OTL logfile created on: 27-05-2011 15:05:30 - Run 1 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Kamil\Downloads 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: dd-MM-yyyy 6,00 Gb Total Physical Memory | 4,34 Gb Available Physical Memory | 72,38% Memory free 11,99 Gb Paging File | 10,16 Gb Available in Paging File | 84,72% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 232,88 Gb Total Space | 58,80 Gb Free Space | 25,25% Space Free | Partition Type: NTFS Drive F: | 465,76 Gb Total Space | 40,94 Gb Free Space | 8,79% Space Free | Partition Type: NTFS Drive X: | 931,51 Gb Total Space | 73,21 Gb Free Space | 7,86% Space Free | Partition Type: NTFS Computer Name: KAMIL-KOMPUTER | User Name: Kamil | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-05-27 14:51:37 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Kamil\Downloads\OTL.exe PRC - [2011-05-16 16:30:26 | 000,566,784 | RHS- | M] ( ) -- C:\ProgramData\jushed.exe PRC - [2011-04-29 18:06:03 | 000,522,824 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-1.00.027\Applets\x86\LCDMedia.exe PRC - [2011-04-07 21:54:52 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2011-04-06 13:02:32 | 001,659,768 | ---- | M] (IVONA Software Sp. z o.o.) -- C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe PRC - [2011-03-28 15:41:14 | 001,910,152 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe PRC - [2011-03-18 13:01:31 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files (x86)\Gadu-Gadu 10\gg.exe PRC - [2010-06-28 22:50:36 | 000,075,048 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe PRC - [2010-04-15 18:04:46 | 002,797,568 | ---- | M] (D-Link Corporation) -- C:\Program Files (x86)\D-Link\SharePort\SharePort.exe PRC - [2010-03-26 10:52:24 | 001,234,216 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe PRC - [2010-02-03 00:08:56 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe PRC - [2010-01-22 08:56:24 | 000,112,592 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe PRC - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2009-11-23 12:40:48 | 001,368,064 | ---- | M] (IVO Software Sp. z o.o.) -- C:\Program Files (x86)\ivo\Expressivo\expressivo.exe PRC - [2009-07-30 19:10:04 | 000,380,928 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe PRC - [2009-07-27 12:13:28 | 000,061,440 | ---- | M] () -- C:\Windows\SysWOW64\ASDR.exe PRC - [2008-03-25 17:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe PRC - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe PRC - [2007-02-08 01:12:48 | 000,488,984 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe PRC - [2007-02-06 17:44:14 | 000,064,288 | ---- | M] (Logitech Inc.) -- c:\program files (x86)\common files\logishrd\lvmvfm\LVPrS64H.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-05-27 14:51:37 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Kamil\Downloads\OTL.exe MOD - [2009-07-14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll MOD - [2007-02-06 17:45:14 | 000,092,960 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\Logishrd\LVMVFM\LVPrcInj.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2011-03-10 18:20:00 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp) SRV:[b]64bit:[/b] - [2010-05-06 11:30:22 | 000,357,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV:[b]64bit:[/b] - [2009-12-21 10:44:06 | 000,535,552 | ---- | M] (CSR, plc) [Auto | Running] -- C:\Windows\SysNative\HFGService.dll -- (HFGService) SRV:[b]64bit:[/b] - [2009-12-01 15:22:58 | 000,063,488 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\Windows\SysNative\ATKFUSService.exe -- (ATKFUSService) SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:[b]64bit:[/b] - [2007-02-06 17:45:38 | 000,173,344 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher) SRV:[b]64bit:[/b] - [2007-02-06 17:44:02 | 000,173,344 | ---- | M] (Logitech Inc.) [Auto | Running] -- c:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64) SRV - [2011-04-08 07:14:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011-04-07 21:54:52 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2011-03-28 15:41:12 | 002,111,368 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2011-03-18 13:01:31 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2011-03-10 18:24:36 | 002,026,304 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc) SRV - [2011-03-10 18:19:50 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp) SRV - [2010-11-02 22:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe -- (AVP) SRV - [2010-10-22 13:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC) SRV - [2010-08-20 12:07:39 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2010-03-25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2010-03-15 11:50:36 | 001,142,224 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe -- (sdCoreService) SRV - [2010-03-11 11:09:22 | 000,366,840 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe -- (sdAuxService) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2010-01-22 08:56:24 | 000,112,592 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe -- (Browser Defender Update Service) SRV - [2010-01-15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2009-07-27 12:13:28 | 000,061,440 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\ASDR.exe -- (ASDR) SRV - [2009-07-26 07:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- f:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc) SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-12-08 17:15:26 | 000,068,136 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service) SRV - [2008-05-21 13:42:56 | 000,064,000 | ---- | M] (Creative Technology Ltd) [On_Demand | Stopped] -- C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe -- (CTUPnPSv) SRV - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-03-28 17:58:49 | 000,556,120 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF) DRV:[b]64bit:[/b] - [2011-03-03 17:59:18 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:[b]64bit:[/b] - [2011-01-28 23:04:54 | 000,016,384 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EIO64.sys -- (EIO64) DRV:[b]64bit:[/b] - [2011-01-13 13:58:00 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2010-08-22 00:16:31 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2010-06-09 16:44:00 | 000,011,864 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2) DRV:[b]64bit:[/b] - [2010-06-09 16:43:56 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1) DRV:[b]64bit:[/b] - [2010-05-05 21:30:52 | 001,561,688 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ha20x2k.sys -- (ha20x2k) DRV:[b]64bit:[/b] - [2010-05-05 21:30:42 | 000,118,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\emupia2k.sys -- (emupia) DRV:[b]64bit:[/b] - [2010-05-05 21:30:34 | 000,213,080 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ctsfm2k.sys -- (ctsfm2k) DRV:[b]64bit:[/b] - [2010-05-05 21:30:26 | 000,015,960 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ctprxy2k.sys -- (ctprxy2k) DRV:[b]64bit:[/b] - [2010-05-05 21:30:18 | 000,179,288 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ctoss2k.sys -- (ossrv) DRV:[b]64bit:[/b] - [2010-05-05 21:30:10 | 000,684,376 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM) DRV:[b]64bit:[/b] - [2010-05-05 21:30:02 | 000,580,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ctac32k.sys -- (ctac32k) DRV:[b]64bit:[/b] - [2010-05-05 21:29:52 | 001,417,304 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX.SYS) DRV:[b]64bit:[/b] - [2010-05-05 21:29:52 | 001,417,304 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX) DRV:[b]64bit:[/b] - [2010-05-05 21:29:42 | 000,094,808 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT.SYS) DRV:[b]64bit:[/b] - [2010-05-05 21:29:42 | 000,094,808 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT) DRV:[b]64bit:[/b] - [2010-05-05 21:29:34 | 000,202,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT.SYS) DRV:[b]64bit:[/b] - [2010-05-05 21:29:34 | 000,202,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT) DRV:[b]64bit:[/b] - [2010-04-22 18:07:36 | 000,027,736 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6) DRV:[b]64bit:[/b] - [2010-03-29 10:06:06 | 000,233,488 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PCTCore64.sys -- (PCTCore) DRV:[b]64bit:[/b] - [2010-03-18 11:00:40 | 000,041,040 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt) DRV:[b]64bit:[/b] - [2010-03-18 11:00:16 | 000,057,936 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt) DRV:[b]64bit:[/b] - [2010-03-18 11:00:00 | 000,063,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt) DRV:[b]64bit:[/b] - [2010-02-22 16:46:36 | 000,023,680 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | Disabled | Running] -- C:\Windows\SysNative\drivers\IOMap64.sys -- (IOMap) DRV:[b]64bit:[/b] - [2009-12-21 10:43:36 | 000,052,224 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAudioHF.sys -- (BthAudioHF) DRV:[b]64bit:[/b] - [2009-11-23 17:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid) DRV:[b]64bit:[/b] - [2009-11-23 17:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum) DRV:[b]64bit:[/b] - [2009-11-02 19:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt) DRV:[b]64bit:[/b] - [2009-10-07 08:49:28 | 006,379,288 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) QuickCam for Notebooks Deluxe(UVC) DRV:[b]64bit:[/b] - [2009-10-07 08:47:46 | 000,327,704 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:[b]64bit:[/b] - [2009-10-07 08:45:38 | 000,271,640 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvpopf64.sys -- (lvpopf64) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 02:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV:[b]64bit:[/b] - [2009-02-17 19:22:22 | 000,039,424 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATKDispLowFilter.sys -- (atkdisplf) DRV:[b]64bit:[/b] - [2009-02-17 19:22:22 | 000,017,792 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asusgsb.sys -- (asusgsb) DRV:[b]64bit:[/b] - [2008-11-04 04:21:08 | 000,098,144 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:[b]64bit:[/b] - [2007-02-06 17:43:14 | 000,031,520 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV:[b]64bit:[/b] - [2007-02-06 17:42:50 | 002,346,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVMVdrv.sys -- (LVMVDrv) DRV:[b]64bit:[/b] - [2007-02-06 17:41:40 | 001,013,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVCKap64.sys -- (LVcKap64) DRV:[b]64bit:[/b] - [2005-09-23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus) DRV - [2011-05-27 15:04:39 | 000,030,528 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\GVTDrv64.sys -- (GVTDrv64) DRV - [2011-05-27 15:04:30 | 000,024,072 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv) DRV - [2011-02-10 10:22:58 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv) DRV - [2010-06-28 22:50:22 | 000,146,928 | ---- | M] (CyberLink Corp.) [2010/08/20 12:55:00] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl -- ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.searchgateway.net/search/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.searchgateway.net/search/ IE - HKCU\..\URLSearchHook: {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\SysWOW64\dvmurl.dll (DeviceVM Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=; [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: expressivo@expressivo.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.2.556 FF - prefs.js..extensions.enabledItems: smartwebprinting@hp.com:4.51 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.5 FF - prefs.js..extensions.enabledItems: support@easy-hideip.com:1.0 FF - prefs.js..extensions.enabledItems: {340c2bbc-ce74-4362-90b5-7c26312808ef}:1.7 FF - prefs.js..extensions.enabledItems: isreaditlater@ideashower.com:2.1.1 FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.1.1 FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.2 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.1 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4 FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.2.556 FF - prefs.js..network.proxy.gopher: "" FF - prefs.js..network.proxy.gopher_port: 0 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-08-28 15:42:21 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011-04-29 14:43:56 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011-04-06 00:51:53 | 000,000,000 | ---D | M] [2010-08-20 09:45:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kamil\AppData\Roaming\mozilla\Extensions [2011-05-25 12:03:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions [2011-04-21 13:38:42 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2011-03-16 21:53:27 | 000,000,000 | ---D | M] (Firefox Sync) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef} [2011-04-07 11:04:48 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2011-03-16 21:53:26 | 000,000,000 | ---D | M] (Read It Later) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\isreaditlater@ideashower.com [2011-03-16 21:53:26 | 000,000,000 | ---D | M] (Personas) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\personas@christopher.beard [2010-12-01 22:26:39 | 000,000,000 | ---D | M] (Hide IP Easy) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\support@easy-hideip.com [2011-05-26 23:05:28 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Users\Kamil\AppData\Roaming\mozilla\Firefox\Profiles\4ee2sr3s.default\extensions\toolbar@ask.com [2011-04-19 15:38:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2010-08-21 10:14:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-08-23 10:10:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2011-03-28 18:00:36 | 000,000,000 | ---D | M] (Blokowanie banerów) -- C:\Program Files (x86)\mozilla firefox\extensions\KavAntiBanner@Kaspersky.ru [2011-03-28 18:00:33 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files (x86)\mozilla firefox\extensions\linkfilter@kaspersky.ru File not found (No name found) -- [2011-04-19 15:38:48 | 000,000,000 | ---D | M] (Ivona Firefox Toolbar) -- C:\PROGRAM FILES (X86)\IVONA\IVONA READER\INTEGR\FF_PLUGIN () (No name found) -- C:\USERS\KAMIL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4EE2SR3S.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\USERS\KAMIL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4EE2SR3S.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI [2011-04-29 14:43:55 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2010-07-17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011-05-21 23:54:57 | 000,000,988 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com O1 - Hosts: 127.0.0.1 www.alcohol-soft.com O1 - Hosts: 127.0.0.1 images.alcohol-soft.com O1 - Hosts: 127.0.0.1 trial.alcohol-soft.com O1 - Hosts: 127.0.0.1 alcohol-soft.com O2:[b]64bit:[/b] - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll (Kaspersky Lab ZAO) O2:[b]64bit:[/b] - BHO: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files (x86)\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer_x64.dll (IVO Software Sp. z o.o.) O2:[b]64bit:[/b] - BHO: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll (IVONA Software Sp. z o.o.) O2:[b]64bit:[/b] - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files (x86)\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.) O2 - BHO: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVONA Software Sp. z o.o.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files (x86)\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer_x64.dll (IVO Software Sp. z o.o.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll (IVONA Software Sp. z o.o.) O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKLM\..\Toolbar: (Expressivo) - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files (x86)\ivo\Expressivo\integr\ih-iexplorer\IH_iexplorer.dll (IVO Software Sp. z o.o.) O3 - HKLM\..\Toolbar: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVONA Software Sp. z o.o.) O3 - HKLM\..\Toolbar: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:[b]64bit:[/b] - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [ASUSGamerOSD] C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink) O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd) O4 - HKLM..\Run: [D-Link Network USB Utility] C:\Program Files (x86)\D-Link\SharePort\SharePort Network USB Utility.exe (D-Link Corporation) O4 - HKLM..\Run: [D-Link SharePort] C:\Program Files (x86)\D-Link\SharePort\SharePort.exe (D-Link Corporation) O4 - HKLM..\Run: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETcall.exe () O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe () O4 - HKLM..\Run: [KeePass 2 PreLoad] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Dominik Reichl) O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe (Logitech Inc.) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe (Nero AG) O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [Expressivo] C:\Program Files (x86)\ivo\Expressivo\expressivo.exe (IVO Software Sp. z o.o.) O4 - HKCU..\Run: [ExprOElauncher] C:\Program Files (x86)\ivo\Expressivo\integr\OutlookExpress\ExprOElauncher.exe (Nektra S.A.) O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files (x86)\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKCU..\Run: [IROElauncher] C:\Program Files (x86)\IVONA\IVONA Reader\integr\OutlookExpress\IROElauncher.exe (Nektra S.A.) O4 - HKCU..\Run: [IVONA ControlCenter] C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe (IVONA Software Sp. z o.o.) O4 - HKCU..\Run: [jushed] C:\ProgramData\jushed.exe ( ) O4 - HKCU..\Run: [Odkurzacz-MCD] C:\Program Files (x86)\Odkurzacz\odk_mcd.exe (Franmo Software) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O8:[b]64bit:[/b] - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm () O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm () O9:[b]64bit:[/b] - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O9:[b]64bit:[/b] - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O20 - AppInit_DLLs: (C:\PROGRA~3\AVP11\mzvkbd3.dll) - C:\ProgramData\AVP11\mzvkbd3.dll (Kaspersky Lab ZAO) O20 - AppInit_DLLs: (C:\PROGRA~3\AVP11\sbhook.dll) - C:\ProgramData\AVP11\sbhook.dll (Kaspersky Lab ZAO) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:[b]64bit:[/b] - Winlogon\Notify\klogon: DllName - Reg Error: Key error. - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO) O20:[b]64bit:[/b] - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O22:[b]64bit:[/b] - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll (Stardock) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-12-11 12:33:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-12-14 00:04:29 | 000,112,739 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2009-12-11 09:03:15 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{1298095c-6f16-11e0-9e01-00241d7cd545}\Shell - "" = AutoRun O33 - MountPoints2\{1298095c-6f16-11e0-9e01-00241d7cd545}\Shell\AutoRun\command - "" = H:\AutoRun.exe O33 - MountPoints2\{64a8f7d7-eab4-11df-adde-00241d7cd545}\Shell - "" = AutoRun O33 - MountPoints2\{64a8f7d7-eab4-11df-adde-00241d7cd545}\Shell\AutoRun\command - "" = H:\AutoRun.exe O33 - MountPoints2\D\Shell - "" = AutoRun O33 - MountPoints2\D\Shell\AutoRun\command - "" = D:\start.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-05-27 15:01:20 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\Nowy folder (5) [2011-05-23 14:41:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2011-05-23 14:41:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2011-05-23 14:38:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Odkurzacz [2011-05-23 14:38:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Odkurzacz [2011-05-21 00:58:32 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bink and Smacker [2011-05-21 00:58:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RADVideo [2011-05-21 00:37:23 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Roaming\PE Explorer [2011-05-21 00:37:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PE Explorer [2011-05-21 00:37:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PE Explorer [2011-05-17 21:46:21 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Documents\The Witcher [2011-05-17 16:54:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wiedźmin 2 [2011-05-16 16:31:28 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Documents\The Witcher 2 [2011-05-16 09:43:16 | 000,566,784 | RHS- | C] ( ) -- C:\ProgramData\jushed.exe [2011-05-16 09:43:16 | 000,347,136 | RHS- | C] (NirSoft) -- C:\ProgramData\nircmd.exe [2011-05-16 09:41:36 | 000,000,000 | ---D | C] -- C:\Games [2011-05-16 09:38:46 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Documents\Witcher 2 [2011-05-16 09:38:46 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Local\The Witcher 2 [2011-05-16 01:55:47 | 002,580,824 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2011-05-16 01:55:46 | 002,096,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2011-05-16 01:55:46 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2011-05-16 01:55:46 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2011-05-16 01:55:45 | 002,654,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll [2011-05-16 01:55:45 | 001,242,728 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2011-05-16 01:55:45 | 000,618,600 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2011-05-16 01:55:45 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2011-05-16 01:55:45 | 000,082,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll [2011-05-16 01:55:44 | 000,873,048 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll [2011-05-16 01:55:44 | 000,739,416 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll [2011-05-16 01:55:44 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2011-05-16 01:55:44 | 000,064,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBppld64.dll [2011-05-16 01:55:43 | 001,937,312 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2011-05-16 01:55:39 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2011-05-16 01:50:13 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Roaming\InstallShield [2011-05-16 01:36:53 | 000,413,800 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2011-05-16 01:36:53 | 000,107,552 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll [2011-05-16 01:36:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2011-05-12 01:16:58 | 000,000,000 | ---D | C] -- C:\Stream [2011-05-12 01:14:22 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps [2011-05-12 01:14:22 | 000,000,000 | ---D | C] -- C:\Fraps [2011-05-12 01:14:06 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\Fraps 3.4.2 Build 13202 [2011-05-11 16:46:37 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Local\LogMeIn Hamachi [2011-05-11 16:46:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi [2011-05-11 16:46:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hamachi [2011-05-11 01:26:37 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Local\{6425C812-5FB8-41CE-B15F-997F80150000} [2011-05-04 16:04:45 | 000,000,000 | ---D | C] -- C:\Users\Kamil\AppData\Roaming\.minecraft [2011-05-04 16:04:10 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\Minecraft.v1.5.Beta.LukaszDanio [2011-05-02 21:58:12 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\MMM [2011-05-01 01:00:55 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\aaaaaaaaaaaa [2011-05-01 01:00:01 | 010,010,714 | ---- | C] ( ) -- C:\Users\Kamil\Desktop\mt-x_1028_setup.exe [2011-04-30 20:58:58 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\ArcaniA.Gothic.4.v1.0.Plus.7.Trainer [2011-04-30 20:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcaniA - Gothic 4 [2011-04-30 18:21:29 | 000,069,120 | ---- | C] (KelSat Presents) -- C:\Users\Kamil\Desktop\ArcaniA_Gothic_4_V1.0_Plus_8_Trainer_By_KelSat.exe [2011-04-30 15:06:28 | 237,912,358 | ---- | C] (JoWooD Entertainment AG ) -- C:\Users\Kamil\Desktop\ArcaniA_Gothic4_Hotfix_Installer_PL.exe [2011-04-30 14:42:10 | 001,175,154 | ---- | C] (www.sicheats.com) -- C:\Users\Kamil\Desktop\ArcaniA - Gothic 4 v1.0 + 11 Trainer.exe [2011-04-30 14:24:05 | 000,000,000 | ---D | C] -- C:\Users\Kamil\Desktop\Playboy Special Edition Top 100 Girls - 2010 [2011-04-30 01:57:44 | 001,213,200 | ---- | C] (Microsoft Corporation) -- C:\Users\Kamil\Desktop\xpsupport.dll [2011-04-30 01:57:33 | 003,345,094 | ---- | C] (www.sicheats.com) -- C:\Users\Kamil\Desktop\ArcaniA - Gothic 4 v1.1.0.1433 + 12 Trainer.exe [2011-04-30 01:57:14 | 045,155,678 | ---- | C] (JoWooD Entertainment AG ) -- C:\Users\Kamil\Desktop\SGSD70C.EXE [2011-04-30 00:40:37 | 015,227,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2011-04-30 00:40:37 | 012,934,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2011-04-30 00:40:37 | 006,299,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2011-04-30 00:40:37 | 001,619,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6420140.dll [2011-04-30 00:40:37 | 001,404,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco642060.dll [2011-04-30 00:40:37 | 001,359,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco642040.dll [2011-04-30 00:40:37 | 000,174,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2011-04-30 00:40:37 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2011-04-30 00:40:37 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2011-04-30 00:40:37 | 000,029,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2011-04-30 00:40:36 | 018,578,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2011-04-30 00:40:36 | 013,007,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2011-04-30 00:40:36 | 006,974,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2011-04-30 00:40:36 | 005,183,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2011-04-30 00:40:36 | 002,893,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2011-04-30 00:40:36 | 002,765,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2011-04-30 00:40:36 | 002,204,264 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2011-04-30 00:40:36 | 002,074,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2011-04-30 00:40:36 | 000,011,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvBridge.kmd [2011-04-29 18:05:59 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech Gaming Software [2010-05-05 19:59:10 | 000,060,928 | ---- | C] ( ) -- C:\Windows\SysWow64\a3d.dll [2010-05-05 19:38:18 | 000,012,800 | ---- | C] ( ) -- C:\Windows\SysWow64\killapps.exe [5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-05-27 15:10:49 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-05-27 15:10:49 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-05-27 15:05:00 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempkMs824.html [2011-05-27 15:05:00 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TemporE824.html [2011-05-27 15:04:39 | 000,030,528 | ---- | M] () -- C:\Windows\GVTDrv64.sys [2011-05-27 15:04:38 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\GVTunner.ref [2011-05-27 15:04:30 | 000,024,072 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys [2011-05-27 15:04:17 | 000,000,002 | ---- | M] () -- C:\ProgramData\timerxfile [2011-05-27 15:04:17 | 000,000,002 | ---- | M] () -- C:\ProgramData\datesavefile [2011-05-27 15:04:17 | 000,000,001 | ---- | M] () -- C:\ProgramData\varsavefile [2011-05-27 15:03:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-05-27 15:03:02 | 534,896,639 | -HS- | M] () -- C:\hiberfil.sys [2011-05-27 15:02:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2011786010-1484112433-1796897785-1000UA.job [2011-05-27 15:01:46 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempnR3368.html [2011-05-27 15:01:46 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempFF3368.html [2011-05-27 15:01:33 | 000,000,216 | ---- | M] () -- C:\Users\Kamil\defogger_reenable [2011-05-27 03:27:25 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempzC3052.html [2011-05-27 03:27:25 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempFV3052.html [2011-05-26 18:55:33 | 001,560,860 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011-05-26 18:55:33 | 000,700,548 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2011-05-26 18:55:33 | 000,618,664 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011-05-26 18:55:33 | 000,137,946 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2011-05-26 18:55:33 | 000,108,240 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011-05-26 01:55:11 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\Tempns3120.html [2011-05-26 01:55:11 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\Tempdq3120.html [2011-05-25 13:02:00 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2011786010-1484112433-1796897785-1000Core.job [2011-05-25 03:04:21 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempQC3164.html [2011-05-25 03:04:21 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempCD3164.html [2011-05-24 18:08:22 | 000,152,233 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat [2011-05-24 09:44:29 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TemphZ3120.html [2011-05-24 09:44:29 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempXj3120.html [2011-05-24 01:50:43 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TemplA3276.html [2011-05-24 01:50:43 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TemphL3276.html [2011-05-23 23:08:26 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\Tempvt3352.html [2011-05-23 23:08:26 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempwT3352.html [2011-05-23 23:08:03 | 000,080,020 | ---- | M] () -- C:\Users\Kamil\Documents\cc_20110523_230757.reg [2011-05-23 14:41:03 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011-05-23 14:38:34 | 000,001,185 | ---- | M] () -- C:\Users\Kamil\Desktop\Szybkie Czyszczenie Dysku.lnk [2011-05-23 14:38:34 | 000,001,089 | ---- | M] () -- C:\Users\Kamil\Desktop\Odkurzacz.lnk [2011-05-22 03:51:52 | 000,005,823 | ---- | M] () -- C:\Users\Kamil\Documents\ax_files.xml [2011-05-21 00:37:20 | 000,001,039 | ---- | M] () -- C:\Users\Kamil\Desktop\PE Explorer.lnk [2011-05-17 16:54:10 | 000,000,555 | ---- | M] () -- C:\Users\Public\Desktop\Uruchom Wiedźmin 2.lnk [2011-05-16 16:30:26 | 000,566,784 | RHS- | M] ( ) -- C:\ProgramData\jushed.exe [2011-05-16 16:30:26 | 000,347,136 | RHS- | M] (NirSoft) -- C:\ProgramData\nircmd.exe [2011-05-16 16:30:26 | 000,004,768 | ---- | M] () -- C:\ProgramData\operaprefs.ini [2011-05-13 23:02:56 | 000,002,407 | ---- | M] () -- C:\Users\Kamil\Desktop\Google Chrome.lnk [2011-05-12 19:52:40 | 000,000,278 | ---- | M] () -- C:\Users\Kamil\Desktop\QznF5.png [2011-05-12 15:29:04 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI [2011-05-12 15:17:34 | 000,021,504 | ---- | M] () -- C:\Users\Kamil\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-05-12 01:14:22 | 000,000,562 | ---- | M] () -- C:\Users\Kamil\Desktop\Fraps.lnk [2011-05-11 16:46:12 | 000,000,936 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [2011-05-11 01:29:06 | 003,402,197 | ---- | M] () -- C:\Users\Kamil\Desktop\kll.png [2011-05-01 01:01:59 | 000,001,717 | ---- | M] () -- C:\Users\Kamil\Desktop\MegaTrainer eXperience.lnk [2011-04-30 20:33:12 | 000,001,165 | ---- | M] () -- C:\Users\Public\Desktop\Uruchom grę ArcaniA - Gothic 4 English VO.lnk [2011-04-30 20:33:12 | 000,001,159 | ---- | M] () -- C:\Users\Public\Desktop\Uruchom grę ArcaniA - Gothic 4.lnk [2011-04-29 13:24:12 | 045,155,678 | ---- | M] (JoWooD Entertainment AG ) -- C:\Users\Kamil\Desktop\SGSD70C.EXE [2011-04-28 01:47:04 | 000,002,432 | ---- | M] () -- C:\Users\Kamil\AppData\Local\TempB18708.html [2011-04-28 01:47:04 | 000,002,089 | ---- | M] () -- C:\Users\Kamil\AppData\Local\Tempy18708.html [5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-05-27 15:05:00 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempkMs824.html [2011-05-27 15:05:00 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TemporE824.html [2011-05-27 15:01:33 | 000,000,216 | ---- | C] () -- C:\Users\Kamil\defogger_reenable [2011-05-27 13:35:42 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempnR3368.html [2011-05-27 13:35:42 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempFF3368.html [2011-05-26 13:51:11 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempzC3052.html [2011-05-26 13:51:11 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempFV3052.html [2011-05-25 11:53:16 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Tempns3120.html [2011-05-25 11:53:16 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Tempdq3120.html [2011-05-24 13:56:35 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempQC3164.html [2011-05-24 13:56:35 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempCD3164.html [2011-05-24 09:29:50 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TemphZ3120.html [2011-05-24 09:29:50 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempXj3120.html [2011-05-23 23:12:03 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TemplA3276.html [2011-05-23 23:12:03 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TemphL3276.html [2011-05-23 23:08:00 | 000,080,020 | ---- | C] () -- C:\Users\Kamil\Documents\cc_20110523_230757.reg [2011-05-23 14:41:03 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011-05-23 14:38:34 | 000,001,185 | ---- | C] () -- C:\Users\Kamil\Desktop\Szybkie Czyszczenie Dysku.lnk [2011-05-23 14:38:34 | 000,001,089 | ---- | C] () -- C:\Users\Kamil\Desktop\Odkurzacz.lnk [2011-05-23 11:37:30 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Tempvt3352.html [2011-05-23 11:37:30 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempwT3352.html [2011-05-21 00:37:20 | 000,001,039 | ---- | C] () -- C:\Users\Kamil\Desktop\PE Explorer.lnk [2011-05-17 16:54:10 | 000,000,555 | ---- | C] () -- C:\Users\Public\Desktop\Uruchom Wiedźmin 2.lnk [2011-05-16 09:43:18 | 000,000,002 | ---- | C] () -- C:\ProgramData\timerxfile [2011-05-16 09:43:18 | 000,000,002 | ---- | C] () -- C:\ProgramData\datesavefile [2011-05-16 09:43:18 | 000,000,001 | ---- | C] () -- C:\ProgramData\varsavefile [2011-05-16 09:43:16 | 000,004,768 | ---- | C] () -- C:\ProgramData\operaprefs.ini [2011-05-16 01:36:53 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll [2011-05-12 19:48:28 | 000,000,278 | ---- | C] () -- C:\Users\Kamil\Desktop\QznF5.png [2011-05-12 01:14:22 | 000,000,562 | ---- | C] () -- C:\Users\Kamil\Desktop\Fraps.lnk [2011-05-11 16:46:12 | 000,000,936 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [2011-05-11 01:29:03 | 003,402,197 | ---- | C] () -- C:\Users\Kamil\Desktop\kll.png [2011-05-01 01:01:59 | 000,001,717 | ---- | C] () -- C:\Users\Kamil\Desktop\MegaTrainer eXperience.lnk [2011-04-30 20:33:12 | 000,001,165 | ---- | C] () -- C:\Users\Public\Desktop\Uruchom grę ArcaniA - Gothic 4 English VO.lnk [2011-04-30 20:33:12 | 000,001,159 | ---- | C] () -- C:\Users\Public\Desktop\Uruchom grę ArcaniA - Gothic 4.lnk [2011-04-30 01:57:55 | 000,007,268 | ---- | C] () -- C:\Users\Kamil\Desktop\h4x0r.nfo [2011-04-27 13:49:43 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempB18708.html [2011-04-27 13:49:43 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Tempy18708.html [2011-04-25 12:51:40 | 000,034,308 | ---- | C] () -- C:\Windows\SysWow64\BASSMOD.dll [2011-03-14 09:56:18 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempoDA432.html [2011-03-14 09:56:18 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Temptzb432.html [2011-02-05 05:02:03 | 000,000,121 | ---- | C] () -- C:\Windows\gfscore.ini [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asrussian.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\askorean.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asjapan.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asgerman.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asfrench.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\aseng.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\ASCHT.dll [2011-01-28 23:04:19 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\aschs.dll [2010-12-02 12:33:42 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll [2010-11-28 16:08:27 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempUnV840.html [2010-11-28 16:08:27 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempICh840.html [2010-10-31 22:32:47 | 000,020,992 | ---- | C] () -- C:\Windows\SysWow64\psych.dll [2010-10-20 20:45:36 | 000,000,132 | ---- | C] () -- C:\Users\Kamil\AppData\Roaming\Preferencje Adobe CS5 dla formatu Targa [2010-10-06 22:16:16 | 000,000,194 | ---- | C] () -- C:\Users\Kamil\AppData\Roaming\varicad-work.ini [2010-09-12 19:05:22 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL [2010-09-12 19:05:22 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL [2010-09-11 00:50:04 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempM14520.html [2010-09-11 00:50:04 | 000,002,089 | ---- | C] () -- C:\Users\Kamil\AppData\Local\TempT14520.html [2010-09-04 13:15:49 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys [2010-09-01 21:31:51 | 000,000,132 | ---- | C] () -- C:\Users\Kamil\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2010-08-31 22:33:48 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2010-08-28 15:38:34 | 000,250,300 | ---- | C] () -- C:\Windows\hpwins23.dat [2010-08-28 15:38:34 | 000,001,843 | ---- | C] () -- C:\Windows\hpwmdl23.dat [2010-08-28 11:28:44 | 000,002,432 | ---- | C] () -- C:\Users\Kamil\AppData\Local\Tempnix520.html [2010-08-27 00:17:37 | 000,000,093 | ---- | C] () -- C:\Users\Kamil\AppData\Local\fusioncache.dat [2010-08-26 21:47:17 | 001,575,648 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010-08-26 21:25:33 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2010-08-26 21:25:31 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2010-08-26 21:25:31 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2010-08-23 13:23:52 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010-08-23 13:23:52 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2010-08-23 13:23:51 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2010-08-23 13:23:51 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2010-08-23 13:23:51 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2010-08-22 13:07:52 | 000,021,504 | ---- | C] () -- C:\Users\Kamil\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-21 23:34:32 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll [2010-08-20 07:16:37 | 000,000,017 | ---- | C] () -- C:\Users\Kamil\AppData\Local\resmon.resmoncfg [2010-08-20 07:07:12 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2010-05-05 20:37:52 | 000,021,204 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini [2010-05-05 20:37:50 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini [2010-05-05 19:56:46 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIRES.DLL [2010-05-05 19:46:30 | 000,321,512 | ---- | C] () -- C:\Windows\SysWow64\ctdlang.dat [2010-05-05 19:46:30 | 000,056,509 | ---- | C] () -- C:\Windows\SysWow64\ctdnlstr.dat [2010-05-05 19:38:22 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\enlocstr.exe [2010-04-02 18:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2009-07-27 12:13:28 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\ASDR.exe [2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-07-06 13:47:08 | 000,000,285 | ---- | C] () -- C:\Windows\SysWow64\kill.ini [2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2007-06-21 08:34:08 | 000,203,328 | R--- | C] () -- C:\Windows\GSetup.exe [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 163 bytes -> C:\ProgramData\Temp:DFC5A2B2 @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:A8ADE5D8 < End of report >