672 | ---- | M] () -- D:\Winamp\Plugins\ml_autotag.dll
MOD - [2011-11-16 09:44:33 | 000,027,648 | ---- | M] () -- D:\Winamp\Plugins\ml_bookmarks.dll
MOD - [2011-11-16 09:44:33 | 000,027,648 | ---- | M] () -- D:\Winamp\Plugins\gen_hotkeys.dll
MOD - [2011-11-16 09:44:33 | 000,025,600 | ---- | M] () -- D:\Winamp\Plugins\gen_tray.dll
MOD - [2011-11-16 09:44:33 | 000,023,552 | ---- | M] () -- D:\Winamp\Plugins\in_swf.dll
MOD - [2011-11-16 09:44:33 | 000,023,040 | ---- | M] () -- D:\Winamp\System\albumart.w5s
MOD - [2011-11-16 09:44:33 | 000,022,528 | ---- | M] () -- D:\Winamp\Plugins\out_disk.dll
MOD - [2011-11-16 09:44:33 | 000,020,480 | ---- | M] () -- D:\Winamp\Plugins\pmp_njb.dll
MOD - [2011-11-16 09:44:33 | 000,019,456 | ---- | M] () -- D:\Winamp\System\gif.w5s
MOD - [2011-11-16 09:44:33 | 000,019,456 | ---- | M] () -- D:\Winamp\System\bmp.w5s
MOD - [2011-11-16 09:44:33 | 000,018,432 | ---- | M] () -- D:\Winamp\Plugins\out_wave.dll
MOD - [2011-11-16 09:44:33 | 000,016,896 | ---- | M] () -- D:\Winamp\Plugins\in_wave.dll
MOD - [2011-11-16 09:44:33 | 000,016,896 | ---- | M] () -- D:\Winamp\System\dlmgr.w5s
MOD - [2011-11-16 09:44:33 | 000,016,384 | ---- | M] () -- D:\Winamp\System\gracenote.w5s
MOD - [2011-11-16 09:44:33 | 000,014,336 | ---- | M] () -- D:\Winamp\System\filereader.w5s
MOD - [2011-11-16 09:44:33 | 000,007,168 | ---- | M] () -- D:\Winamp\Plugins\in_linein.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-08-02 21:19:26 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-01-18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2011-11-15 18:36:59 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2011-11-15 18:36:27 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2011-11-15 18:36:05 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe -- (Sound Blaster X-Fi MB Licensing Service)
SRV - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2009-07-14 13:28:00 | 000,239,648 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009-02-23 05:43:56 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Stopped] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2012-03-01 08:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-02-17 22:48:34 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:[b]64bit:[/b] - [2012-02-17 22:48:34 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:[b]64bit:[/b] - [2011-12-02 13:20:06 | 000,031,808 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:[b]64bit:[/b] - [2011-11-15 18:34:21 | 000,015,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:[b]64bit:[/b] - [2010-06-11 15:37:14 | 000,015,368 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\AsrAppCharger.sys -- (AsrAppCharger)
DRV:[b]64bit:[/b] - [2009-09-17 13:04:18 | 001,250,816 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-04-30 07:06:58 | 000,339,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV - [2012-04-24 15:13:10 | 000,138,360 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11122.sys -- (EraserUtilDrv11122)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1333659030_296276
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=2&cf=78806ad6-8e44-11e1-9dab-0025229ce03c
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{68DBA213-C78C-413E-9D76-791072C61F6F}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=78806ad6-8e44-11e1-9dab-0025229ce03c&q={searchTerms}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1334907922_711681
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_Prot
IE - HKCU\..\SearchScopes,DefaultScope = {68DBA213-C78C-413E-9D76-791072C61F6F}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=100482&babsrc=SP_ss&mntrId=cc76eaba0000000000000025229ce03c
IE - HKCU\..\SearchScopes\{68DBA213-C78C-413E-9D76-791072C61F6F}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=78806ad6-8e44-11e1-9dab-0025229ce03c&q={searchTerms}
IE - HKCU\..\SearchScopes\{73964DED-BAC2-467F-B6FF-D0E555EAC6A8}: "URL" = http://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Artek\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Artek\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-01-22 19:10:42 | 000,000,000 | ---D | M]
 
[2012-04-05 22:46:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://startsear.ch/?aff=2&cf=78806ad6-8e44-11e1-9dab-0025229ce03c
CHR - default_search_provider: Search the web (Babylon) (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&AF=100482&babsrc=SP_ss&mntrId=cc76eaba0000000000000025229ce03c
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://startsear.ch/?aff=2&cf=78806ad6-8e44-11e1-9dab-0025229ce03c
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Artek\AppData\Local\Google\Chrome\Application\21.0.1180.60\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: LiveVDO plug-in (Enabled) = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\chvsharetvplg.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Artek\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Complitly plugin for chrome = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.1_0\
CHR - Extension: DealPly = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\
CHR - Extension: DivX Plus Web Player HTML5 video = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: LiveVDO plugin = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\
CHR - Extension: Gmail = C:\Users\Artek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2012-08-05 15:47:14 | 000,001,392 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O1 - Hosts: 78.46.61.26 www.google-analytics.com.
O1 - Hosts: 78.46.61.26 ad-emea.doubleclick.net.
O1 - Hosts: 78.46.61.26 www.statcounter.com.
O1 - Hosts: 108.163.215.51 www.google-analytics.com.
O1 - Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 - Hosts: 108.163.215.51 www.statcounter.com.
O2:[b]64bit:[/b] - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Artek\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files (x86)\Funmoods\funmoods\1.5.19.3\bh\funmoods.dll (Funmoods BHO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (IE5BarLauncherBHO Class) - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files (x86)\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Complitly) - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\Artek\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files (x86)\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files (x86)\Funmoods\funmoods\1.5.19.3\funmoodsTlbr.dll (Funmoods)
O4:[b]64bit:[/b] - HKLM..\Run: [Lenovo Input Device Main Program] C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe (Primax Electronics Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [RunDLLEntry] C:\Windows\SysNative\AmbRunE.DLL (Creative Technology Ltd.)
O4 - HKLM..\Run: [CTSyncService] C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [svhost.exe] C:\Users\Artek\AppData\Roaming\svhost.exe ()
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [WinampAgent] D:\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe (FNet Co., Ltd.)
O4 - HKCU..\Run: [ASRockIES]  File not found
O4 - HKCU..\Run: [ASRockOCTuner]  File not found
O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files (x86)\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKCU..\Run: [Kcowog] C:\Users\Artek\AppData\Roaming\Kcowog.exe ()
O4 - HKCU..\Run: [Microsoft Windows Manager] C:\Users\Artek\M-10-6897-8685-3464\winmgr.exe ()
O4 - HKCU..\Run: [Mjjicrtugug ddd Manager] C:\Users\Artek\M-10-8754-86589-55555\windogz.exe ()
O4 - HKCU..\Run: [sdchange] C:\Users\Artek\AppData\Local\Microsoft\Windows\3391\sdchange.exe ()
O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O4 - HKCU..\Run: [svhost.exe] C:\Users\Artek\AppData\Roaming\svhost.exe ()
O4 - HKCU..\Run: [zASRockInstantBoot]  File not found
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWow64\Macromed\Flash\NPSWF32_FlashUtil.exe (Adobe Systems, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.5.1)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.5.1)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{11708EE3-935D-4B2F-828A-99DE7443C18E}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 - No CLSID value found
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-08-07 09:36:20 | 000,000,127 | RHS- | M] () - F:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{4daaeecf-2586-11e1-8bc9-0025229ce03c}\Shell - "" = AutoRun
O33 - MountPoints2\{4daaeecf-2586-11e1-8bc9-0025229ce03c}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6af6d16a-1026-11e1-8faf-0025229ce03c}\Shell - "" = AutoRun
O33 - MountPoints2\{6af6d16a-1026-11e1-8faf-0025229ce03c}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6af6d17a-1026-11e1-8faf-0025229ce03c}\Shell - "" = AutoRun
O33 - MountPoints2\{6af6d17a-1026-11e1-8faf-0025229ce03c}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{6af6d185-1026-11e1-8faf-0025229ce03c}\Shell - "" = AutoRun
O33 - MountPoints2\{6af6d185-1026-11e1-8faf-0025229ce03c}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b197f6ec-599a-11e1-badc-0025229ce03c}\Shell - "" = AutoRun
O33 - MountPoints2\{b197f6ec-599a-11e1-badc-0025229ce03c}\Shell\AutoRun\command - "" = F:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-08-07 08:24:38 | 000,000,000 | ---D | C] -- C:\Users\Artek\AppData\Local\ElevatedDiagnostics
[2012-08-07 08:10:43 | 000,000,000 | ---D | C] -- C:\Users\Artek\AppData\Roaming\hellomoto
[2012-08-05 15:46:47 | 000,000,000 | RHSD | C] -- C:\Users\Artek\M-10-8754-86589-55555
[2012-08-03 16:59:47 | 000,000,000 | RHSD | C] -- C:\Users\Artek\M-10-6897-8685-3464
[2012-07-19 15:59:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012-07-19 15:59:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Oracle
[2012-07-19 15:58:24 | 000,772,544 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012-07-19 15:58:24 | 000,227,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012-07-18 16:34:22 | 000,000,000 | ---D | C] -- C:\Users\Artek\Desktop\276-300 brzuszków   Mięśnie Brzucha_files
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-08-07 09:31:22 | 000,000,942 | ---- | M] () -- C:\Users\Artek\Desktop\OTL (1).exe.lnk
[2012-08-07 08:57:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-08-07 08:57:00 | 3019,350,016 | -HS- | M] () -- C:\hiberfil.sys
[2012-08-07 08:56:22 | 000,096,256 | -H-- | M] () -- C:\Users\Artek\AppData\Roaming\Kcowog.exe
[2012-08-07 08:18:01 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1468444174-322294889-524174059-1000UA.job
[2012-08-06 17:45:26 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-08-06 17:45:26 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-08-06 10:19:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-08-05 15:47:14 | 000,001,392 | RHS- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012-08-03 23:20:48 | 000,002,455 | ---- | M] () -- C:\Users\Artek\Desktop\Google Chrome.lnk
[2012-08-02 21:19:26 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012-08-02 21:19:26 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-07-28 14:58:39 | 001,837,846 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-07-28 14:58:39 | 000,999,670 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-07-28 14:58:39 | 000,518,946 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-07-28 14:58:39 | 000,477,934 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-07-28 14:58:39 | 000,004,788 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-07-26 17:56:20 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1468444174-322294889-524174059-1000Core.job
[2012-07-19 16:11:49 | 003,709,583 | ---- | M] () -- C:\Users\Artek\Desktop\Linkin Park - Burn It Down.mp3
[2012-07-19 16:02:16 | 007,652,918 | ---- | M] () -- C:\Users\Artek\Desktop\Alora vs Linkin Park - Burn It Down (Midsummer Mix '12) (www.djoles.pl).mp3
[2012-07-19 15:58:09 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012-07-19 15:58:09 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012-07-19 15:50:12 | 004,357,550 | ---- | M] () -- C:\Users\Artek\Desktop\Sebastian Ingrosso & Alesso (feat. Ryan Tedder) - Calling (Lose My Mind).mp3
[2012-07-19 15:49:45 | 004,974,079 | ---- | M] () -- C:\Users\Artek\Desktop\Will.I.Am feat. Eva Simons - This Is Love.mp3
[2012-07-19 15:48:50 | 004,646,298 | ---- | M] () -- C:\Users\Artek\Desktop\Ola - I'm in Love.mp3
[2012-07-19 15:48:17 | 007,981,200 | ---- | M] () -- C:\Users\Artek\Desktop\102-Grubson-Dzien dobry.mp3
[2012-07-18 16:34:22 | 000,147,154 | ---- | M] () -- C:\Users\Artek\Desktop\276-300 brzuszków   Mięśnie Brzucha.htm
[2012-07-11 12:25:37 | 000,297,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-08-07 09:32:54 | 000,000,942 | ---- | C] () -- C:\Users\Artek\Desktop\OTL (1).exe.lnk
[2012-08-07 08:56:22 | 000,096,256 | -H-- | C] () -- C:\Users\Artek\AppData\Roaming\Kcowog.exe
[2012-08-03 08:33:11 | 000,039,424 | RHS- | C] () -- C:\Users\Artek\AppData\Roaming\svhost.exe
[2012-07-19 16:31:29 | 007,981,200 | ---- | C] () -- C:\Users\Artek\Desktop\102-Grubson-Dzien dobry.mp3
[2012-07-19 16:31:24 | 004,646,298 | ---- | C] () -- C:\Users\Artek\Desktop\Ola - I'm in Love.mp3
[2012-07-19 16:31:15 | 004,974,079 | ---- | C] () -- C:\Users\Artek\Desktop\Will.I.Am feat. Eva Simons - This Is Love.mp3
[2012-07-19 16:31:12 | 004,357,550 | ---- | C] () -- C:\Users\Artek\Desktop\Sebastian Ingrosso & Alesso (feat. Ryan Tedder) - Calling (Lose My Mind).mp3
[2012-07-19 16:31:07 | 007,652,918 | ---- | C] () -- C:\Users\Artek\Desktop\Alora vs Linkin Park - Burn It Down (Midsummer Mix '12) (www.djoles.pl).mp3
[2012-07-19 16:31:03 | 003,709,583 | ---- | C] () -- C:\Users\Artek\Desktop\Linkin Park - Burn It Down.mp3
[2012-07-18 16:34:21 | 000,147,154 | ---- | C] () -- C:\Users\Artek\Desktop\276-300 brzuszków   Mięśnie Brzucha.htm
[2012-02-05 11:14:09 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\iFT33C2.dll
[2012-02-05 11:14:09 | 000,026,672 | ---- | C] () -- C:\Windows\SysWow64\drivers\Mac606.sys
[2012-01-27 19:08:38 | 000,064,048 | ---- | C] () -- C:\Windows\SysWow64\Hidhlp.dll
[2012-01-27 19:08:38 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\iFT329D.dll
[2012-01-27 19:08:38 | 000,022,528 | ---- | C] () -- C:\Windows\SysWow64\drivers\96EW.sys
[2012-01-15 12:51:56 | 001,548,506 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-01-12 15:08:09 | 000,098,304 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2011-11-28 22:21:01 | 000,003,584 | ---- | C] () -- C:\Users\Artek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-11-15 18:37:17 | 000,002,265 | ---- | C] () -- C:\Windows\FF08_Render_Spk_Hp.ini
[2011-11-15 18:37:17 | 000,001,650 | ---- | C] () -- C:\Windows\FF08_Capture.ini
[2011-11-15 18:37:17 | 000,001,540 | ---- | C] () -- C:\Windows\FF08_Render.ini
[2011-11-15 18:37:04 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2011-11-15 18:37:04 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-12-06 16:20:55 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Alawar
[2012-01-12 15:07:59 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Babylon
[2011-11-16 10:01:29 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\blueconnect
[2012-02-15 21:52:58 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Complitly
[2012-01-12 15:41:42 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Gadu-Gadu 10
[2012-08-07 08:10:51 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\hellomoto
[2012-01-19 20:36:07 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Need for Speed World
[2012-05-19 22:37:13 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\OpenFM
[2012-06-01 13:31:20 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\OpenOffice.org
[2012-08-06 18:09:39 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\SoftGrid Client
[2012-01-16 21:53:43 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\SumatraPDF
[2012-02-29 19:57:47 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\Thinstall
[2012-01-15 12:53:27 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\TP
[2012-01-16 22:00:12 | 000,000,000 | ---D | M] -- C:\Users\Artek\AppData\Roaming\UltraMixer
[2012-08-01 13:03:26 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >