OTL logfile created on: 2010-12-27 00:30:25 - Run 2
OTL by OldTimer - Version 3.2.18.0     Folder = C:\Documents and Settings\routier.ROUTIPC\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 63,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): E:\pagefile.sys 2000 2950 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 6,93 Gb Free Space | 8,87% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 0,66 Gb Free Space | 1,34% Space Free | Partition Type: NTFS
Drive E: | 2,93 Gb Total Space | 0,94 Gb Free Space | 32,05% Space Free | Partition Type: NTFS
Drive F: | 56,43 Gb Total Space | 4,17 Gb Free Space | 7,40% Space Free | Partition Type: NTFS
Drive G: | 3,45 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
 
Computer Name: ROUTIPC | User Name: routier | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010-12-27 00:05:05 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\Moje dokumenty\Pobieranie\i0cesme4.exe
PRC - [2010-12-26 23:37:52 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\routier.ROUTIPC\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2010-12-17 17:26:29 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010-12-17 17:26:28 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-11-10 19:08:04 | 000,724,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2010-11-10 19:08:02 | 006,127,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010-10-22 04:57:54 | 002,745,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2010-10-22 04:57:38 | 000,652,640 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010-10-22 04:56:56 | 000,647,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010-09-16 21:04:06 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010-05-14 10:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2007-04-02 14:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [1999-07-27 03:01:00 | 001,443,328 | ---- | M] (C. Ghisler & Co.) -- C:\Install\WinCmd\wincmd32.prg
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010-12-26 23:37:52 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\routier.ROUTIPC\Moje dokumenty\Pobieranie\OTL.exe
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010-11-10 19:08:02 | 006,127,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2007-04-25 15:56:27 | 000,407,168 | ---- | M] (Cenega Poland) [Auto | Stopped] -- C:\WINDOWS\System32\pr2ajjab.exe -- (pr2ajjab) UFO Afterlight Drivers Auto Removal (pr2ajjab)
SRV - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2007-04-02 14:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2007-02-26 16:07:09 | 000,407,168 | ---- | M] (Cenega Poland) [Auto | Stopped] -- C:\WINDOWS\System32\pr2ajjac.exe -- (pr2ajjac) UFO Afterlight Drivers Auto Removal (pr2ajjac)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010-09-07 03:48:54 | 000,249,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2009-04-30 21:02:00 | 008,055,584 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007-08-24 12:50:49 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2007-04-25 15:56:05 | 000,064,904 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\pe3ajjab.sys -- (pe3ajjab) UFO Afterlight Environment Driver (pe3ajjab)
DRV - [2007-04-25 15:55:40 | 000,053,136 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\ps6ajjab.sys -- (ps6ajjab) UFO Afterlight Synchronization Driver (ps6ajjab)
DRV - [2007-04-04 14:21:00 | 000,006,912 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\nvoclock.sys -- (NVR0Dev)
DRV - [2007-02-26 16:05:07 | 000,065,416 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\pe3ajjac.sys -- (pe3ajjac) UFO Afterlight Environment Driver (pe3ajjac)
DRV - [2007-02-26 16:03:46 | 000,052,112 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\ps6ajjac.sys -- (ps6ajjac) UFO Afterlight Synchronization Driver (ps6ajjac)
DRV - [2006-03-20 17:34:56 | 001,452,032 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\p17filt.sys -- (p17filt)
DRV - [2006-03-17 15:10:00 | 001,163,264 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2005-12-08 10:54:52 | 000,114,688 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005-12-08 10:54:44 | 000,142,336 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2005-04-26 13:30:20 | 000,025,424 | R--- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\iteatapi.sys -- (iteatapi)
DRV - [2005-03-30 07:24:00 | 000,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2004-10-15 10:52:28 | 000,004,962 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2004-08-14 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2001-08-17 21:12:40 | 000,019,017 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8029.sys -- (rtl8029) Sterownik NT karty Realtek RTL8029(AS)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = w3cache.icm.edu.pl:8080
IE - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://www.aster.pl/aster.pac
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.selectedEngine: "qooqlle"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.qooqlle.com/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: cssreloader@kenneth.io:1.0.2
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ftp_port: 9666
FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1"
FF - prefs.js..network.proxy.backup.gopher_port: 9666
FF - prefs.js..network.proxy.backup.socks: "127.0.0.1"
FF - prefs.js..network.proxy.backup.socks_port: 9666
FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ssl_port: 9666
FF - prefs.js..network.proxy.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.ftp_port: 9666
FF - prefs.js..network.proxy.gopher: "127.0.0.1"
FF - prefs.js..network.proxy.gopher_port: 9666
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 9666
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "127.0.0.1"
FF - prefs.js..network.proxy.socks_port: 9666
FF - prefs.js..network.proxy.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.ssl_port: 9666
FF - prefs.js..network.proxy.type: 0
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-17 17:26:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-17 17:26:37 | 000,000,000 | ---D | M]
 
[2008-06-18 22:12:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Extensions
[2010-12-27 00:08:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions
[2009-09-03 18:34:19 | 000,000,000 | ---D | M] (Azerty III) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{04CA07AB-7FC3-4110-A83F-EF1E6B75D5B0}
[2010-06-15 16:34:41 | 000,000,000 | ---D | M] (Auto Copy) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{0FED7D55-65D4-47b6-A6DE-9A4ADB55355F}
[2010-06-12 19:08:52 | 000,000,000 | ---D | M] (Qute) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{36C13C8F-54F1-412e-8177-2E411719162D}
[2008-06-19 19:16:21 | 000,000,000 | ---D | M] (CrystalFox Modern) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{99de5f32-88bf-43c9-b47e-a894a4b72e71}
[2007-08-03 10:16:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
[2010-08-21 07:15:45 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010-07-19 20:06:35 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
[2010-06-12 19:08:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\cheeaun@phoenity.com
[2010-06-12 19:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\kempelton-fx@arvidaxelsson.se
[2010-02-25 08:53:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\extensions\linky@gemal.dk
[2010-12-26 23:57:57 | 000,001,860 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\searchplugins\qooqlle.xml
[2009-06-22 23:09:41 | 000,001,014 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mozilla\Firefox\Profiles\vjpselnd.default\searchplugins\sownik.xml
[2010-12-27 00:08:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-05-06 21:38:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-08-03 19:30:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-07-17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-10-27 06:37:26 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-10-27 06:37:26 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-10-27 06:37:26 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-10-27 06:37:26 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-10-27 06:37:26 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-10-27 06:37:26 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2004-08-04 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Display] C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\nwiz.exe (Nvidia Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.dll ()
O4 - HKU\S-1-5-21-448539723-1644491937-1801674531-1003..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-1644491937-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} http://www.creative.com/su/ocx/15031/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-04-07 23:34:07 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2166a708-427d-11df-85ea-0015f2099594}\Shell\AutoRun\command - "" = 1weicxa.com
O33 - MountPoints2\{2166a708-427d-11df-85ea-0015f2099594}\Shell\explore\Command - "" = 1weicxa.com
O33 - MountPoints2\{2166a708-427d-11df-85ea-0015f2099594}\Shell\open\Command - "" = 1weicxa.com
O33 - MountPoints2\{7cb9b5b7-b95c-11dc-856f-0015f2099594}\Shell\AutoRun\command - "" = K:\USBNB.exe -- File not found
O33 - MountPoints2\{a28c5d60-bd55-11dc-8570-0015f2099594}\Shell\Open(&0)\command - "" = Recycled\ctfmon.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-12-26 23:27:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-12-16 12:24:57 | 000,000,000 | ---D | C] -- C:\Program Files\Battle for Wesnoth 1.8.5
[2010-12-15 16:48:40 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010-12-15 16:48:19 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010-11-30 21:17:55 | 000,000,000 | ---D | C] -- C:\Program Files\WMV9_VCM
[2010-11-30 21:13:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVIcodec
[2010-11-30 20:48:07 | 000,000,000 | ---D | C] -- C:\Program Files\Your Product
[2010-11-30 18:00:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\RDRM
[2010-11-23 20:47:07 | 005,937,152 | ---- | C] (Nvidia Corporation) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\nwiz.exe
[2010-11-11 18:13:24 | 000,876,824 | ---- | C] (DivX, Inc. ) -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\DivXInstaller.exe
[2002-04-11 00:41:06 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\A3d.dll
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-12-27 00:29:00 | 000,001,346 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010-12-26 23:57:50 | 000,160,684 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-12-26 23:57:46 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-12-26 23:56:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-12-26 23:54:09 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\PUTTY.RND
[2010-12-26 23:36:08 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010-12-26 23:22:32 | 000,120,544 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-12-26 23:07:28 | 000,490,464 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-12-26 23:07:28 | 000,432,536 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-12-26 23:07:28 | 000,083,840 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-12-26 23:07:28 | 000,067,492 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-12-26 21:50:11 | 102,700,263 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2010-12-20 02:10:43 | 007,449,464 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\Moje dokumenty\Aarrgghha_cobalt_argh
[2010-12-17 08:15:17 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-12-11 02:14:47 | 000,000,167 | ---- | M] () -- C:\WINDOWS\game.ini
[2010-12-08 19:38:54 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-30 21:05:40 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2010-11-30 20:55:21 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2010-11-30 20:50:32 | 000,001,500 | ---- | M] () -- C:\Documents and Settings\routier.ROUTIPC\Pulpit\DivX Movies.lnk
[2010-11-30 20:50:19 | 000,000,783 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\DivX Plus Player.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-11-30 20:55:21 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2010-11-30 20:55:21 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2010-11-30 20:50:19 | 000,000,783 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\DivX Plus Player.lnk
[2010-11-23 20:48:07 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-11-23 20:48:06 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-11-23 20:48:06 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-11-23 20:48:06 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-08-24 20:46:13 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-06-06 16:36:41 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009-04-30 23:31:06 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009-04-30 23:31:06 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009-04-30 23:31:06 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009-04-30 23:31:06 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-04-23 23:21:26 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008-03-22 17:07:25 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-01-13 10:42:10 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-01-13 10:42:09 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\PnkBstrK.sys
[2008-01-13 10:41:39 | 000,000,167 | ---- | C] () -- C:\WINDOWS\game.ini
[2007-11-26 21:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007-08-05 21:48:04 | 000,000,795 | ---- | C] () -- C:\WINDOWS\Rtcw.INI
[2007-06-19 07:59:36 | 000,070,400 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll
[2007-06-10 09:16:09 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\routier.ROUTIPC\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-05-10 12:37:44 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007-05-10 12:13:17 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2007-05-07 01:44:51 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007-05-07 01:10:19 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2007-05-07 01:10:19 | 000,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2007-05-07 01:10:17 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2007-05-07 01:10:17 | 000,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2007-05-07 00:54:31 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2007-05-07 00:45:44 | 000,005,781 | ---- | C] () -- C:\WINDOWS\System32\Ludap17.ini
[2007-05-07 00:45:44 | 000,000,039 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2007-05-07 00:18:24 | 000,022,765 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007-05-07 00:18:24 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2007-05-07 00:18:20 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007-05-07 00:16:11 | 000,001,346 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2007-04-20 06:57:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007-04-20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2007-03-12 12:01:30 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2006-10-22 11:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-22 11:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-03-17 15:11:56 | 000,081,408 | ---- | C] () -- C:\WINDOWS\System32\P17.dll
[2003-10-02 17:48:18 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\P17CPI.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009-02-22 01:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AlawarWrapper
[2010-11-23 21:10:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVG10
[2010-11-23 21:09:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Common Files
[2009-02-22 03:33:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\FarmFrenzy2
[2010-11-30 18:01:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\ipla
[2010-11-23 21:07:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\MFAData
[2007-01-11 13:02:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier\Dane aplikacji\Azureus
[2007-04-18 19:18:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier\Dane aplikacji\Gadu-Gadu
[2006-08-14 23:13:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier\Dane aplikacji\Leadertech
[2006-08-29 18:33:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier\Dane aplikacji\My Games
[2010-08-22 13:27:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\AAP
[2010-11-23 21:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\AVG10
[2010-12-02 15:52:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Azureus
[2007-10-20 15:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Gadu-Gadu
[2010-12-02 10:20:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\ipla
[2010-08-22 20:05:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Mount&Blade Warband
[2008-11-25 23:41:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\MySQL
[2010-11-30 18:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\RDRM
[2007-08-24 13:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Tibia
[2008-01-25 17:30:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\Tlen.pl
[2007-05-11 14:28:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\routier.ROUTIPC\Dane aplikacji\UFOAI
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >