OTL logfile created on: 2011-02-07 21:36:07 - Run 1 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Users\asus\Desktop\sprawdzanie systemu 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 57,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 74,52 Gb Total Space | 31,82 Gb Free Space | 42,70% Space Free | Partition Type: NTFS Drive D: | 206,96 Gb Total Space | 204,49 Gb Free Space | 98,81% Space Free | Partition Type: NTFS Drive G: | 10,84 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: ASUS-KOMPUTER | User Name: asus | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-02-07 17:07:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\sprawdzanie systemu\OTL.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-02-07 17:07:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\sprawdzanie systemu\OTL.exe MOD - [2009-07-14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2010-11-11 14:36:38 | 000,282,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv) SRV:[b]64bit:[/b] - [2010-11-11 14:36:38 | 000,012,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc) SRV:[b]64bit:[/b] - [2010-03-30 15:12:23 | 000,202,752 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:[b]64bit:[/b] - [2009-12-08 00:16:34 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Stopped] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2010-06-14 14:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2009-12-15 18:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Stopped] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv) SRV - [2009-06-16 01:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Stopped] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2007-02-05 10:11:18 | 000,075,320 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV) SRV - [2007-02-05 10:11:16 | 000,112,184 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service) SRV - [2006-12-14 02:21:20 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2006-12-14 02:02:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) SRV - [2006-12-14 01:46:16 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2005-11-14 01:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2010-10-24 21:25:38 | 000,072,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:[b]64bit:[/b] - [2010-04-13 11:15:03 | 000,135,560 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2010-03-30 15:46:01 | 006,657,536 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:[b]64bit:[/b] - [2010-03-30 14:23:33 | 000,195,584 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:[b]64bit:[/b] - [2010-03-04 10:53:01 | 000,075,816 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) DRV:[b]64bit:[/b] - [2010-02-26 13:33:40 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt) DRV:[b]64bit:[/b] - [2010-02-26 13:33:24 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:[b]64bit:[/b] - [2010-02-26 13:33:22 | 000,025,088 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64) DRV:[b]64bit:[/b] - [2010-02-26 13:33:22 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64) DRV:[b]64bit:[/b] - [2010-02-09 11:19:13 | 001,586,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:[b]64bit:[/b] - [2009-12-22 10:26:36 | 000,038,456 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter) DRV:[b]64bit:[/b] - [2009-10-07 08:13:33 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-10-07 08:13:33 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-08-20 03:41:37 | 001,800,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV:[b]64bit:[/b] - [2009-07-23 16:48:59 | 000,119,312 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV:[b]64bit:[/b] - [2009-07-20 10:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 01:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:[b]64bit:[/b] - [2009-06-10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:[b]64bit:[/b] - [2009-06-10 21:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009-05-13 17:07:20 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor) DRV:[b]64bit:[/b] - [2009-05-05 03:00:27 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO) DRV:[b]64bit:[/b] - [2009-02-13 10:02:52 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM) DRV:[b]64bit:[/b] - [2008-12-08 16:35:52 | 000,061,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:[b]64bit:[/b] - [2008-09-26 18:02:36 | 000,115,328 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard) DRV:[b]64bit:[/b] - [2008-08-28 11:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:[b]64bit:[/b] - [2008-05-24 01:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr) DRV:[b]64bit:[/b] - [2006-10-18 02:00:00 | 000,052,760 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV - [2009-07-03 01:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Stopped] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com IE - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: {3ED591BC-7CC7-495B-A526-B2431356EDC1}:2.0 FF - prefs.js..extensions.enabledItems: SignPlugin@pekao.pl:1.3.0.80 FF - prefs.js..network.proxy.type: 4 FF - HKLM\software\mozilla\Firefox\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2010-10-10 16:50:52 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011-01-30 23:15:41 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011-01-30 23:15:41 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\SeaMonkey\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2010-10-10 16:50:52 | 000,000,000 | ---D | M] [2010-09-27 19:33:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Extensions [2011-02-07 21:11:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\b2hg0xze.default\extensions [2010-10-11 19:35:37 | 000,000,000 | ---D | M] (PEKAO S.A. Sign Plugin) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\b2hg0xze.default\extensions\SignPlugin@pekao.pl [2010-09-27 19:32:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2010-10-10 16:50:52 | 000,000,000 | ---D | M] (Ad Muncher Browser Extensions) -- C:\PROGRAM FILES (X86)\AD MUNCHER\FIREFOXEXTENSION_2.0 [2010-09-14 22:29:36 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-09-14 22:29:36 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-09-14 22:29:36 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-09-14 22:29:36 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-09-14 22:29:36 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-09-14 22:29:36 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:[b]64bit:[/b] - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [ASUS WebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe () O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [Ad Muncher] C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Corp Pty Ltd) O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) O4 - HKLM..\Run: [Boingo Wi-Fi] C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk () O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] File not found O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] File not found O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000..\Run: [PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia) O4 - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\S-1-5-21-3585132031-3446123027-3216567721-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O18:[b]64bit:[/b] - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - G:\AutoRun.exe -- [ CDFS ] O32 - AutoRun File - [2007-11-07 16:41:52 | 000,000,047 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{0ae0df84-eb84-11df-8305-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{0ae0df84-eb84-11df-8305-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{0ae0df8a-eb84-11df-8305-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{0ae0df8a-eb84-11df-8305-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{0f430b45-ed87-11df-9fc7-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{0f430b45-ed87-11df-9fc7-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{0f430b4b-ed87-11df-9fc7-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{0f430b4b-ed87-11df-9fc7-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{2c49b716-0187-11e0-ba5c-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{2c49b716-0187-11e0-ba5c-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{2c49b71c-0187-11e0-ba5c-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{2c49b71c-0187-11e0-ba5c-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{40bd85fd-b9ce-11df-80f6-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{40bd85fd-b9ce-11df-80f6-806e6f6e6963}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{5d4934fe-ca74-11df-bce7-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{5d4934fe-ca74-11df-bce7-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{5d493505-ca74-11df-bce7-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{5d493505-ca74-11df-bce7-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{6028973f-226c-11e0-a51f-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{6028973f-226c-11e0-a51f-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{61336ee0-ca71-11df-9fbd-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{61336ee0-ca71-11df-9fbd-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{61336ef5-ca71-11df-9fbd-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{61336ef5-ca71-11df-9fbd-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{655d7517-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d7517-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{655d751b-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d751b-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{655d7535-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d7535-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{655d753a-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d753a-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{655d76bb-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d76bb-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{655d76d3-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d76d3-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{655d76d8-c8ba-11df-829e-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{655d76d8-c8ba-11df-829e-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{8bf01887-cbf8-11df-a06b-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{8bf01887-cbf8-11df-a06b-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{8c6bfe97-b1ef-11df-a618-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{8c6bfe97-b1ef-11df-a618-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{8c6bfeb0-b1ef-11df-a618-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{8c6bfeb0-b1ef-11df-a618-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{a84907ff-0051-11e0-a21a-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{a84907ff-0051-11e0-a21a-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{a8490809-0051-11e0-a21a-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{a8490809-0051-11e0-a21a-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{b42109ba-308e-11e0-80fe-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{b42109ba-308e-11e0-80fe-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{b42109be-308e-11e0-80fe-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{b42109be-308e-11e0-80fe-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{c1562cea-226e-11e0-856c-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{c1562cea-226e-11e0-856c-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{c1562cf8-226e-11e0-856c-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{c1562cf8-226e-11e0-856c-485b39e6fbce}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{c4c4e2ac-b208-11df-beb2-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{c4c4e2ac-b208-11df-beb2-485b39e6fbce}\Shell\AutoRun\command - "" = "I:\WD SmartWare.exe" autoplay=true O33 - MountPoints2\{e9e13bdf-f333-11df-8434-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{e9e13bdf-f333-11df-8434-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{f2582d41-c0e6-11df-a1cb-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{f2582d41-c0e6-11df-a1cb-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{fb6e8e22-cbf6-11df-8082-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{fb6e8e22-cbf6-11df-8082-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{feb11277-c989-11df-83f4-485b39e6fbce}\Shell - "" = AutoRun O33 - MountPoints2\{feb11277-c989-11df-83f4-485b39e6fbce}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008-04-24 14:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-02-07 20:42:02 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011-02-07 20:36:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR [2011-02-07 19:03:23 | 000,000,000 | ---D | C] -- C:\Users\asus\Desktop\sprawdzanie systemu [2011-02-06 20:04:18 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2011-02-06 20:04:17 | 000,000,000 | --SD | C] -- C:\ComboFix [2011-02-06 19:42:12 | 000,000,000 | ---D | C] -- C:\Qoobox [2011-02-06 00:26:25 | 000,000,000 | ---D | C] -- C:\Windows\csrss [2011-02-05 23:29:50 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\dvdcss [2011-02-05 21:21:32 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\Any DVD Converter Professional [2011-02-05 21:21:03 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\AnvSoft [2011-02-05 19:17:12 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\UltraGet [2011-02-05 19:17:11 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\UltraGet [2011-02-05 19:17:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft [2011-02-05 19:17:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnvSoft [2011-02-05 19:14:44 | 000,770,048 | ---- | C] (Gracenote) -- C:\Windows\SysWow64\CDDBUISony.dll [2011-02-05 19:14:44 | 000,655,360 | ---- | C] (Gracenote, Inc.) -- C:\Windows\SysWow64\CDDBControlSony.dll [2011-02-05 19:14:44 | 000,589,824 | ---- | C] (Gracenote) -- C:\Windows\SysWow64\CddbMusicIDSony.dll [2011-02-05 19:14:44 | 000,073,728 | ---- | C] (Gracenote) -- C:\Windows\SysWow64\CddbLinkSony.dll [2011-02-05 19:14:43 | 000,129,784 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxafs.dll [2011-02-05 19:14:43 | 000,118,520 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxinsi64.exe [2011-02-05 19:14:43 | 000,116,472 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxcpyi64.exe [2011-02-05 19:14:43 | 000,072,440 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxhpinst.exe [2011-02-05 19:14:43 | 000,064,760 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxinsa64.exe [2011-02-05 19:14:43 | 000,064,760 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxcpya64.exe [2011-02-05 19:14:43 | 000,052,760 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\PxHlpa64.sys [2011-02-05 19:14:43 | 000,003,584 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys [2011-02-05 19:14:43 | 000,003,584 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys [2011-02-05 19:14:42 | 001,329,912 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxsfs.dll [2011-02-05 19:14:42 | 000,527,096 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\px.dll [2011-02-05 19:14:42 | 000,498,424 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxdrv.dll [2011-02-05 19:14:42 | 000,379,640 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxwave.dll [2011-02-05 19:14:42 | 000,183,032 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\pxmas.dll [2011-02-05 19:14:42 | 000,039,672 | ---- | C] (Sonic Solutions) -- C:\Windows\SysWow64\vxblock.dll [2011-02-05 19:13:09 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Iosubsys [2011-02-05 13:50:38 | 000,000,000 | ---D | C] -- C:\Users\asus\Desktop\Zdjęcia Barcelona [2011-01-30 23:05:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client [2011-01-30 23:04:54 | 000,000,000 | ---D | C] -- C:\Windows\Temp082BB8CE-B4B3-AA2D-C0F4-574E66995C50-Signatures [2011-01-30 23:04:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2011-01-30 23:04:12 | 000,374,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys [2011-01-17 20:23:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLAY ONLINE [2011-01-17 20:23:04 | 000,691,712 | ---- | C] (DiBcom SA) -- C:\Windows\SysNative\drivers\mod7700.sys [2011-01-17 20:23:04 | 000,133,632 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbnet.sys [2011-01-17 20:23:04 | 000,115,328 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys [2011-01-17 20:23:04 | 000,029,696 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysNative\drivers\ewdcsc.sys [2011-01-17 20:22:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PLAY ONLINE [2011-01-15 17:23:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Codemasters [2011-01-15 17:23:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters [2011-01-14 19:08:26 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Monolith Productions [2011-01-14 19:02:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra [2011-01-14 19:02:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sierra [2011-01-11 19:59:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games [5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-02-07 21:35:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-02-07 21:34:58 | 1608,904,704 | -HS- | M] () -- C:\hiberfil.sys [2011-02-07 21:33:24 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011-02-07 20:47:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011-02-07 18:40:41 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-02-07 18:40:41 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-02-06 12:47:14 | 001,529,940 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011-02-06 12:47:14 | 000,689,928 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2011-02-06 12:47:14 | 000,609,290 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011-02-06 12:47:14 | 000,132,382 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2011-02-06 12:47:14 | 000,104,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011-02-05 22:56:36 | 000,001,898 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini [2011-02-05 22:56:34 | 000,001,211 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini [2011-02-05 21:21:11 | 000,001,139 | ---- | M] () -- C:\Users\asus\Desktop\Any DVD Converter Professional.lnk [2011-02-05 19:17:08 | 000,001,218 | ---- | M] () -- C:\Users\asus\Desktop\UltraGet Video Downloader.lnk [2011-02-05 19:14:46 | 000,001,923 | ---- | M] () -- C:\Users\Public\Desktop\SonicStage.lnk [2011-01-30 23:05:56 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif [2011-01-30 23:05:15 | 001,549,394 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-01-30 22:52:15 | 000,001,980 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2011-01-17 20:23:17 | 000,001,013 | ---- | M] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk [2011-01-17 20:03:21 | 000,427,600 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2011-01-15 17:34:06 | 000,002,080 | ---- | M] () -- C:\Users\Public\Desktop\ToCA Race Driver 3.lnk [2011-01-14 19:13:46 | 000,001,455 | ---- | M] () -- C:\Users\asus\Desktop\FEAR.lnk [5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-06 20:23:06 | 000,001,427 | ---- | C] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk [2011-02-06 20:23:06 | 000,001,421 | ---- | C] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2011-02-05 21:21:11 | 000,001,139 | ---- | C] () -- C:\Users\asus\Desktop\Any DVD Converter Professional.lnk [2011-02-05 19:17:08 | 000,001,218 | ---- | C] () -- C:\Users\asus\Desktop\UltraGet Video Downloader.lnk [2011-02-05 19:14:46 | 000,001,923 | ---- | C] () -- C:\Users\Public\Desktop\SonicStage.lnk [2011-02-05 19:14:44 | 000,532,480 | ---- | C] () -- C:\Windows\SysWow64\CddbPlaylist2Sony.dll [2011-01-30 23:05:56 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif [2011-01-30 23:05:15 | 001,549,394 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-01-17 20:23:17 | 000,001,013 | ---- | C] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk [2011-01-15 17:34:06 | 000,002,080 | ---- | C] () -- C:\Users\Public\Desktop\ToCA Race Driver 3.lnk [2011-01-14 19:13:46 | 000,001,455 | ---- | C] () -- C:\Users\asus\Desktop\FEAR.lnk [2010-09-13 16:27:21 | 000,000,418 | ---- | C] () -- C:\Windows\ODBC.INI [2010-08-27 17:34:15 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010-06-25 16:41:48 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010-06-25 16:41:48 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2010-06-25 16:41:47 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2010-06-25 16:41:46 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2010-06-25 16:41:25 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2010-05-29 19:53:28 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\LogonStart.dll [2010-05-29 19:29:41 | 000,131,368 | ---- | C] () -- C:\ProgramData\FullRemove.exe [2010-05-29 19:15:29 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log [2010-05-29 19:15:04 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log [2009-08-19 09:33:09 | 000,000,232 | ---- | C] () -- C:\Windows\OOBEPlayer.ini [2009-07-29 06:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini [2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2006-05-19 04:39:57 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini [color=#E56717]========== LOP Check ==========[/color] [2011-02-05 21:21:03 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AnvSoft [2010-06-25 16:31:42 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus WebStorage [2010-11-09 01:17:38 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite [2010-08-28 00:47:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Gadu-Gadu 10 [2010-09-02 00:38:33 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Nokia [2010-06-25 16:50:08 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\OpenOffice.org [2010-09-02 00:38:50 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\PC Suite [2011-02-05 20:32:56 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\UltraGet [2010-08-30 19:12:49 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Western Digital [2009-07-14 06:08:49 | 000,029,074 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 178 bytes -> C:\ProgramData\Temp:FB1B13D8 < End of report >