OTL logfile created on: 2011-04-16 20:07:32 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = D:\OTL
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 70,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): E:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 55,74 Gb Total Space | 37,83 Gb Free Space | 67,87% Space Free | Partition Type: NTFS
Drive D: | 18,58 Gb Total Space | 2,70 Gb Free Space | 14,55% Space Free | Partition Type: NTFS
Drive E: | 34,18 Gb Total Space | 14,65 Gb Free Space | 42,86% Space Free | Partition Type: NTFS
Drive G: | 14,91 Gb Total Space | 2,83 Gb Free Space | 19,02% Space Free | Partition Type: FAT32
 
Computer Name: KACPER1 | User Name: Kacper | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-04-16 20:04:08 | 000,580,608 | ---- | M] (OldTimer Tools) -- D:\OTL\OTL.exe
PRC - [2011-02-08 18:21:52 | 001,114,040 | ---- | M] (MusicLab, LLC) -- E:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
PRC - [2009-09-24 06:50:10 | 003,520,256 | ---- | M] (Ghisler Software GmbH) -- E:\Program Files\TC UP\TOTALCMD.EXE
PRC - [2009-02-06 14:23:36 | 000,727,720 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-02-06 14:23:12 | 002,021,400 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-03-20 07:25:43 | 000,025,256 | ---- | M] () -- E:\Program Files\Lexmark 3600-4600 Series\lxdxmsdmon.exe
PRC - [2008-03-20 07:25:42 | 000,668,328 | ---- | M] () -- E:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
PRC - [2008-02-28 01:53:25 | 000,594,600 | ---- | M] ( ) -- E:\WINDOWS\system32\lxdxcoms.exe
PRC - [2008-01-22 10:00:30 | 004,624,384 | ---- | M] () -- E:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
PRC - [2007-11-19 10:18:56 | 000,024,576 | ---- | M] (Vodafone) -- E:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\DeviceListener.exe
PRC - [2007-11-19 10:18:54 | 002,711,552 | ---- | M] (Vodafone) -- E:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
PRC - [2007-11-19 10:18:24 | 000,208,896 | ---- | M] (Vodafone) -- E:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\ConAppM.exe
PRC - [2007-10-25 16:41:18 | 000,413,696 | ---- | M] (Chicony) -- E:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
PRC - [2007-04-03 05:49:44 | 000,118,784 | ---- | M] (Bytemobile, Inc.) -- E:\WINDOWS\system32\bmwebcfg.exe
PRC - [2007-04-03 05:49:16 | 000,339,968 | ---- | M] (Bytemobile, Inc.) -- E:\Program Files\Vodafone\Vodafone Mobile Connect\Optimization Client\bmctl.exe
PRC - [2007-03-29 15:41:26 | 000,222,128 | ---- | M] (Macrovision Corporation) -- E:\Documents and Settings\All Users\Dane aplikacji\Macrovision\FLEXnet Connect\6\ISUSPM.exe
PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-04-16 20:04:08 | 000,580,608 | ---- | M] (OldTimer Tools) -- D:\OTL\OTL.exe
MOD - [2006-08-25 07:51:14 | 001,054,208 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] --  -- (VMCService)
SRV - File not found [Auto | Stopped] --  -- (VmbService)
SRV - File not found [Auto | Stopped] --  -- (NOD32krn)
SRV - File not found [Disabled | Stopped] --  -- (HidServ)
SRV - [2009-02-06 14:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- E:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-02-06 14:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- E:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-08-07 11:17:30 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-02-28 01:53:25 | 000,594,600 | ---- | M] ( ) [Auto | Running] -- E:\WINDOWS\System32\lxdxcoms.exe -- (lxdx_device)
SRV - [2008-02-28 01:53:22 | 000,098,984 | ---- | M] () [Auto | Stopped] -- E:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdxserv.exe -- (lxdxCATSCustConnectService)
SRV - [2007-04-03 05:49:44 | 000,118,784 | ---- | M] (Bytemobile, Inc.) [Auto | Running] -- E:\WINDOWS\System32\bmwebcfg.exe -- (bmwebcfg)
SRV - [2001-10-26 18:30:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- E:\WINDOWS\System32\regedt32.exe -- (.EsetTrialReset)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2010-03-31 15:58:48 | 000,342,784 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2010-03-01 18:35:22 | 000,080,000 | ---- | M] (Vodafone) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\vodafone_K3805-z_dc_enum.sys -- (vodafone_K3805-z_dc_enum)
DRV - [2010-02-11 12:08:25 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010-01-28 13:34:32 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009-02-06 14:24:24 | 000,093,336 | ---- | M] (ESET) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009-02-06 14:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-02-06 14:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- E:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008-12-08 18:21:20 | 000,110,080 | R--- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2008-12-08 18:21:20 | 000,105,344 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2008-12-08 18:21:20 | 000,104,960 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2008-12-08 18:21:20 | 000,104,960 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2008-12-08 18:21:20 | 000,007,680 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\massfilter.sys -- (massfilter)
DRV - [2008-10-27 16:10:29 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2008-10-16 20:12:57 | 000,611,064 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-10-16 18:18:35 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Stopped] -- E:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2008-10-16 18:18:34 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2008-10-02 18:01:46 | 004,878,336 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-09-26 18:01:12 | 000,113,664 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2008-09-26 18:01:00 | 000,101,376 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008-05-19 10:46:04 | 000,108,032 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-12-17 10:45:20 | 000,018,432 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2007-12-05 06:26:40 | 002,782,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007-10-17 22:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\XAudio.sys -- (XAudio)
DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-04-03 05:46:08 | 000,018,816 | ---- | M] (Bytemobile, Inc.) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\tcpipBM.sys -- (tcpipBM)
DRV - [2006-01-13 14:00:52 | 000,015,872 | ---- | M] (Flint Incorporation) [Kernel | System | Running] -- E:\WINDOWS\System32\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV - [2004-08-03 21:59:52 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb&sysid=2
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.pl/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb&sysid=2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "BearShare Web Search"
FF - prefs.js..browser.search.order.1: "BearShare Web Search"
FF - prefs.js..browser.search.selectedEngine: "BearShare Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.bearshare.com/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.3
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.2
FF - prefs.js..extensions.enabledItems: cfxHelper@Triton:1.0
FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.3
FF - prefs.js..extensions.enabledItems: {af5514fc-7603-4cec-9894-f07f3d8672a5}:1.5
FF - prefs.js..extensions.enabledItems: {64161300-e22b-11db-8314-0800200c9a66}:0.9.5
FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
FF - prefs.js..extensions.enabledItems: {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}:4.1.0.00
FF - prefs.js..extensions.enabledItems: {e213bb8f-8ebd-11db-96b7-005056c00008}:3.0.0.87
FF - prefs.js..extensions.enabledItems: {989e9382-d540-4189-88d1-fc54a949a387}:0.8.6
FF - prefs.js..extensions.enabledItems: cfxec@Triton:2.0.1
FF - prefs.js..extensions.enabledItems: cfxe@Triton:3.6
FF - prefs.js..extensions.enabledItems: {b41cb5f0-2e52-11de-8c30-0800200c9a66}:2.0.9
FF - prefs.js..extensions.enabledItems: {05e38d80-09c1-11dd-bd0b-0800200c9a66}:2.3.3
FF - prefs.js..extensions.enabledItems: camifox@altmusictv.com:3.6.1
FF - prefs.js..keyword.URL: "http://search.bearshare.com/web?src=ffb&systemid=2&q="
 
FF - HKLM\software\mozilla\Firefox\extensions\\FFToolbar@bitdefender.com: E:\Program Files\BitDefender\BitDefender 2010\bdaphffext\
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2010-09-09 20:54:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2010-02-21 14:13:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.14\Extensions\\Components: E:\Program Files\mozilla.org\SeaMonkey\Components [2010-03-07 01:25:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.14\Extensions\\Plugins: E:\Program Files\mozilla.org\SeaMonkey\Plugins [2010-02-20 21:46:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: E:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-10-10 15:46:05 | 000,000,000 | ---D | M]
 
[2010-02-20 20:15:56 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Extensions
[2011-04-12 15:20:19 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions
[2010-02-20 23:16:35 | 000,000,000 | ---D | M] ("ColorfulTabs") -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010-02-20 23:29:21 | 000,000,000 | ---D | M] (Elementary) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{05e38d80-09c1-11dd-bd0b-0800200c9a66}
[2010-02-20 23:29:21 | 000,000,000 | ---D | M] (Speed Dial) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}
[2010-02-20 23:05:54 | 000,000,000 | ---D | M] (FennecFox) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{989e9382-d540-4189-88d1-fc54a949a387}
[2010-02-20 22:42:04 | 000,000,000 | ---D | M] (ImTranslator) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2010-02-20 23:29:21 | 000,000,000 | ---D | M] (Currency Converter) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{af5514fc-7603-4cec-9894-f07f3d8672a5}
[2010-02-20 23:26:12 | 000,000,000 | ---D | M] (Black Stratini) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{b41cb5f0-2e52-11de-8c30-0800200c9a66}
[2011-04-03 17:54:52 | 000,000,000 | ---D | M] (MediaBar) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}
[2010-02-20 23:12:37 | 000,000,000 | ---D | M] (myFireFox) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{e213bb8f-8ebd-11db-96b7-005056c00008}
[2010-02-20 23:16:35 | 000,000,000 | ---D | M] (FoxTab) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2010-02-20 23:29:21 | 000,000,000 | ---D | M] (Camifox) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\camifox@altmusictv.com
[2010-02-20 23:16:35 | 000,000,000 | ---D | M] (Chromifox Extreme) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\cfxe@Triton
[2010-02-20 23:08:18 | 000,000,000 | ---D | M] (Chromifox Extreme Carbon) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\cfxec@Triton
[2010-02-20 23:16:35 | 000,000,000 | ---D | M] (Chromifox Companion) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\cfxHelper@Triton
[2010-02-20 23:12:35 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\extensions\{e213bb8f-8ebd-11db-96b7-005056c00008}\chrome\mozapps\extensions
[2010-09-20 21:44:46 | 000,001,737 | ---- | M] () -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\searchplugins\ask.uk.xml
[2010-09-14 13:48:25 | 000,002,506 | ---- | M] () -- E:\Documents and Settings\Kacper\Dane aplikacji\Mozilla\Firefox\Profiles\boy21nvj.default\searchplugins\BearShareWebSearch.xml
[2011-04-03 17:57:02 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
[2011-04-03 17:55:03 | 000,000,000 | ---D | M] (DataMngr) -- E:\PROGRAM FILES\BEARSHARE APPLICATIONS\MEDIABAR\DATAMNGR\FIREFOXEXTENSION
[2008-10-27 18:46:47 | 000,000,000 | ---D | M] (Java Quick Starter) -- E:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-01-16 02:08:36 | 000,002,767 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-09-14 13:48:25 | 000,002,506 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml
[2010-01-16 02:08:36 | 000,001,406 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-16 02:08:36 | 000,000,917 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-16 02:08:36 | 000,000,858 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-16 02:08:36 | 000,001,183 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-16 02:08:36 | 000,001,683 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - E:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - E:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - E:\Program Files\BearShare Applications\MediaBar\ToolBar\bsdtxmltbpi.dll ()
O3 - HKLM\..\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - E:\Program Files\BearShare Applications\MediaBar\ToolBar\bsdtxmltbpi.dll ()
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] E:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AtiPTA] E:\WINDOWS\System32\atiptaxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [Camera Assistant Software] E:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony)
O4 - HKLM..\Run: [DATAMNGR] E:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe (MusicLab, LLC)
O4 - HKLM..\Run: [egui] E:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [lxdxamon] E:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe ()
O4 - HKLM..\Run: [lxdxmon.exe] E:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKCU..\Run: [DriverMax]  File not found
O4 - HKCU..\Run: [DriverMax_RESTART]  File not found
O4 - HKCU..\Run: [ISUSPM] E:\Documents and Settings\All Users\Dane aplikacji\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [MobileConnect.EXE] E:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe (Vodafone)
O4 - HKCU..\RunOnce: [Shockwave Updater]  File not found
O4 - Startup: E:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = E:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre6\bin\npjpi160_10.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - E:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - E:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - E:\WINDOWS\System32\imon.dll (Eset )
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Java Plug-in 1.6.0_10)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (E:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll) - E:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll (MusicLab, LLC)
O20 - AppInit_DLLs: (E:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll) - E:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - E:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 () - http://thumbs3.ebaystatic.com/pict/3601386070378080_3.jpg
O24 - Desktop Components:1 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{10bb4098-129a-11df-8329-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{10bb4098-129a-11df-8329-001644eec70d}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{28d08c3a-65e9-11e0-8620-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{28d08c3a-65e9-11e0-8620-001644eec70d}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{28d08c3c-65e9-11e0-8620-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{28d08c3c-65e9-11e0-8620-001644eec70d}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{28d08c3d-65e9-11e0-8620-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{28d08c3d-65e9-11e0-8620-001644eec70d}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{28d08c40-65e9-11e0-8620-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{28d08c40-65e9-11e0-8620-001644eec70d}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{29cad3e2-ae40-11dd-8017-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{29cad3e2-ae40-11dd-8017-001644eec70d}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{369a6d42-c3da-11df-84dc-aa106b219611}\Shell - "" = AutoRun
O33 - MountPoints2\{369a6d42-c3da-11df-84dc-aa106b219611}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{369a6d43-c3da-11df-84dc-aa106b219611}\Shell - "" = AutoRun
O33 - MountPoints2\{369a6d43-c3da-11df-84dc-aa106b219611}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{40270f64-c975-11df-84fb-ae07474f6050}\Shell - "" = AutoRun
O33 - MountPoints2\{40270f64-c975-11df-84fb-ae07474f6050}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{40270f65-c975-11df-84fb-ae07474f6050}\Shell - "" = AutoRun
O33 - MountPoints2\{40270f65-c975-11df-84fb-ae07474f6050}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{41903f5a-2227-11e0-85a1-a8ffb337905d}\Shell - "" = AutoRun
O33 - MountPoints2\{41903f5a-2227-11e0-85a1-a8ffb337905d}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{52375ebe-c33c-11df-84d8-997c1c6477ab}\Shell - "" = AutoRun
O33 - MountPoints2\{52375ebe-c33c-11df-84d8-997c1c6477ab}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{5b1ceab3-d6e9-11df-8510-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{5b1ceab3-d6e9-11df-8510-001644eec70d}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{648aa3d2-a453-11dd-8000-001e334ed0c7}\Shell - "" = AutoRun
O33 - MountPoints2\{648aa3d2-a453-11dd-8000-001e334ed0c7}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{772225de-10e4-11df-8321-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{772225de-10e4-11df-8321-001644eec70d}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{96ad3066-c42f-11df-84e6-91292a9a4537}\Shell - "" = AutoRun
O33 - MountPoints2\{96ad3066-c42f-11df-84e6-91292a9a4537}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{96ad3068-c42f-11df-84e6-81b7c975073f}\Shell - "" = AutoRun
O33 - MountPoints2\{96ad3068-c42f-11df-84e6-81b7c975073f}\Shell\AutoRun\command - "" = I:\AutoRun.exe
O33 - MountPoints2\{96ad306c-c42f-11df-84e6-81b7c975073f}\Shell - "" = AutoRun
O33 - MountPoints2\{96ad306c-c42f-11df-84e6-81b7c975073f}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{a3452a0c-c4f4-11df-84eb-ead3ab6bfe8a}\Shell - "" = AutoRun
O33 - MountPoints2\{a3452a0c-c4f4-11df-84eb-ead3ab6bfe8a}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{a9510ff6-9589-11de-8228-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{a9510ff6-9589-11de-8228-001644eec70d}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{b0227544-0f6a-11df-8309-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{b0227544-0f6a-11df-8309-001644eec70d}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{b06707e0-c40f-11df-84e0-99708e8d98f2}\Shell - "" = AutoRun
O33 - MountPoints2\{b06707e0-c40f-11df-84e0-99708e8d98f2}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{b06707e1-c40f-11df-84e0-99708e8d98f2}\Shell - "" = AutoRun
O33 - MountPoints2\{b06707e1-c40f-11df-84e0-99708e8d98f2}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{b6bfa85c-c33a-11df-84d7-8fb203c84f9f}\Shell - "" = AutoRun
O33 - MountPoints2\{b6bfa85c-c33a-11df-84d7-8fb203c84f9f}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{b6bfa85d-c33a-11df-84d7-8fb203c84f9f}\Shell - "" = AutoRun
O33 - MountPoints2\{b6bfa85d-c33a-11df-84d7-8fb203c84f9f}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{c8b13560-c3c3-11df-84db-fde10ca6d283}\Shell - "" = AutoRun
O33 - MountPoints2\{c8b13560-c3c3-11df-84db-fde10ca6d283}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{c8b13561-c3c3-11df-84db-fde10ca6d283}\Shell - "" = AutoRun
O33 - MountPoints2\{c8b13561-c3c3-11df-84db-fde10ca6d283}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O33 - MountPoints2\{c8b13562-c3c3-11df-84db-fde10ca6d283}\Shell - "" = AutoRun
O33 - MountPoints2\{c8b13562-c3c3-11df-84db-fde10ca6d283}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{d8ee48e6-c32d-11df-84d1-001644eec70d}\Shell\Option1\Command - "" = HBCD\Wintools\HBCDMenu.exe
O33 - MountPoints2\{ffa11e9c-ae3e-11dd-8016-001644eec70d}\Shell - "" = AutoRun
O33 - MountPoints2\{ffa11e9c-ae3e-11dd-8016-001644eec70d}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-04-15 22:03:13 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011-04-15 20:51:08 | 000,273,024 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\bthport.sys
[2011-04-15 20:21:39 | 000,293,376 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\browserchoice.exe
[2011-04-13 17:22:23 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Menu Start\Programy\Mobile Partner
[2011-04-13 17:21:58 | 000,621,056 | R--- | C] (DiBcom SA) -- E:\WINDOWS\System32\drivers\mod7700.sys
[2011-04-13 17:21:58 | 000,113,664 | R--- | C] (Huawei Technologies Co., Ltd.) -- E:\WINDOWS\System32\drivers\ewusbnet.sys
[2011-04-13 17:21:58 | 000,101,376 | R--- | C] (Huawei Technologies Co., Ltd.) -- E:\WINDOWS\System32\drivers\ewusbmdm.sys
[2011-04-13 17:21:58 | 000,024,448 | R--- | C] (Huawei Tech. Co., Ltd.) -- E:\WINDOWS\System32\drivers\ewdcsc.sys
[2011-04-13 17:01:44 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dane aplikacji\2C1D4
[2011-04-13 16:58:35 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Menu Start\Programy\Your Uninstaller 2010
[2011-04-13 16:41:08 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Dane aplikacji\Malwarebytes
[2011-04-13 16:41:00 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011-04-13 16:41:00 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2011-04-13 16:40:59 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2011-04-13 16:40:56 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2011-04-13 16:40:55 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2011-04-03 17:54:51 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Dane aplikacji\mediabarbs
[2011-04-03 17:54:22 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Moje dokumenty\My Received Files
[2011-04-03 17:54:22 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\BearShare
[2011-04-03 17:54:22 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Moje dokumenty\BearShare
[2011-04-03 17:53:33 | 000,000,000 | ---D | C] -- E:\Program Files\BearShare Applications
[2011-04-03 17:53:33 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Menu Start\Programy\BearShare
[2011-04-03 17:53:33 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dane aplikacji\BearShare
[2011-04-03 17:49:56 | 000,000,000 | -H-D | C] -- E:\Documents and Settings\All Users\Dane aplikacji\{888803CF-24CB-4360-955A-9B6EE8BEEDC1}
[2011-04-03 17:49:20 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\PackageAware
[2008-11-15 19:26:56 | 000,438,272 | ---- | C] ( ) -- E:\WINDOWS\System32\LXDXhcp.dll
[2008-11-15 19:24:40 | 001,105,920 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxserv.dll
[2008-11-15 19:24:40 | 000,843,776 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxusb1.dll
[2008-11-15 19:24:40 | 000,053,248 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxprox.dll
[2008-11-15 19:24:39 | 000,663,552 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxhbn3.dll
[2008-11-15 19:24:39 | 000,647,168 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxpmui.dll
[2008-11-15 19:24:39 | 000,364,544 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxinpa.dll
[2008-11-15 19:24:39 | 000,339,968 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxiesc.dll
[2008-11-15 19:24:39 | 000,320,168 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxih.exe
[2008-11-15 19:24:38 | 000,851,968 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxcomc.dll
[2008-11-15 19:24:38 | 000,594,600 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxcoms.exe
[2008-11-15 19:24:38 | 000,376,832 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxcomm.dll
[2008-11-15 19:24:37 | 000,365,224 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxcfg.exe
[2008-11-15 19:24:36 | 000,569,344 | ---- | C] ( ) -- E:\WINDOWS\System32\lxdxlmpm.dll
[3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[1 E:\Documents and Settings\All Users\*.tmp files -> E:\Documents and Settings\All Users\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-04-16 19:58:25 | 000,000,300 | ---- | M] () -- E:\WINDOWS\tasks\BearShareNAG.job
[2011-04-16 19:58:13 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2011-04-16 17:18:10 | 000,002,259 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-04-16 17:16:48 | 000,001,513 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Wybór przeglądarki.lnk
[2011-04-16 17:14:02 | 000,124,520 | ---- | M] () -- E:\WINDOWS\System32\FNTCACHE.DAT
[2011-04-15 22:05:25 | 000,001,374 | ---- | M] () -- E:\WINDOWS\imsins.BAK
[2011-04-13 17:22:23 | 000,000,764 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Mobile Partner.lnk
[2011-04-13 16:58:36 | 000,000,771 | ---- | M] () -- E:\Documents and Settings\Kacper\Pulpit\Your Uninstaller!.lnk
[2011-04-13 16:41:00 | 000,000,794 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-04-13 15:45:52 | 000,002,206 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2011-04-04 21:06:01 | 000,000,284 | ---- | M] () -- E:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011-04-03 17:54:10 | 000,000,146 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Emoticons for your messenger!.url
[2011-04-02 20:28:40 | 000,020,992 | ---- | M] () -- E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-03-24 22:36:46 | 000,002,557 | ---- | M] () -- E:\Documents and Settings\All Users\Pulpit\Vodafone Mobile Connect.lnk
[3 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[1 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[1 E:\Documents and Settings\All Users\*.tmp files -> E:\Documents and Settings\All Users\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-04-16 17:16:48 | 000,001,513 | ---- | C] () -- E:\Documents and Settings\All Users\Pulpit\Wybór przeglądarki.lnk
[2011-04-14 22:52:27 | 000,001,374 | ---- | C] () -- E:\WINDOWS\imsins.BAK
[2011-04-13 17:22:23 | 000,000,764 | ---- | C] () -- E:\Documents and Settings\All Users\Pulpit\Mobile Partner.lnk
[2011-04-13 16:58:36 | 000,000,771 | ---- | C] () -- E:\Documents and Settings\Kacper\Pulpit\Your Uninstaller!.lnk
[2011-04-13 16:41:00 | 000,000,794 | ---- | C] () -- E:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2011-04-03 17:55:34 | 000,000,300 | ---- | C] () -- E:\WINDOWS\tasks\BearShareNAG.job
[2011-04-03 17:54:10 | 000,000,146 | ---- | C] () -- E:\Documents and Settings\All Users\Pulpit\Emoticons for your messenger!.url
[2011-03-05 20:08:08 | 000,451,072 | ---- | C] () -- E:\WINDOWS\System32\ISSRemoveSP.exe
[2010-09-19 21:57:02 | 000,071,259 | ---- | C] () -- E:\WINDOWS\Huawei ModemsUninstall.exe
[2010-09-03 14:08:43 | 000,000,025 | ---- | C] () -- E:\Documents and Settings\Kacper\Dane aplikacji\bdfvconp.ini
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\phar_unmip.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\phar_histprot.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_webproxy.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_video.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_tabloids.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_socialnetworks.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_searchengines.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_regionaltlds.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_pornography.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_onlineshop.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_onlinepay.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_onlinedating.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_news.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_im.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_illegal.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_hate.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_games.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_gambling.dat
[2010-08-26 19:31:54 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pc_drugs.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\wsbl.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\ph_white.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\ph_summ.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\ph_black.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pcwords2.dat
[2010-08-24 20:58:16 | 000,000,000 | ---- | C] () -- E:\WINDOWS\System32\pcwords.dat
[2010-08-22 21:06:32 | 000,000,016 | ---- | C] () -- E:\WINDOWS\System32\asdict.dat
[2010-08-22 21:06:32 | 000,000,004 | ---- | C] () -- E:\WINDOWS\System32\aspdict-en.dat
[2010-08-22 14:08:15 | 000,000,132 | ---- | C] () -- E:\WINDOWS\System32\rezumatenoi.dat
[2009-05-29 21:37:20 | 000,000,050 | ---- | C] () -- E:\WINDOWS\System32\imon1.dat
[2009-02-02 21:51:59 | 000,000,335 | ---- | C] () -- E:\WINDOWS\nsreg.dat
[2009-02-02 21:51:52 | 000,118,784 | ---- | C] () -- E:\WINDOWS\SeaMonkeyUninstall.exe
[2009-02-02 21:51:47 | 000,118,784 | ---- | C] () -- E:\WINDOWS\GREUninstall.exe
[2009-02-02 21:51:45 | 000,008,653 | ---- | C] () -- E:\WINDOWS\mozver.dat
[2008-11-26 22:01:06 | 000,020,992 | ---- | C] () -- E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-11-15 19:27:05 | 000,000,044 | ---- | C] () -- E:\WINDOWS\System32\lxdxrwrd.ini
[2008-11-15 19:26:57 | 000,348,160 | ---- | C] () -- E:\WINDOWS\System32\LXDXinst.dll
[2008-11-15 19:24:40 | 000,040,960 | ---- | C] () -- E:\WINDOWS\System32\lxdxvs.dll
[2008-11-15 19:24:38 | 000,208,896 | ---- | C] () -- E:\WINDOWS\System32\lxdxgrd.dll
[2008-11-15 19:24:37 | 000,360,448 | R--- | C] () -- E:\WINDOWS\System32\lxdxcoin.dll
[2008-11-15 19:22:21 | 000,081,920 | ---- | C] () -- E:\WINDOWS\System32\lxdxcaps.dll
[2008-11-15 19:22:18 | 000,782,336 | ---- | C] () -- E:\WINDOWS\System32\lxdxdrs.dll
[2008-11-15 19:22:18 | 000,069,632 | ---- | C] () -- E:\WINDOWS\System32\lxdxcnv4.dll
[2008-11-05 19:51:05 | 000,000,421 | ---- | C] () -- E:\WINDOWS\ODBC.INI
[2008-10-31 20:58:51 | 000,000,116 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2008-10-27 18:29:09 | 000,282,691 | ---- | C] () -- E:\WINDOWS\System32\Clifford Uninstall.exe
[2008-10-27 18:29:08 | 000,000,082 | ---- | C] () -- E:\WINDOWS\CBP.INI
[2008-10-18 14:01:54 | 000,000,056 | -H-- | C] () -- E:\WINDOWS\System32\ezsidmv.dat
[2008-10-16 19:02:07 | 000,007,680 | ---- | C] () -- E:\WINDOWS\System32\ff_vfw.dll
[2008-10-16 18:24:45 | 000,004,218 | ---- | C] () -- E:\WINDOWS\wincmd.ini
[2008-10-16 18:19:20 | 000,015,424 | ---- | C] () -- E:\WINDOWS\System32\drivers\nod32drv.sys
[2008-10-14 20:23:06 | 000,000,131 | ---- | C] () -- E:\Documents and Settings\Kacper\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2008-10-14 20:10:01 | 000,064,200 | ---- | C] () -- E:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2008-10-14 18:39:15 | 000,593,920 | ---- | C] () -- E:\WINDOWS\System32\ati2sgag.exe
[2008-10-14 18:38:37 | 000,036,864 | ---- | C] () -- E:\WINDOWS\System32\atiiprxx.exe
[2008-10-14 18:38:35 | 003,107,788 | ---- | C] () -- E:\WINDOWS\System32\ativvaxx.dat
[2008-10-14 18:38:35 | 003,107,788 | ---- | C] () -- E:\WINDOWS\System32\ativva5x.dat
[2008-10-14 18:38:35 | 000,887,724 | ---- | C] () -- E:\WINDOWS\System32\ativva6x.dat
[2008-10-14 18:38:35 | 000,158,080 | ---- | C] () -- E:\WINDOWS\System32\atiicdxx.dat
[2008-10-14 18:38:35 | 000,000,011 | ---- | C] () -- E:\WINDOWS\System32\atiicdxx.ini
[2008-10-14 18:38:29 | 000,472,576 | ---- | C] () -- E:\WINDOWS\Radeon Omega Drivers v4.8.442 Uninstall.exe
[2008-10-14 18:02:27 | 000,004,293 | ---- | C] () -- E:\WINDOWS\ODBCINST.INI
[2008-10-14 18:01:07 | 000,124,520 | ---- | C] () -- E:\WINDOWS\System32\FNTCACHE.DAT
[2008-10-14 17:23:45 | 000,002,048 | --S- | C] () -- E:\WINDOWS\bootstat.dat
[2008-10-14 17:17:56 | 000,021,856 | ---- | C] () -- E:\WINDOWS\System32\emptyregdb.dat
[2008-01-28 17:01:42 | 000,057,344 | ---- | C] () -- E:\WINDOWS\System32\SmartFaceVCapt.dll
[2008-01-28 17:01:06 | 000,471,040 | ---- | C] () -- E:\WINDOWS\System32\SmartFaceVCP.dll
[2008-01-28 16:53:02 | 006,701,056 | ---- | C] () -- E:\WINDOWS\System32\FaceHI.dll
[2008-01-28 16:53:02 | 000,995,328 | ---- | C] () -- E:\WINDOWS\System32\FaceRec.dll
[2008-01-28 16:53:02 | 000,126,976 | ---- | C] () -- E:\WINDOWS\System32\SmartFaceVCtrl.dll
[2008-01-28 16:52:28 | 000,094,208 | ---- | C] () -- E:\WINDOWS\System32\IppLib.dll
[2007-10-25 09:45:18 | 000,079,260 | R--- | C] () -- E:\Documents and Settings\All Users\Dane aplikacji\DeviceManager.xml.rc4
[2007-10-01 11:16:00 | 000,013,312 | ---- | C] () -- E:\WINDOWS\System32\CallSimReader.dll
[2007-10-01 11:15:54 | 000,061,440 | ---- | C] () -- E:\WINDOWS\System32\SimReader.dll
[2007-09-19 05:39:40 | 000,020,270 | ---- | C] () -- E:\Documents and Settings\All Users\Dane aplikacji\DeviceInstaller.xml
[2004-08-03 23:56:48 | 000,001,788 | ---- | C] () -- E:\WINDOWS\System32\Dcache.bin
[2004-08-02 13:20:40 | 000,004,569 | ---- | C] () -- E:\WINDOWS\System32\secupd.dat
[2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- E:\WINDOWS\System32\drivers\secdrv.sys
[2001-10-26 17:15:16 | 000,494,546 | ---- | C] () -- E:\WINDOWS\System32\perfh015.dat
[2001-10-26 17:15:16 | 000,313,828 | ---- | C] () -- E:\WINDOWS\System32\perfi015.dat
[2001-10-26 17:15:16 | 000,087,166 | ---- | C] () -- E:\WINDOWS\System32\perfc015.dat
[2001-10-26 17:15:16 | 000,034,990 | ---- | C] () -- E:\WINDOWS\System32\perfd015.dat
[2001-08-23 14:00:00 | 013,107,200 | ---- | C] () -- E:\WINDOWS\System32\oembios.bin
[2001-08-23 14:00:00 | 000,004,463 | ---- | C] () -- E:\WINDOWS\System32\oembios.dat
[2001-08-17 22:30:24 | 000,436,558 | ---- | C] () -- E:\WINDOWS\System32\perfh009.dat
[2001-08-17 22:30:24 | 000,272,128 | ---- | C] () -- E:\WINDOWS\System32\perfi009.dat
[2001-08-17 22:30:24 | 000,028,626 | ---- | C] () -- E:\WINDOWS\System32\perfd009.dat
[2001-08-17 22:30:22 | 000,070,322 | ---- | C] () -- E:\WINDOWS\System32\perfc009.dat
[2001-08-17 22:15:38 | 000,046,258 | ---- | C] () -- E:\WINDOWS\System32\mib.bin
[2001-07-21 23:36:48 | 000,218,003 | ---- | C] () -- E:\WINDOWS\System32\dssec.dat
[2001-07-21 23:36:04 | 000,673,088 | ---- | C] () -- E:\WINDOWS\System32\mlang.dat
[2001-07-21 23:24:16 | 000,000,741 | ---- | C] () -- E:\WINDOWS\System32\noise.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-04-13 17:01:44 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\2C1D4
[2008-10-27 16:10:31 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\ACD Systems
[2011-04-03 17:53:37 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\BearShare
[2010-10-05 20:23:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Birdstep Technology
[2010-09-20 20:26:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\BitDefender
[2009-07-02 19:05:14 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Driving Test Success
[2010-10-10 15:46:04 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-12-20 20:38:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-03-05 19:24:19 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Innovative Solutions
[2008-10-31 17:08:50 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Installations
[2010-12-20 20:41:28 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\ipla
[2008-10-31 17:16:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2011-04-16 19:01:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2008-10-27 16:17:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\tlen.pl
[2011-04-16 19:59:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\Vodafone
[2010-02-20 21:48:28 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2011-04-03 17:55:05 | 000,000,000 | -H-D | M] -- E:\Documents and Settings\All Users\Dane aplikacji\{888803CF-24CB-4360-955A-9B6EE8BEEDC1}
[2008-10-27 18:32:14 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\ACD Systems
[2008-10-31 19:25:46 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Gadu-Gadu
[2010-12-20 20:38:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Gadu-Gadu 10
[2010-01-02 18:59:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\HEXelon
[2011-04-13 16:56:12 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\ipla
[2008-11-24 20:26:50 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Lexmark Productivity Studio
[2011-04-03 17:55:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\mediabarbs
[2008-10-31 17:16:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Nokia
[2008-10-31 17:16:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\PC Suite
[2010-12-20 20:41:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\RDRM
[2010-08-08 22:15:29 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Tlen.pl
[2010-08-21 18:43:41 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\URSoft
[2010-09-18 15:14:17 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Kacper\Dane aplikacji\Vodafone
[2011-04-16 19:58:25 | 000,000,300 | ---- | M] () -- E:\WINDOWS\Tasks\BearShareNAG.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 176 bytes -> E:\Documents and Settings\All Users\Dane aplikacji\TEMP:1CE11B51

< End of report >