OTL logfile created on: 2012-12-26 14:52:36 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Konrad\My Documents
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd
 
1,99 Gb Total Physical Memory | 0,84 Gb Available Physical Memory | 42,44% Memory free
3,84 Gb Paging File | 2,83 Gb Available in Paging File | 73,79% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 25,04 Gb Total Space | 2,05 Gb Free Space | 8,20% Space Free | Partition Type: NTFS
Drive D: | 41,39 Gb Total Space | 16,26 Gb Free Space | 39,29% Space Free | Partition Type: NTFS
Drive E: | 39,27 Gb Total Space | 8,96 Gb Free Space | 22,81% Space Free | Partition Type: NTFS
 
Computer Name: WS-2 | User Name: Konrad | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-12-26 14:51:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Konrad\My Documents\OTL.exe
PRC - [2012-12-22 21:24:11 | 000,879,080 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012-10-11 03:29:13 | 000,143,928 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Identity Safe\Engine\2013.2.0.18\ccSvcHst.exe
PRC - [2012-10-11 03:29:13 | 000,143,928 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\ccSvcHst.exe
PRC - [2012-08-31 21:52:59 | 003,345,456 | ---- | M] (TMRG,  Inc.) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe
PRC - [2012-06-22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
PRC - [2008-04-14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-10-19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2007-10-19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
PRC - [2007-10-08 13:18:04 | 000,995,328 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
PRC - [2007-10-08 13:15:50 | 000,356,352 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
PRC - [2007-10-08 13:09:26 | 000,659,456 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
PRC - [2007-05-10 09:22:32 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\Sigmatel\C-Major Audio\WDM\stsystra.exe
PRC - [2005-03-14 12:05:02 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-12-26 14:49:15 | 000,167,936 | ---- | M] () -- C:\WINDOWS\Installer\MSI811.tmp
MOD - [2012-12-12 20:23:35 | 014,586,296 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
MOD - [2012-07-09 16:59:06 | 001,277,952 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avformat-53.dll
MOD - [2012-07-09 16:57:30 | 002,090,496 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll
MOD - [2012-05-30 15:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files\Norton Identity Safe\Engine\2013.2.0.18\wincfi39.dll
MOD - [2012-04-30 07:57:18 | 000,085,312 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\2YourFace\bho.dll
MOD - [2012-03-23 09:07:34 | 000,224,768 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\libupnp.dll
MOD - [2012-02-02 12:09:06 | 000,140,848 | ---- | M] () -- C:\Program Files\StartSearch plugin\IEhelperActiveX.dll
MOD - [2011-12-06 15:19:48 | 000,133,632 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avutil-51.dll
MOD - [2011-11-03 16:28:36 | 001,292,288 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2011-03-15 06:13:46 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2011-02-04 17:48:30 | 000,291,840 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
MOD - [2008-04-14 05:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008-04-14 05:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2007-10-19 13:17:40 | 000,068,120 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll
MOD - [2007-10-08 13:03:22 | 000,245,760 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
MOD - [2007-05-17 13:42:26 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll
MOD - [2004-02-26 01:31:24 | 000,176,235 | ---- | M] () -- C:\WINDOWS\system32\Primomonnt.dll
MOD - [2001-10-28 16:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012-12-12 20:23:36 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-10-24 18:49:17 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-10-11 03:29:13 | 000,143,928 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Identity Safe\Engine\2013.2.0.18\ccSvcHst.exe -- (NCO)
SRV - [2012-10-11 03:29:13 | 000,143,928 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\ccSvcHst.exe -- (NAV)
SRV - [2012-08-01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012-07-13 13:01:18 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-06-22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2011-11-13 20:19:38 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011-06-30 21:13:13 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\srvany.exe -- (KMService)
SRV - [2011-06-12 10:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2007-10-19 13:21:16 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007-10-19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007-10-19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2007-10-08 13:15:50 | 000,356,352 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER)
SRV - [2005-03-14 12:05:02 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\UIUSys.sys -- (UIUSys)
DRV - File not found [Kernel | Disabled | Stopped] -- System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII.SP2c\WNt500x86\Sandra.sys -- (SANDRA)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RkPavproc1.sys -- (RkPavproc1)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{56DEF162-62F7-4B06-9F48-BBD37929623F}\MpKslfd74de76.sys -- (MpKslfd74de76)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{9849FEC3-A583-41BF-8868-839FF0CA009F}\MpKslf847ba64.sys -- (MpKslf847ba64)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{56DEF162-62F7-4B06-9F48-BBD37929623F}\MpKslea31932f.sys -- (MpKslea31932f)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7011E858-56DB-4967-93C8-1B82FD0DC8B2}\MpKsle669a75b.sys -- (MpKsle669a75b)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1E3E6C24-FEE6-4A8A-A8DA-13D1B6229499}\MpKsle05f5c8d.sys -- (MpKsle05f5c8d)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{56DEF162-62F7-4B06-9F48-BBD37929623F}\MpKsl90418bfe.sys -- (MpKsl90418bfe)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{414DF8A4-FE6F-485E-918A-AECD09DD70F1}\MpKsl8fdacb5b.sys -- (MpKsl8fdacb5b)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2F6D6B5C-915C-42A5-96F1-4212381001C9}\MpKsl807560e3.sys -- (MpKsl807560e3)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{56DEF162-62F7-4B06-9F48-BBD37929623F}\MpKsl5e59560a.sys -- (MpKsl5e59560a)
DRV - File not found [Kernel | System | Stopped] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2F6D6B5C-915C-42A5-96F1-4212381001C9}\MpKsl225a4419.sys -- (MpKsl225a4419)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Konrad\LOCALS~1\Temp\esihdrv.sys -- (esihdrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Konrad\LOCALS~1\Temp\cpuz130\cpuz_x32.sys -- (cpuz130)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-12-15 22:28:18 | 001,601,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20121224.025\NAVEX15.SYS -- (NAVEX15)
DRV - [2012-12-15 22:28:18 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012-12-15 22:28:18 | 000,092,704 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20121224.025\NAVENG.SYS -- (NAVENG)
DRV - [2012-12-15 22:28:17 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2012-12-15 22:21:30 | 000,142,496 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2012-12-14 17:12:24 | 000,373,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\IPSDefs\20121222.001\IDSxpx86.sys -- (IDSxpx86)
DRV - [2012-11-30 00:13:06 | 000,995,488 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\BASHDefs\20121130.005\BHDrvx86.sys -- (BHDrvx86)
DRV - [2012-11-13 21:53:00 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2012-10-09 02:00:02 | 000,586,400 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\srtsp.sys -- (SRTSP)
DRV - [2012-10-04 02:40:35 | 000,927,904 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\SymEFA.sys -- (SymEFA)
DRV - [2012-10-04 02:40:20 | 000,368,288 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\SymDS.sys -- (SymDS)
DRV - [2012-10-04 02:19:14 | 000,134,304 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NST\7DD02000.012\ccSetx86.sys -- (ccSet_NST)
DRV - [2012-10-04 02:19:14 | 000,134,304 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\ccSetx86.sys -- (ccSet_NAV)
DRV - [2012-09-07 03:05:14 | 000,394,656 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\symtdi.sys -- (SYMTDI)
DRV - [2012-09-07 02:48:08 | 000,175,264 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\Ironx86.sys -- (SymIRON)
DRV - [2012-09-07 02:40:51 | 000,032,888 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1402000.013\srtspx.sys -- (SRTSPX)
DRV - [2012-06-27 14:18:52 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012-01-09 16:28:20 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2012-01-09 16:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012-01-09 16:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012-01-09 16:28:20 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2012-01-09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012-01-09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-04-16 21:34:07 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2010-05-02 12:57:24 | 000,002,208 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nxsIO32.sys -- (nxsIO32)
DRV - [2010-03-25 20:06:30 | 000,099,728 | ---- | M] (Sun Microsystems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2010-03-25 20:06:26 | 000,031,824 | ---- | M] (Sun Microsystems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxUSB.sys -- (VBoxUSB)
DRV - [2010-02-23 10:51:14 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv)
DRV - [2010-02-23 10:51:14 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2009-12-08 19:19:12 | 000,114,432 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2009-12-07 18:53:12 | 000,102,912 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009-10-14 18:08:32 | 000,032,000 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2009-10-12 14:21:54 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009-03-31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008-04-14 00:06:44 | 000,120,192 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\pcmcia.sys -- (Pcmcia)
DRV - [2007-10-19 13:16:30 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007-10-12 03:00:42 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007-10-12 02:55:58 | 001,279,000 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI)
DRV - [2007-10-12 02:55:58 | 000,013,848 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2007-10-11 18:59:24 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2007-10-11 18:59:02 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2007-09-26 05:01:32 | 002,236,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32)
DRV - [2007-08-27 10:10:36 | 000,012,288 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2007-05-10 09:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005-08-05 22:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2005-07-22 09:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005-07-22 09:01:08 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005-07-22 09:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtCyD0CyDtCtCtDyDzyzztBtC0DtCtN0D0Tzu0CtByCzytN1L2XzutBtFtCtFtCtFtAtCtB&cr=456146339
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtCyD0CyDtCtCtDyDzyzztBtC0DtCtN0D0Tzu0CtByCzytN1L2XzutBtFtCtFtCtFtAtCtB&cr=456146339
IE - HKLM\..\SearchScopes\{1B2D8BA7-424C-0522-CEF0-5140A1754A67}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = http://search.softonic.com/MON00085/tb_v1?SearchSource=10&cc=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtCyD0CyDtCtCtDyDzyzztBtC0DtCtN0D0Tzu0CtByCzytN1L2XzutBtFtCtFtCtFtAtCtB&cr=456146339
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,Backup.Old.DefaultScope = {B56984FB-5C8C-4314-AEA1-A77C9699161E}
IE - HKCU\..\SearchScopes,DefaultScope = {B56984FB-5C8C-4314-AEA1-A77C9699161E}
IE - HKCU\..\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}: "URL" = http://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=AVB3DF&pc=AVBR
IE - HKCU\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ost&s={searchTerms}&f=4
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=100474&mntrId=4cb921d10000000000000013024f6012
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://supertoolbar.ask.com/redirect?client=ie&tb=FF&o=&src=crm&q={searchTerms}&locale={locale.underscore}
IE - HKCU\..\SearchScopes\{1B2D8BA7-424C-0522-CEF0-5140A1754A67}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7GGLD_pl&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{9C0AFA44-BF48-4629-A914-ED9DD6A67DDA}: "URL" = http://search.softonic.com/MON00085/tb_v1?q={searchTerms}&SearchSource=4&cc=
IE - HKCU\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKCU\..\SearchScopes\{B56984FB-5C8C-4314-AEA1-A77C9699161E}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1QzutDtDtCyD0CyDtCtCtDyDzyzztBtC0DtCtN0D0Tzu0CtByCzytN1L2XzutBtFtCtFtCtFtAtCtB&cr=456146339
IE - HKCU\..\SearchScopes\{B7B664DF-3AF9-4C8E-8148-F42BB7831D27}: "URL" = http://www.ask.com/web?o=15710&l=dis&q={searchTerms}
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "youtube.pl"
FF - prefs.js..extensions.enabledAddons: ffxtlbr@funmoods.com:1.5.1
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1
FF - prefs.js..extensions.enabledAddons: tabscope@xuldev.org:1.1.7
FF - prefs.js..extensions.enabledAddons: btpersonas@brandthunder.com:1.6.2.8
FF - prefs.js..extensions.enabledAddons: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:11.1.1.5 - 3
FF - prefs.js..extensions.enabledAddons: {F04D2D30-776C-4d02-8627-8E4385ECA58D}:2013.2.2.3
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.90
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:3.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..keyword.URL: "http://www.google.pl/search?hl=pl&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://www.google.pl/search?hl=pl&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\@vividas.com/npVividasPlayer: C:\Program Files\Vividas\Player\npVividasPlayer.dll ( )
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll File not found
FF - HKCU\Software\MozillaPlugins\@firebreath.googlecode.com/Riot5Plugin: C:\Documents and Settings\Konrad\Application Data\FBDevTeam\Riot5Plugin\npRiot5Plugin.dll (Firebreath Dev Team)
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files\OnLive\Plugin\npolgdet.dll File not found
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-02-23 10:28:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\IPSFFPlgn\ [2012-12-15 22:22:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D}: C:\Documents and Settings\All Users\Application Data\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.0.18\coFFPlgn\ [2012-12-26 14:45:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\support@2yourface.com: C:\Documents and Settings\Konrad\Application Data\2YourFace\ffextension [2012-12-24 15:16:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-11-17 19:02:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\support@2yourface.com: C:\Documents and Settings\Konrad\Application Data\2YourFace\ffextension [2012-12-24 15:16:38 | 000,000,000 | ---D | M]
 
[2010-08-08 11:08:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Extensions
[2010-04-30 18:54:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Extensions\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}
[2012-12-24 15:17:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions
[2010-08-26 11:34:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012-12-24 15:17:14 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2012-11-17 21:12:44 | 000,000,000 | ---D | M] ("Default Theme Engine - Personas Interactive") -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\btpersonas@brandthunder.com
[2011-11-13 20:43:34 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\ffxtlbr@babylon.com
[2012-09-25 19:55:45 | 000,000,000 | ---D | M] (Funmoods.com) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\ffxtlbr@funmoods.com
[2012-08-04 14:24:30 | 000,000,000 | ---D | M] (softonic.com) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\ffxtlbra@softonic.com
[2011-03-30 15:29:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\Firefox\Profiles\1tiyvoie.default\extensions\nostmp
[2010-04-30 18:54:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\SeaMonkey\Profiles\4qamp3l7.default\extensions
[2012-09-25 19:55:27 | 000,214,127 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\freehdsport@freehdsport.tv.xpi
[2012-07-31 12:59:18 | 000,221,380 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\gophoto@gophoto.it.xpi
[2012-08-09 13:09:59 | 000,216,359 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\OneClickDownloader@OneClickDownloader.com.xpi
[2012-11-22 19:32:54 | 000,022,483 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\scoreboard@ryan.net.xpi
[2012-08-04 14:24:30 | 000,057,698 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\tabscope@xuldev.org.xpi
[2012-11-17 19:23:59 | 000,199,396 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
[2012-11-30 19:00:54 | 000,804,627 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012-11-18 19:26:02 | 000,189,128 | ---- | M] () (No name found) -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2011-04-16 21:33:37 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\searchplugins\daemon-search.xml
[2012-11-17 19:04:19 | 000,002,329 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\searchplugins\Search.xml
[2012-03-11 21:33:20 | 000,002,060 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\searchplugins\softonic.xml
[2011-10-26 23:05:45 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\mozilla\firefox\profiles\1tiyvoie.default\searchplugins\sweetim.xml
[2012-11-17 19:02:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-15 22:22:59 | 000,000,000 | ---D | M] (Norton Vulnerability Protection) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\IPSFFPLGN
[2012-12-26 14:45:36 | 000,000,000 | ---D | M] (Norton Identity Safe Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.0.18\COFFPLGN
[2012-10-24 18:50:04 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-10-24 20:33:06 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-10-24 20:33:06 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-10-24 20:33:06 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-10-24 20:33:06 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-10-24 20:33:06 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-10-24 20:33:06 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: 
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: vShare.tv plug-in (Enabled) = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll
CHR - plugin: Norton Identity Safe (Enabled) = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2013.2.0.18_0\npcoplgn.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Riot5Plugin (Enabled) = C:\Documents and Settings\Konrad\Application Data\FBDevTeam\Riot5Plugin\npRiot5Plugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Nokia Suite Enabler Plugin (Enabled) = C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files\Veetle\plugins\npVeetle.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
CHR - plugin: Vividas Player Plugin (Enabled) = C:\Program Files\Vividas\Player\npVividasPlayer.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw_1165635.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
CHR - Extension: YouTube = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: SpeedDial = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj\4.0_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AdBlock = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.54_0\
CHR - Extension: vshare plugin = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Norton Identity Protection = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2013.2.0.18_0\
CHR - Extension: LiveVDO plugin = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\
CHR - Extension: GoPhoto.it = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.4_0\
CHR - Extension: Gmail = C:\Documents and Settings\Konrad\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2010-06-02 14:56:16 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\Konrad\Application Data\Complitly\Complitly.dll (SimplyGen)
O2 - BHO: (2YourFace Addon) - {1185823F-F22F-4027-80E5-4F68ACD5DE5E} - C:\Documents and Settings\Konrad\Application Data\2YourFace\bho.dll ()
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~1\Funmoods\1.5.23.22\bh\escort.dll File not found
O2 - BHO: (IE5BarLauncherBHO Class) - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O2 - BHO: (Norton Identity Protection) - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.2.0.18\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\softonic\1.5.11.5\bh\softonic.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\softonic\1.5.11.5\softonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O3 - HKLM\..\Toolbar: (no name) - {7C207950-B633-40B8-95B3-E3E08502BE44} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Identity Safe Toolbar) - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.2.0.18\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~1\Funmoods\1.5.23.22\escorTlbr.dll File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [RelevantKnowledge] C:\program files\relevantknowledge\rlvknlg.exe (TMRG,  Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\Sigmatel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)
O4 - HKCU..\Run: []  File not found
O4 - Startup: C:\Documents and Settings\Konrad\Start Menu\Programs\Startup\2YourFace_Updater.lnk = C:\Documents and Settings\Konrad\Application Data\2YourFace\Updater.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D65A8456-ACBA-40D1-ADC8-73A87750FD21}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D6D26279-1358-41F6-B67A-5F11FE124999}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Konrad\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Konrad\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-12-21 00:52:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-12-26 14:51:37 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Konrad\My Documents\OTL.exe
[2012-12-26 14:49:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RelevantKnowledge
[2012-12-24 15:17:00 | 000,000,000 | ---D | C] -- C:\Program Files\Complitly
[2012-12-24 15:17:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Konrad\Application Data\Complitly
[2012-12-24 15:16:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Konrad\Application Data\2YourFace
[2012-12-24 15:15:56 | 000,000,000 | ---D | C] -- C:\Program Files\RelevantKnowledge
[2012-12-24 15:15:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Konrad\Application Data\KC Softwares
[2012-12-24 15:15:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\KC Softwares
[2012-12-24 15:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\KC Softwares
[2012-12-24 15:05:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
[2012-12-23 23:01:15 | 043,615,751 | ---- | C] (ALLCinema Ltd.                                              ) -- C:\Documents and Settings\Konrad\My Documents\ALLBenchmark.exe
[2012-12-17 19:12:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Konrad\Recent
[2012-12-17 15:25:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Konrad\My Documents\NFS Most Wanted
[2012-12-16 21:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EA GAMES
[2012-12-16 21:46:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Konrad\Desktop\Prezentacja(radio &TV)
[2012-12-15 22:21:45 | 000,134,304 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NST\7DD02000.012\ccSetx86.sys
[2012-12-15 22:21:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NST
[2012-12-15 22:21:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NST\7DD02000.012
[2012-12-15 22:21:36 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Identity Safe
[2012-12-15 22:21:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Norton Identity Safe
[2012-12-15 22:21:30 | 000,142,496 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2012-12-15 22:21:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2012-12-15 22:21:30 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2012-12-15 22:21:04 | 000,394,656 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\symtdi.sys
[2012-12-15 22:21:04 | 000,350,368 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\symtdiv.sys
[2012-12-15 22:21:04 | 000,338,592 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\symnets.sys
[2012-12-15 22:21:04 | 000,021,400 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymELAM.sys
[2012-12-15 22:21:03 | 000,927,904 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymEFA.sys
[2012-12-15 22:21:03 | 000,586,400 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtsp.sys
[2012-12-15 22:21:03 | 000,368,288 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymDS.sys
[2012-12-15 22:21:03 | 000,175,264 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\Ironx86.sys
[2012-12-15 22:21:03 | 000,032,888 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtspx.sys
[2012-12-15 22:21:02 | 000,134,304 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1402000.013\ccSetx86.sys
[2012-12-15 22:20:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV
[2012-12-15 22:20:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV\1402000.013
[2012-12-15 22:20:14 | 000,000,000 | ---D | C] -- C:\Program Files\Norton AntiVirus
[2012-12-15 22:20:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Norton AntiVirus
[2012-12-15 22:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2012-12-15 22:16:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CPUID
[2012-12-15 22:16:12 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-12-26 14:51:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Konrad\My Documents\OTL.exe
[2012-12-26 14:45:33 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-26 14:45:33 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-436374069-1454471165-682003330-1003.job
[2012-12-26 14:45:25 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-12-26 14:45:23 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-12-25 23:23:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-12-25 23:08:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-25 21:11:36 | 000,186,368 | ---- | M] () -- C:\Documents and Settings\Konrad\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-12-25 21:10:57 | 000,018,650 | ---- | M] () -- C:\Documents and Settings\Konrad\My Documents\Twilight_Saga_Breaking_Dawn_The_-_Part_1_2011_(NAPISY-120528).NS.zip
[2012-12-25 21:02:01 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-436374069-1454471165-682003330-1003.job
[2012-12-25 19:50:42 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\KMPlayer.lnk
[2012-12-25 19:48:41 | 025,499,208 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\KMPlayer_3.4.0.59.exe
[2012-12-24 15:16:50 | 000,000,963 | ---- | M] () -- C:\Documents and Settings\Konrad\Start Menu\Programs\Startup\2YourFace_Updater.lnk
[2012-12-24 15:15:25 | 000,001,807 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\VideoInspector.lnk
[2012-12-24 15:15:24 | 000,000,909 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\Microsoft\Internet Explorer\Quick Launch\VideoInspector.lnk
[2012-12-24 15:05:20 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\Google Chrome.lnk
[2012-12-24 15:05:20 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\Konrad\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-24 15:02:47 | 000,763,416 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Konrad\My Documents\ChromeSetup.exe
[2012-12-24 11:38:38 | 000,311,954 | ---- | M] () -- C:\Documents and Settings\Konrad\My Documents\7447645CVR.mp3
[2012-12-24 11:38:07 | 000,230,400 | ---- | M] () -- C:\Documents and Settings\Konrad\My Documents\754195vBYW.mp3
[2012-12-24 11:37:35 | 000,223,504 | ---- | M] () -- C:\Documents and Settings\Konrad\My Documents\754201CQeY.mp3
[2012-12-23 23:02:39 | 043,615,751 | ---- | M] (ALLCinema Ltd.                                              ) -- C:\Documents and Settings\Konrad\My Documents\ALLBenchmark.exe
[2012-12-21 20:16:56 | 000,291,680 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-12-21 19:02:01 | 000,877,769 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\Cat.DB
[2012-12-20 19:31:09 | 003,227,648 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\LOL VI screen theme.mp3
[2012-12-16 21:55:46 | 000,000,348 | ---- | M] () -- C:\Documents and Settings\Konrad\Desktop\Skrót do speed.lnk
[2012-12-16 21:54:05 | 000,000,550 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Need for Speed™ Most Wanted.lnk
[2012-12-16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012-12-16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012-12-15 22:28:22 | 000,013,946 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\VT20121114.016
[2012-12-15 22:21:30 | 000,142,496 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2012-12-15 22:21:30 | 000,007,446 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2012-12-15 22:21:30 | 000,000,806 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2012-12-15 22:21:21 | 000,001,885 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Norton AntiVirus.LNK
[2012-12-15 22:16:13 | 000,000,717 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CPUID CPU-Z.lnk
[2012-12-12 20:23:36 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012-12-12 20:23:36 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012-12-09 19:20:49 | 000,285,576 | ---- | M] () -- C:\Documents and Settings\Konrad\My Documents\Przelicznik-jednostek.exe
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-12-25 19:50:42 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\KMPlayer.lnk
[2012-12-25 19:47:58 | 025,499,208 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\KMPlayer_3.4.0.59.exe
[2012-12-24 15:16:48 | 000,000,963 | ---- | C] () -- C:\Documents and Settings\Konrad\Start Menu\Programs\Startup\2YourFace_Updater.lnk
[2012-12-24 15:15:24 | 000,001,807 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\VideoInspector.lnk
[2012-12-24 15:15:24 | 000,000,909 | ---- | C] () -- C:\Documents and Settings\Konrad\Application Data\Microsoft\Internet Explorer\Quick Launch\VideoInspector.lnk
[2012-12-24 15:05:20 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\Konrad\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-12-24 15:05:19 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\Google Chrome.lnk
[2012-12-24 15:03:19 | 000,001,036 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-24 15:03:17 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-24 11:38:37 | 000,311,954 | ---- | C] () -- C:\Documents and Settings\Konrad\My Documents\7447645CVR.mp3
[2012-12-24 11:38:07 | 000,230,400 | ---- | C] () -- C:\Documents and Settings\Konrad\My Documents\754195vBYW.mp3
[2012-12-24 11:37:35 | 000,223,504 | ---- | C] () -- C:\Documents and Settings\Konrad\My Documents\754201CQeY.mp3
[2012-12-20 19:44:12 | 003,227,648 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\LOL VI screen theme.mp3
[2012-12-16 21:55:46 | 000,000,348 | ---- | C] () -- C:\Documents and Settings\Konrad\Desktop\Skrót do speed.lnk
[2012-12-16 21:54:04 | 000,000,550 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Need for Speed™ Most Wanted.lnk
[2012-12-15 22:28:56 | 000,013,946 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\VT20121114.016
[2012-12-15 22:22:08 | 000,877,769 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\Cat.DB
[2012-12-15 22:21:38 | 000,007,611 | R--- | C] () -- C:\WINDOWS\System32\drivers\NST\7DD02000.012\ccSetx86.cat
[2012-12-15 22:21:38 | 000,000,827 | R--- | C] () -- C:\WINDOWS\System32\drivers\NST\7DD02000.012\ccSetx86.inf
[2012-12-15 22:21:37 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NST\7DD02000.012\isolate.ini
[2012-12-15 22:21:30 | 000,007,446 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2012-12-15 22:21:30 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2012-12-15 22:21:21 | 000,001,885 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Norton AntiVirus.LNK
[2012-12-15 22:20:43 | 000,003,433 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymEFA.inf
[2012-12-15 22:20:43 | 000,002,851 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymDS.inf
[2012-12-15 22:20:43 | 000,001,468 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymNetV.inf
[2012-12-15 22:20:43 | 000,001,440 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymNet.inf
[2012-12-15 22:20:43 | 000,001,388 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtsp.inf
[2012-12-15 22:20:43 | 000,001,387 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtspx.inf
[2012-12-15 22:20:43 | 000,000,996 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\symELAM.inf
[2012-12-15 22:20:43 | 000,000,827 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\ccSetx86.inf
[2012-12-15 22:20:43 | 000,000,737 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\Iron.inf
[2012-12-15 22:20:20 | 000,009,103 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymVTcer.dat
[2012-12-15 22:20:19 | 000,009,670 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymELAM.cat
[2012-12-15 22:20:19 | 000,007,877 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\symnetv.cat
[2012-12-15 22:20:19 | 000,007,611 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\ccSetx86.cat
[2012-12-15 22:20:19 | 000,007,601 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymNet.cat
[2012-12-15 22:20:19 | 000,007,599 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymEFA.cat
[2012-12-15 22:20:19 | 000,007,597 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtspx.cat
[2012-12-15 22:20:19 | 000,007,593 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\SymDS.cat
[2012-12-15 22:20:19 | 000,007,593 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\srtsp.cat
[2012-12-15 22:20:19 | 000,007,593 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\iron.cat
[2012-12-15 22:20:19 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1402000.013\isolate.ini
[2012-12-15 22:16:13 | 000,000,717 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CPUID CPU-Z.lnk
[2012-12-09 19:20:11 | 000,285,576 | ---- | C] () -- C:\Documents and Settings\Konrad\My Documents\Przelicznik-jednostek.exe
[2012-09-25 19:55:59 | 000,384,844 | ---- | C] () -- C:\Documents and Settings\Konrad\Local Settings\Application Data\funmoods-speeddial.crx
[2012-09-25 19:55:54 | 000,031,465 | ---- | C] () -- C:\Documents and Settings\Konrad\Local Settings\Application Data\funmoods.crx
[2012-05-23 21:45:33 | 002,830,024 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2012-02-29 20:26:36 | 000,042,392 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2012-02-17 21:04:38 | 000,103,751 | ---- | C] () -- C:\WINDOWS\hpoins08.dat
[2012-02-17 21:04:38 | 000,004,445 | ---- | C] () -- C:\WINDOWS\hpomdl08.dat
[2012-02-17 21:04:31 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2012-02-15 11:44:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012-01-31 22:41:46 | 000,092,160 | ---- | C] () -- C:\WINDOWS\System32\lua5.1a.dll
[2011-12-11 15:22:22 | 000,000,101 | ---- | C] () -- C:\WINDOWS\System32\ud-boot-time.ini
[2011-09-19 08:07:46 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\bdmjpeg.dll
[2011-09-19 08:07:32 | 000,058,368 | ---- | C] () -- C:\WINDOWS\System32\bdmpegv.dll
[2011-09-14 17:41:04 | 000,000,412 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011-09-08 17:05:59 | 000,002,797 | ---- | C] () -- C:\Documents and Settings\Konrad\.recently-used.xbel
[2011-07-01 20:12:59 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2011-06-30 21:13:35 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\srvany.exe
[2011-02-22 20:39:04 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011-02-22 20:37:30 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-02-12 10:17:13 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2010-07-06 19:11:23 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Konrad\Application Data\PnkBstrK.sys
[2010-05-13 09:25:28 | 000,000,066 | ---- | C] () -- C:\Documents and Settings\Konrad\tmp.files0
[2010-01-08 20:47:57 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Konrad\Application Data\$_hpcst$.hpc
[2009-12-24 23:48:32 | 000,186,368 | ---- | C] () -- C:\Documents and Settings\Konrad\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-23 06:48:59 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Konrad\Local Settings\Application Data\fusioncache.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009-12-21 00:48:11 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 05:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 13:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:364682BC

< End of report >