OTL logfile created on: 2012-08-14 18:30:50 - Run 1
OTL by OldTimer - Version 3.2.57.0     Folder = I:\downloads
Windows Vista Ultimate Edition  (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16764)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 72,20% Memory free
4,23 Gb Paging File | 3,80 Gb Available in Paging File | 89,97% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 0,71 Gb Free Space | 3,65% Space Free | Partition Type: NTFS
Drive D: | 35,46 Gb Total Space | 0,40 Gb Free Space | 1,12% Space Free | Partition Type: NTFS
Drive E: | 54,99 Gb Total Space | 6,58 Gb Free Space | 11,97% Space Free | Partition Type: NTFS
Drive F: | 39,06 Gb Total Space | 0,08 Gb Free Space | 0,20% Space Free | Partition Type: NTFS
Drive I: | 14,89 Gb Total Space | 0,49 Gb Free Space | 3,29% Space Free | Partition Type: FAT32
 
Computer Name: SŁONIK-PC | User Name: Słonik | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-08-13 12:50:58 | 000,596,992 | ---- | M] (OldTimer Tools) -- I:\downloads\OTL.exe
PRC - [2012-08-05 12:30:21 | 000,874,896 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009-01-20 16:27:25 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006-11-02 11:45:13 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe -- (AcronisOSSReinstallSvc)
SRV - [2012-08-03 18:53:34 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-01-18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2009-10-19 21:05:36 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-01-20 16:47:37 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008-08-18 14:30:58 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2008-08-18 14:25:10 | 000,468,224 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2007-05-31 10:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007-05-31 10:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007-03-06 11:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2006-11-02 11:46:14 | 000,376,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2006-11-02 11:45:35 | 000,009,216 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\regedt32.exe -- (NOD32FiXTemDono)
SRV - [2006-08-04 12:35:54 | 000,217,088 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- F:\Bittorrent download\autodata 3.17 pl\autodata\WMWork\vmware-authd.exe -- (VMAuthdService)
SRV - [2006-08-04 12:35:52 | 000,135,168 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\Windows\System32\vmnat.exe -- (VMware NAT Service)
SRV - [2006-08-04 12:35:52 | 000,106,496 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\Windows\System32\vmnetdhcp.exe -- (VMnetDHCP)
SRV - [2006-08-04 11:28:58 | 000,262,144 | ---- | M] (VMware, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe -- (vmount2)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Unknown] --  -- (a6li3prc)
DRV - [2009-07-01 23:43:06 | 000,762,112 | ---- | M] (none) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\adatadrv.sys -- (adatadrv)
DRV - [2009-01-22 19:32:01 | 000,279,712 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2009-01-22 19:32:00 | 000,025,888 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009-01-19 23:37:57 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2008-12-18 13:44:49 | 000,097,792 | ---- | M] (T0r0 & Tecar Forum 2009) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\NSHE.SYS -- (NSHE)
DRV - [2008-08-18 14:27:42 | 000,034,312 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2008-08-18 14:19:26 | 000,053,256 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\easdrv.sys -- (easdrv)
DRV - [2008-08-18 14:18:26 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2008-07-11 08:05:00 | 000,092,712 | ---- | M] (SafeNet, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\sentinel.sys -- (Sentinel)
DRV - [2008-07-11 08:05:00 | 000,037,088 | ---- | M] (SafeNet, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SNTNLUSB.SYS -- (SNTNLUSB)
DRV - [2006-11-02 10:55:05 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2006-11-02 09:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006-11-02 09:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006-08-04 12:35:56 | 000,015,616 | ---- | M] (VMware, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\vmnetuserif.sys -- (VMnetuserif)
DRV - [2006-08-04 12:35:56 | 000,009,600 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmnetadapter.sys -- (VMnetAdapter)
DRV - [2006-08-04 12:35:54 | 000,022,016 | ---- | M] (VMware, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\hcmon.sys -- (hcmon)
DRV - [2006-08-04 12:35:52 | 000,094,848 | ---- | M] (VMware, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\vmx86.sys -- (vmx86)
DRV - [2006-08-04 12:35:52 | 000,009,216 | ---- | M] (VMware, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\vmparport.sys -- (VMparport)
DRV - [2006-08-04 11:28:58 | 000,011,520 | ---- | M] (VMware, Inc.) [Kernel | Auto | Stopped] -- C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys -- (vstor2)
DRV - [2005-07-28 08:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\hardlock.sys -- (Hardlock)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.katalogczesci.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {3903E400-0F2E-4CC0-8F35-8C52F64EF9DF}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{3903E400-0F2E-4CC0-8F35-8C52F64EF9DF}: "URL" = http://www.google.pl/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB9}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:6.9.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Słonik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\msntoolbar@msn.com: C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\Firefox [2010-05-05 00:16:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010-05-05 00:16:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-03-17 00:38:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-10-14 19:58:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Słonik\AppData\Roaming\IDM\idmmzcc3 [2010-03-01 00:52:29 | 000,000,000 | ---D | M]
 
[2011-01-03 09:27:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Słonik\AppData\Roaming\mozilla\Extensions
[2011-10-19 23:59:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Słonik\AppData\Roaming\mozilla\Firefox\Profiles\2g4f5fu2.default\extensions
[2011-10-25 23:26:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-10-14 19:58:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011-10-25 23:26:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
File not found (No name found) -- C:\USERS\SĹ‚ONIK\APPDATA\ROAMING\IDM\IDMMZCC3
[2011-10-03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010-12-03 19:54:54 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2010-12-03 19:54:54 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2010-12-03 19:54:54 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2010-12-03 19:54:54 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2010-12-03 19:54:54 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2010-12-03 19:54:54 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - F:\Program Files\IDM\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll File not found
O2 - BHO: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL File not found
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [GroupManager] C:\Program Files\Crack\groupmanager.exe ()
O4 - HKLM..\Run: [MSConfig] C:\Windows\System32\msconfig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NodLogin] C:\Program Files\ESET\ESET NOD32 Antivirus\nodlogin.exe File not found
O4 - HKLM..\Run: [TrialReset] C:\Windows\regx32.exe File not found
O4 - HKLM..\Run: [UVS11 Preload] E:\-Programy-\unlead\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKCU..\Run: [AQQ] C:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.)
O4 - HKCU..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo Desktop\1.6.38.1042\Badoo.Desktop.exe File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [IDMan] F:\Program Files\IDM\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [Sony PC Companion] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background File not found
O4 - HKCU..\Run: [thawbrkr] C:\Users\Słonik\AppData\Local\Microsoft\Windows\357\thawbrkr.exe ()
O4 - Startup: C:\Users\Słonik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Słonik\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O8 - Extra context menu item: Ściągnij przez IDM - F:\Program Files\IDM\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - F:\Program Files\IDM\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - F:\Program Files\IDM\Internet Download Manager\IEGetVL.htm ()
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\Windows\System32\idmmbc.dll (Tonec Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FA63CA3-9C48-4C4E-8889-A29F5DEED367}: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll File not found
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Słonik\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\Słonik\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{025bb3a7-2a85-11e1-8c3c-0016e689b1db}\Shell - "" = AutoRun
O33 - MountPoints2\{025bb3a7-2a85-11e1-8c3c-0016e689b1db}\Shell\AutoRun\command - "" = I:\Startme.exe
O33 - MountPoints2\{0589f95c-f9ba-11df-b995-005056c00001}\Shell\AutoRun\command - "" = egmjjb.exe
O33 - MountPoints2\{0589f95c-f9ba-11df-b995-005056c00001}\Shell\open\Command - "" = egmjjb.exe
O33 - MountPoints2\{1f59f13a-9143-11e0-b9bf-0016e689b1db}\Shell\AutoRun\command - "" = I:\w9.exe
O33 - MountPoints2\{1f59f13a-9143-11e0-b9bf-0016e689b1db}\Shell\open\Command - "" = I:\w9.exe
O33 - MountPoints2\{98782e72-e671-11dd-bb16-0016e689b1db}\Shell - "" = AutoRun
O33 - MountPoints2\{98782e72-e671-11dd-bb16-0016e689b1db}\Shell\AutoRun\command - "" = H:\autorun.exe
O33 - MountPoints2\{cbf8ab0b-6864-11de-b750-0016e689b1db}\Shell\AutoRun\command - "" = I:\setupSNK.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-08-13 12:15:25 | 000,000,000 | ---D | C] -- C:\Users\Słonik\AppData\Roaming\hellomoto
[2012-08-08 15:48:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-08-14 18:26:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-08-13 13:27:59 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2012-08-13 13:27:59 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2012-08-13 13:27:58 | 004,456,448 | -HS- | M] () -- C:\Users\Słonik\NTUSER.DAT
[2012-08-13 13:27:30 | 000,122,200 | ---- | M] () -- C:\Users\Słonik\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-08-13 13:27:05 | 000,005,056 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012-08-13 13:27:04 | 000,005,056 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012-08-13 13:26:44 | 001,764,192 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-08-13 13:26:16 | 008,405,015 | ---- | M] () -- C:\Windows\TempFile
[2012-08-13 13:15:03 | 000,001,356 | ---- | M] () -- C:\Users\Słonik\AppData\Local\d3d9caps.dat
[2012-08-13 11:52:59 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-08-13 10:45:04 | 000,147,456 | ---- | M] () -- C:\Users\Słonik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-07 09:34:13 | 000,430,728 | ---- | M] () -- C:\Users\Słonik\Desktop\Sendit-LP-000064742-000000003.pdf
[2012-08-06 13:48:53 | 000,059,956 | ---- | M] () -- C:\Users\Słonik\Desktop\TR_DETAILS_20120806134853.pdf
[2012-08-03 18:53:33 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012-08-03 18:53:33 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012-08-02 23:20:05 | 001,283,560 | ---- | M] () -- C:\Users\Słonik\Desktop\OBDScope_161_S60_30_50_Trial.sisx
[2012-07-26 21:12:16 | 000,162,507 | ---- | M] () -- C:\Users\Słonik\Desktop\Cs 2012.jpg
[2012-07-17 00:05:06 | 000,000,174 | ---- | M] () -- C:\Users\Słonik\Desktop\Thumbs up.gif
[2012-07-17 00:04:11 | 000,000,170 | ---- | M] () -- C:\Users\Słonik\Desktop\Thumbs up.jpeg
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-08-07 09:34:13 | 000,430,728 | ---- | C] () -- C:\Users\Słonik\Desktop\Sendit-LP-000064742-000000003.pdf
[2012-08-06 13:48:53 | 000,059,956 | ---- | C] () -- C:\Users\Słonik\Desktop\TR_DETAILS_20120806134853.pdf
[2012-08-02 23:20:05 | 001,283,560 | ---- | C] () -- C:\Users\Słonik\Desktop\OBDScope_161_S60_30_50_Trial.sisx
[2012-07-26 21:12:16 | 000,162,507 | ---- | C] () -- C:\Users\Słonik\Desktop\Cs 2012.jpg
[2012-07-17 00:04:43 | 000,000,174 | ---- | C] () -- C:\Users\Słonik\Desktop\Thumbs up.gif
[2012-07-16 23:51:48 | 000,000,170 | ---- | C] () -- C:\Users\Słonik\Desktop\Thumbs up.jpeg
[2012-06-14 00:05:19 | 000,005,974 | ---- | C] () -- C:\Users\Słonik\.recently-used.xbel
[2012-04-09 11:45:35 | 000,011,761 | ---- | C] () -- C:\Users\Słonik\AppData\Local\unins000.msg
[2012-04-09 11:45:03 | 000,707,504 | ---- | C] () -- C:\Users\Słonik\AppData\Local\unins000.exe
[2012-03-13 00:09:35 | 000,210,456 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2012-03-13 00:09:35 | 000,206,360 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2012-03-13 00:09:35 | 000,198,168 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2012-03-13 00:09:35 | 000,198,168 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2012-03-13 00:09:35 | 000,194,072 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2012-03-13 00:09:35 | 000,026,136 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2011-08-31 14:29:00 | 004,023,808 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2011-07-12 16:56:50 | 000,074,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011-06-17 06:26:10 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011-04-20 22:49:22 | 000,003,786 | ---- | C] () -- C:\Users\Słonik\AppData\Local\unins000.dat
[2011-01-06 17:22:51 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011-01-06 17:20:26 | 002,392,064 | ---- | C] () -- C:\Windows\System32\videotrans.dll
[2011-01-06 17:20:23 | 000,215,040 | ---- | C] () -- C:\Windows\System32\videoformat.dll
[2011-01-06 17:20:23 | 000,017,920 | ---- | C] () -- C:\Windows\System32\videocore.dll
[2011-01-06 17:20:22 | 000,061,440 | ---- | C] () -- C:\Windows\System32\imgscaler.dll
[2011-01-06 17:20:22 | 000,022,016 | ---- | C] () -- C:\Windows\System32\img_utils.dll
[2011-01-06 17:20:04 | 000,128,512 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2011-01-04 14:28:18 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010-12-18 23:06:06 | 000,000,590 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2009-04-20 07:20:48 | 000,001,356 | ---- | C] () -- C:\Users\Słonik\AppData\Local\d3d9caps.dat
[2009-01-24 19:44:41 | 000,000,090 | ---- | C] () -- C:\Users\Słonik\AppData\Roaming\default.pls
[2009-01-23 12:42:28 | 000,024,206 | ---- | C] () -- C:\Users\Słonik\AppData\Roaming\UserTile.png
[2009-01-21 12:21:31 | 000,000,094 | ---- | C] () -- C:\Users\Słonik\AppData\Local\fusioncache.dat
[2009-01-20 19:33:27 | 000,001,024 | ---- | C] () -- C:\Users\Słonik\.rnd
[2009-01-19 23:57:37 | 000,147,456 | ---- | C] () -- C:\Users\Słonik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-01-19 20:37:32 | 000,122,200 | ---- | C] () -- C:\Users\Słonik\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-01-19 20:37:09 | 000,524,288 | -HS- | C] () -- C:\Users\Słonik\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000002.regtrans-ms
[2009-01-19 20:37:09 | 000,524,288 | -HS- | C] () -- C:\Users\Słonik\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000001.regtrans-ms
[2009-01-19 20:37:09 | 000,065,536 | -HS- | C] () -- C:\Users\Słonik\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TM.blf
[2009-01-19 20:37:09 | 000,000,020 | -HS- | C] () -- C:\Users\Słonik\ntuser.ini
[2009-01-19 20:37:08 | 004,456,448 | -HS- | C] () -- C:\Users\Słonik\NTUSER.DAT
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:9E00596C

< End of report >