OTL logfile created on: 2010-11-18 12:47:12 - Run 9 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Jacek\Pulpit Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023.00 Mb Total Physical Memory | 301.00 Mb Available Physical Memory | 29.00% Memory free 2.00 Gb Paging File | 2.00 Gb Available in Paging File | 74.00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 60.00 Gb Total Space | 6.84 Gb Free Space | 11.40% Space Free | Partition Type: NTFS Drive D: | 89.04 Gb Total Space | 0.03 Gb Free Space | 0.03% Space Free | Partition Type: NTFS Drive J: | 117.19 Gb Total Space | 0.07 Gb Free Space | 0.06% Space Free | Partition Type: NTFS Drive K: | 115.70 Gb Total Space | 0.01 Gb Free Space | 0.01% Space Free | Partition Type: NTFS Drive M: | 80.88 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: BERNACCY | User Name: Jacek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-11-14 22:11:28 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jacek\Pulpit\OTL.exe PRC - [2010-09-15 03:50:49 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\system32\java.exe PRC - [2010-09-13 20:02:44 | 000,399,872 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Program Files\UPHClean\uphclean.exe PRC - [2010-08-02 16:10:02 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010-08-02 16:09:56 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-08-02 16:09:56 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010-01-14 22:11:02 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009-12-08 11:27:10 | 001,503,232 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe PRC - [2009-09-25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe PRC - [2009-09-25 23:31:32 | 000,185,640 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe PRC - [2009-03-05 16:07:20 | 002,260,480 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe PRC - [2009-01-23 10:46:14 | 000,203,280 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe PRC - [2008-08-14 17:11:48 | 000,565,008 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe PRC - [2008-08-13 04:49:30 | 000,405,504 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Software Update 3\SoftAuto.exe PRC - [2008-07-26 08:25:36 | 000,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe PRC - [2008-07-26 08:23:42 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe PRC - [2008-06-26 13:52:42 | 000,204,800 | ---- | M] () -- C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe PRC - [2008-05-16 06:11:44 | 000,648,504 | ---- | M] (Pure Networks, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe PRC - [2008-05-16 06:11:44 | 000,648,504 | ---- | M] (Pure Networks, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-04-02 07:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe PRC - [2007-01-31 14:55:42 | 000,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe PRC - [2006-11-13 15:57:16 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe PRC - [2006-11-13 15:57:06 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe PRC - [2006-07-07 07:16:10 | 000,086,016 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe PRC - [2005-07-25 11:01:23 | 001,397,760 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCD.exe PRC - [2005-07-25 11:00:55 | 000,876,032 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-11-14 22:11:28 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jacek\Pulpit\OTL.exe MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2009-01-23 10:46:18 | 000,013,840 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\sahook.dll MOD - [2008-07-26 08:25:24 | 000,109,080 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\Temp\logishrd\LVPrcInj01.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010-09-13 20:02:44 | 000,399,872 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Auto | Running] -- C:\Program Files\UPHClean\uphclean.exe -- (UPHClean) SRV - [2010-08-02 16:10:02 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010-08-02 16:09:56 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-10-27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2009-09-25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service) SRV - [2009-01-23 10:46:14 | 000,203,280 | ---- | M] () [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service) SRV - [2008-07-26 08:25:36 | 000,150,040 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2008-07-26 08:23:42 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer) SRV - [2008-06-26 13:52:42 | 000,204,800 | ---- | M] () [Auto | Running] -- C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe -- (LinksysUpdater) SRV - [2008-05-16 06:11:44 | 000,648,504 | ---- | M] (Pure Networks, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice) SRV - [2007-10-25 15:27:54 | 000,266,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc) SRV - [2007-04-02 07:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) SRV - [2007-01-31 14:55:42 | 000,096,370 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8) SRV - [2006-07-07 07:16:10 | 000,086,016 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService) SRV - [2005-07-25 11:00:55 | 000,876,032 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrvR) InCD Helper (read only) SRV - [2005-07-25 11:00:55 | 000,876,032 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\splitcam.sys -- (SPLITCAM) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\Core Center\RushTop.sys -- (RushTopDevice) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\PCASp50.sys -- (PCASp50) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\PCAMPR5.SYS -- (PCAMPR5) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\MTiCtwl.sys -- (MagicTune) DRV - File not found [Kernel | On_Demand | Stopped] -- I:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - [2010-11-16 23:00:38 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\utm0ndi2.sys -- (utm0ndi2) DRV - [2010-08-02 16:10:10 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010-08-02 16:10:10 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010-07-09 12:18:54 | 000,020,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134) DRV - [2010-06-17 15:27:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 15:27:14 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009-10-06 11:56:34 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu) DRV - [2009-10-06 11:56:32 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc) DRV - [2009-10-06 11:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2009-10-06 11:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2009-10-06 11:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2009-10-06 11:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2009-07-14 16:31:06 | 000,037,504 | ---- | M] (Fuzhou Rockchip Electronics Co,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rockusb27.sys -- (rockusb27) DRV - [2009-06-30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-26 16:26:22 | 000,041,752 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2008-07-26 16:25:48 | 000,627,864 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS) DRV - [2008-07-26 16:22:34 | 002,570,520 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI) DRV - [2008-07-26 16:22:22 | 000,013,848 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter) DRV - [2008-07-26 08:25:02 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2008-05-16 06:10:32 | 000,023,992 | ---- | M] (Pure Networks, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pnarp.sys -- (pnarp) DRV - [2008-05-16 06:10:30 | 000,025,272 | ---- | M] (Pure Networks, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\purendis.sys -- (purendis) DRV - [2008-04-13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2008-04-13 17:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008-03-31 15:12:16 | 000,073,728 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive) DRV - [2008-02-18 16:29:16 | 000,096,256 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus) DRV - [2007-06-28 21:19:00 | 000,230,144 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mobicam.sys -- (TESTCAP) DRV - [2006-08-11 14:42:42 | 003,958,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2006-07-05 13:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a) DRV - [2006-06-28 09:25:24 | 004,304,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2006-06-14 15:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [2006-05-25 16:28:44 | 000,684,265 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\torususb.sys -- (TaurusUsb) DRV - [2006-04-24 10:52:28 | 000,100,736 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata) DRV - [2006-03-22 07:24:02 | 000,018,944 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006-03-22 07:24:00 | 000,052,736 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-07-25 10:52:59 | 000,028,672 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\InCDrm.sys -- (incdrm) DRV - [2005-07-25 09:53:28 | 000,101,504 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs) DRV - [2005-07-25 09:53:04 | 000,029,696 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDpass.sys -- (InCDPass) DRV - [2005-03-09 07:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-02-01 16:30:00 | 000,141,246 | ---- | M] (NVIDIA Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\NVCAP.SYS -- (nvcap) nVidia WDM Video Capture (universal) DRV - [2004-12-16 11:20:44 | 000,010,880 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SKBusEnum.sys -- (skbusenum) DRV - [2003-11-27 18:48:50 | 000,003,968 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VirtualK.sys -- (VirtualK) DRV - [2003-08-12 15:51:00 | 000,060,255 | R--- | M] (STMicroelectronics ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stmatm.sys -- (Stmatm) DRV - [2003-08-04 12:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2002-07-27 17:01:06 | 000,005,306 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel) DRV - [2002-07-27 17:01:06 | 000,005,306 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex) DRV - [2001-08-17 22:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) DRV - [1999-09-10 12:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (ASPI32) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-861567501-1482476501-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,AlwaysUseDefaultPrinter = IE - HKU\S-1-5-21-861567501-1482476501-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-861567501-1482476501-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010-03-04 06:22:22 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-02-08 20:58:05 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-09-29 20:26:06 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.24\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins O1 HOSTS File: ([2008-04-21 17:45:57 | 000,236,677 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.1001-search.info O1 - Hosts: 127.0.0.1 1001-search.info O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.123topsearch.com O1 - Hosts: 127.0.0.1 123topsearch.com O1 - Hosts: 127.0.0.1 www.132.com O1 - Hosts: 127.0.0.1 132.com O1 - Hosts: 127.0.0.1 www.136136.net O1 - Hosts: 127.0.0.1 136136.net O1 - Hosts: 8286 more lines... O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com) O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll (Yahoo! Inc.) O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD ) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo Demo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O2 - BHO: (PDFCreator Toolbar Helper) - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll File not found O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O3 - HKLM\..\Toolbar: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll File not found O3 - HKLM\..\Toolbar: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD ) O3 - HKLM\..\Toolbar: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo Demo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.) O3 - HKLM\..\Toolbar: (Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll (Yahoo! Inc.) O3 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\..\Toolbar\ShellBrowser: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll File not found O3 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O3 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\..\Toolbar\WebBrowser: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll File not found O3 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\..\Toolbar\WebBrowser: (Megaupload Toolbar) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD ) O3 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\..\Toolbar\WebBrowser: (Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_19_0.dll (Yahoo! Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (STMicroelectronics ) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe (Nero AG) O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe () O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC) O4 - HKLM..\Run: [nmctxth] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Pure Networks, Inc.) O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [] File not found O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe File not found O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG) O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [SoftAuto.exe] C:\Program Files\Creative\Software Update 3\SoftAuto.exe (Creative Technology Ltd) O4 - HKU\S-1-5-21-861567501-1482476501-839522115-1004..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-861567501-1482476501-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Subskrybuj w MoneyRss - C:\Program Files\MoneyRss\add_feed.htm () O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Pokaż lub ukryj HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.astonmartin.com/configurator/v8roadster_load.html (MetaStreamCtl Class) O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://go.microsoft.com/fwlink/?linkid=58813 (Office Genuine Advantage Validation Tool) O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} http://www.ipix.com/download/ipixx.cab (iPIX ActiveX Control) O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} http://gamingzone.ubisoft.com/dev/packages/GSManager.cab (CoGSManager Class) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1191947055522 (WUWebControl Class) O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://www.creative.com/softwareupdate/su/ocx/15101/CTSUEng.cab (Creative Software AutoUpdate) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} http://85.128.90.130/activex/AxisCamControl.cab (CamImage Class) O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class) O16 - DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe (Virtools WebPlayer Class) O16 - DPF: {DD01C8CA-5DA0-4B01-9603-B7194E561D32} http://kamery.delta.poznan.pl:8112/rel/webViewer.cab (TVSLiveControl Class) O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.) O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://www.creative.com/softwareupdate/su/ocx/15106/CTPID.cab (Creative Software AutoUpdate Support Package) O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Pure Networks, Inc.) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: GinaDLL - (ginamsi.dll) - C:\WINDOWS\System32\ginamsi.dll () O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-06-14 22:08:21 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2007-02-02 09:50:02 | 000,000,043 | R--- | M] () - M:\autorun.inf -- [ CDFS ] O33 - MountPoints2\M\Shell - "" = AutoRun O33 - MountPoints2\M\Shell\AutoRun\command - "" = M:\start.exe -- [2007-02-02 09:50:02 | 000,522,821 | R--- | M] () O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-11-17 23:38:46 | 000,000,000 | ---D | C] -- C:\Program Files\UPHClean [2010-11-14 22:11:26 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jacek\Pulpit\OTL.exe [2010-11-14 21:26:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek\Dane aplikacji\WinRAR [2010-11-14 20:02:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek\Dane aplikacji\Malwarebytes [2010-11-14 20:02:45 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-11-14 20:02:42 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-11-14 20:02:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-11-14 20:02:41 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-11-14 19:33:34 | 000,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys [2010-11-14 19:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security [2010-11-13 19:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek\Dane aplikacji\Avira [2010-11-07 18:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\Strategy First [2010-11-03 21:57:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\a [2010-10-30 22:09:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NFS Underground [2010-10-30 20:57:04 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-10-30 20:57:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-10-30 20:57:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-10-25 22:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jacek\Pulpit\100_FUJI [7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-11-18 12:35:48 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-18 12:35:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-18 11:32:08 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1482476501-839522115-1004UA.job [2010-11-18 08:32:00 | 000,001,080 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1482476501-839522115-1004Core.job [2010-11-17 23:34:56 | 000,430,080 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\UPHClean-Setup.msi [2010-11-16 23:00:38 | 000,007,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\utm0ndi2.sys [2010-11-16 13:52:57 | 000,288,107 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\gmer.zip [2010-11-16 13:17:49 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-15 22:48:10 | 000,000,558 | ---- | M] () -- C:\WINDOWS\DFC.INI [2010-11-15 22:46:07 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-11-14 23:14:56 | 712,495,104 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\cdlinux-1.0.iso [2010-11-14 22:38:14 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Jacek\defogger_reenable [2010-11-14 22:26:06 | 000,132,597 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\Flash_Disinfector.exe [2010-11-14 22:11:28 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jacek\Pulpit\OTL.exe [2010-11-14 22:09:44 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\Defogger.exe [2010-11-14 21:38:33 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-11-14 21:38:33 | 000,000,064 | ---- | M] () -- C:\Documents and Settings\Jacek\default.pls [2010-11-14 21:08:38 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\Spybot - Search & Destroy.lnk [2010-11-14 20:23:18 | 104,323,217 | ---- | M] () -- C:\Dokumenty_IPN.rar [2010-11-14 20:02:48 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-14 00:01:29 | 000,019,156 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt [2010-11-14 00:01:29 | 000,002,069 | ---- | M] () -- C:\WINDOWS\bestplayer.ini [2010-11-14 00:01:29 | 000,000,048 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp [2010-11-13 23:06:16 | 000,129,536 | ---- | M] () -- C:\Documents and Settings\Jacek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-12 21:40:19 | 000,325,387 | ---- | M] () -- C:\WINDOWS\unins000.dat [2010-11-12 21:39:53 | 000,709,641 | ---- | M] () -- C:\WINDOWS\unins000.exe [2010-11-11 09:36:30 | 000,041,984 | ---- | M] () -- C:\Documents and Settings\Jacek\Moje dokumenty\resoraki.xls [2010-11-07 18:24:30 | 000,000,851 | ---- | M] () -- C:\Documents and Settings\Jacek\Pulpit\Strike Fighters.lnk [2010-11-01 15:26:28 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-10-31 09:38:51 | 000,500,386 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-10-31 09:38:51 | 000,441,552 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-10-31 09:38:51 | 000,089,046 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-10-31 09:38:51 | 000,071,488 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-10-31 09:18:30 | 000,025,600 | ---- | M] () -- C:\Documents and Settings\Jacek\Moje dokumenty\książki.xls [7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-17 23:38:30 | 000,430,080 | ---- | C] () -- C:\Documents and Settings\Jacek\Pulpit\UPHClean-Setup.msi [2010-11-16 23:00:37 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\utm0ndi2.sys [2010-11-14 23:14:01 | 712,495,104 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\cdlinux-1.0.iso [2010-11-14 22:38:14 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jacek\defogger_reenable [2010-11-14 22:25:59 | 000,132,597 | ---- | C] () -- C:\Documents and Settings\Jacek\Pulpit\Flash_Disinfector.exe [2010-11-14 22:11:45 | 000,288,107 | ---- | C] () -- C:\Documents and Settings\Jacek\Pulpit\gmer.zip [2010-11-14 22:09:44 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\Jacek\Pulpit\Defogger.exe [2010-11-14 20:02:48 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-07 18:24:30 | 000,000,851 | ---- | C] () -- C:\Documents and Settings\Jacek\Pulpit\Strike Fighters.lnk [2010-08-15 20:22:28 | 000,238,752 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2010-03-26 19:41:10 | 000,000,037 | ---- | C] () -- C:\WINDOWS\ipixActivex.ini [2009-10-28 19:38:47 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll [2009-09-04 17:49:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI [2008-12-28 17:53:57 | 000,066,482 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2008-12-15 17:17:49 | 000,003,731 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2008-11-18 18:06:46 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Jacek\Dane aplikacji\$_hpcst$.hpc [2008-10-31 20:03:48 | 000,978,944 | ---- | C] () -- C:\WINDOWS\System32\tvsl.dll [2008-10-06 21:05:08 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache [2008-07-26 08:25:02 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2008-07-24 16:43:13 | 000,000,118 | ---- | C] () -- C:\WINDOWS\ConverterCore.INI [2008-07-24 16:20:45 | 000,021,240 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll [2008-07-24 16:20:45 | 000,013,560 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll [2008-05-02 16:41:22 | 000,000,025 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2008-04-15 16:42:03 | 000,000,028 | ---- | C] () -- C:\WINDOWS\MotionDVSTUDIO.INI [2008-03-29 15:04:00 | 000,003,047 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2007-12-27 18:56:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI [2007-12-17 23:50:29 | 000,000,979 | ---- | C] () -- C:\WINDOWS\ARCHPR.INI [2007-11-03 19:20:16 | 000,185,344 | ---- | C] () -- C:\WINDOWS\patchw32.dll [2007-10-11 15:39:58 | 000,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\addr_file.html [2007-10-09 18:11:50 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Jacek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007-10-09 15:55:34 | 000,000,902 | R--- | C] () -- C:\WINDOWS\System32\setup.ini [2007-10-09 15:55:34 | 000,000,161 | R--- | C] () -- C:\WINDOWS\DSLSetup.ini [2007-10-09 15:55:33 | 000,684,265 | R--- | C] () -- C:\WINDOWS\System32\drivers\torususb.sys [2007-09-25 17:17:03 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2007-09-06 21:54:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\synteza_DDE_klient.INI [2007-07-24 16:41:33 | 000,000,417 | ---- | C] () -- C:\WINDOWS\SIERRA.INI [2007-06-29 15:42:48 | 000,315,463 | ---- | C] () -- C:\WINDOWS\System32\GM2500F.dll [2007-06-29 15:42:48 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\GM2500.dll [2007-06-29 15:42:48 | 000,020,992 | ---- | C] () -- C:\WINDOWS\System32\drivers\GMFilter.sys [2007-06-26 21:32:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PlaneCopy.INI [2007-06-18 18:50:20 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2007-06-17 00:27:17 | 000,002,069 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2007-06-16 16:47:37 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI [2007-06-15 19:07:04 | 000,000,094 | ---- | C] () -- C:\WINDOWS\Route.INI [2007-06-15 16:59:40 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2007-06-15 00:06:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\muveeapp.INI [2007-06-14 23:44:32 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2007-06-14 22:35:12 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2007-06-14 22:32:29 | 000,129,536 | ---- | C] () -- C:\Documents and Settings\Jacek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007-06-14 22:28:44 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2007-06-14 22:16:12 | 000,000,558 | ---- | C] () -- C:\WINDOWS\DFC.INI [2007-06-14 22:02:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\SUSBKey.dll [2007-06-14 22:02:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ginamsi.dll [2007-03-05 13:34:28 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL [2006-08-11 14:45:20 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-08-11 14:43:10 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2006-08-11 14:43:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-08-11 14:43:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-08-11 14:43:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-08-11 14:43:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-08-11 14:43:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-03-02 13:00:00 | 000,056,880 | ---- | C] () -- C:\WINDOWS\System32\scvideo.dll [2004-07-05 13:25:06 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\WlanInstallDll.dll [color=#E56717]========== LOP Check ==========[/color] [2009-08-04 19:36:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\3DVIA [2009-12-03 17:03:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2007-06-14 22:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\muvee Technologies [2010-10-30 22:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NFS Underground [2009-07-05 07:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2010-01-19 18:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OviInstallerCache [2008-04-15 16:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panasonic [2008-08-04 17:10:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2009-12-17 23:29:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PhotoStitch [2010-03-01 18:54:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Seagate [2008-05-02 16:47:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SmartSound Software Inc [2009-07-23 16:47:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Smith Micro [2008-07-24 16:20:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SolidDocuments [2007-10-10 21:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Viewpoint [2009-03-01 21:30:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{F40E9D30-5DFC-4B21-BFDB-A5CDEE6440A6} [2010-11-14 21:20:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Iza\Dane aplikacji\MEGAUPLOADTOOLBAR [2010-01-14 21:29:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Iza\Dane aplikacji\PC Suite [2007-10-17 17:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Autodesk [2007-11-12 21:57:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\blaxxun interactive [2009-07-19 19:17:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\DIMAGE [2007-10-23 20:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Expressivo [2009-07-05 20:51:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\FileOpen [2008-07-22 20:21:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\flightgear.org [2008-05-03 12:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Ford Street Racing [2008-12-28 17:03:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Leadertech [2008-11-09 01:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\MegauploadToolbar [2007-11-05 17:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Mobipocket [2010-01-19 19:12:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Nokia [2010-01-19 19:11:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Nokia Ovi Suite [2010-07-23 19:50:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Orbit [2008-08-04 19:43:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\PC Suite [2008-09-30 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\SolidDocuments [2007-10-26 19:58:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Thunderbird [2007-11-03 19:20:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\ubi.com [2007-10-10 21:36:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\Viewpoint [2010-07-01 17:57:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jacek\Dane aplikacji\XRE [2010-11-14 21:25:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\SACore [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 88 bytes -> C:\Dokumenty_IPN.rar:SummaryInformation < End of report >