OTL logfile created on: 2010-07-28 00:24:49 - Run 1 OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Krzysztof\Pulpit Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 73,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 500 3000E:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 24,04 Gb Total Space | 1,45 Gb Free Space | 6,03% Space Free | Partition Type: FAT32 D: Drive not present or media not loaded Drive E: | 124,99 Gb Total Space | 44,57 Gb Free Space | 35,65% Space Free | Partition Type: NTFS F: Drive not present or media not loaded Drive G: | 953,22 Mb Total Space | 668,73 Mb Free Space | 70,16% Space Free | Partition Type: FAT Drive H: | 273,68 Gb Total Space | 52,85 Gb Free Space | 19,31% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: AD13121981 Current User Name: Krzysztof Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-07-27 23:12:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTL.exe PRC - [2010-06-10 06:58:32 | 001,218,008 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe PRC - [2010-06-10 06:58:32 | 000,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe PRC - [2010-06-10 06:58:32 | 000,806,008 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\MSC\mcupdmgr.exe PRC - [2010-03-24 13:58:22 | 000,309,760 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac PRC - [2010-03-18 11:19:26 | 000,207,360 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2010-03-10 23:07:54 | 000,524,632 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe PRC - [2010-03-10 23:07:52 | 001,029,456 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe PRC - [2010-02-17 16:52:00 | 000,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe PRC - [2010-02-17 15:53:26 | 000,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe PRC - [2009-10-27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe PRC - [2009-10-02 13:02:56 | 000,026,640 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSK\msksrver.exe PRC - [2009-07-08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe PRC - [2009-07-07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe PRC - [2009-01-23 10:46:14 | 000,203,280 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe PRC - [2006-07-12 23:26:20 | 000,069,120 | ---- | M] (Autodata Limited) -- C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe PRC - [2005-06-10 17:19:38 | 000,869,888 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exe PRC - [2005-04-02 02:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe PRC - [2004-12-22 10:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2004-12-16 14:55:28 | 000,987,136 | ---- | M] (ASUSTeK Inc.) -- C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe PRC - [2004-07-20 14:15:20 | 000,090,112 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe PRC - [2004-06-11 04:15:18 | 000,083,968 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe PRC - [2004-04-21 10:26:28 | 000,086,016 | ---- | M] (Cyberlink, Corp.) -- C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe PRC - [2004-04-16 00:07:02 | 000,073,728 | ---- | M] (CrypKey (Canada) Ltd.) -- C:\WINDOWS\system32\Crypserv.exe PRC - [2004-03-13 04:04:16 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe PRC - [2003-12-08 17:35:14 | 000,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe PRC - [2003-06-03 15:52:22 | 001,200,128 | ---- | M] (PowerQuest Corporation) -- C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe PRC - [2002-11-25 08:12:32 | 000,049,152 | ---- | M] (GEAR Software) -- C:\WINDOWS\system32\gearsec.exe PRC - [1998-11-13 02:06:48 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\MSSQL7\Binn\sqlmangr.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-07-27 23:12:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTL.exe MOD - [2009-01-23 10:46:18 | 000,013,840 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\sahook.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2004-12-15 05:01:00 | 001,458,176 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nview.dll MOD - [2004-12-15 05:01:00 | 000,290,816 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwrspl.dll MOD - [2004-12-15 05:01:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwddi.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010-06-10 06:58:32 | 000,865,832 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc) SRV - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2010-03-10 23:07:52 | 001,029,456 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service) SRV - [2010-02-24 13:16:08 | 000,365,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS) SRV - [2010-02-17 16:52:00 | 000,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield) SRV - [2010-02-17 15:53:26 | 000,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon) SRV - [2009-10-27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService) SRV - [2009-10-02 13:02:56 | 000,026,640 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service) SRV - [2009-07-08 20:22:22 | 000,068,112 | ---- | M] (McAfee) [On_Demand | Stopped] -- C:\Program Files\McAfee\MBK\MBackMonitor.exe -- (MBackMonitor) SRV - [2009-07-08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy) SRV - [2009-07-07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc) SRV - [2009-01-23 10:46:14 | 000,203,280 | ---- | M] () [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service) SRV - [2007-03-26 13:06:24 | 000,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2006-11-03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV - [2006-01-08 18:26:22 | 000,172,032 | ---- | M] (Acronis) [On_Demand | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2005-06-10 17:19:38 | 000,869,888 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv) SRV - [2005-04-02 02:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe -- (StarWindService) SRV - [2004-07-20 14:15:20 | 000,090,112 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService) SRV - [2004-04-16 00:07:02 | 000,073,728 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\WINDOWS\System32\Crypserv.exe -- (Crypkey License) SRV - [2004-03-13 04:04:16 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) SRV - [2003-06-03 15:52:22 | 001,200,128 | ---- | M] (PowerQuest Corporation) [Auto | Running] -- C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe -- (V2i Protector) SRV - [2002-11-25 08:12:32 | 000,049,152 | ---- | M] (GEAR Software) [Auto | Running] -- C:\WINDOWS\system32\gearsec.exe -- (GEARSecurity) SRV - [1998-11-27 23:43:52 | 004,964,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\MSSQL7\Binn\sqlservr.exe -- (MSSQLServer) SRV - [1998-11-13 02:09:58 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\MSSQL7\Binn\sqlagent.exe -- (SQLServerAgent) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- E:\kfilipek\Desktop\rmma345bin\RTCore.sys -- (RTCore) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\h648103.sys -- (h648103) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\h648101.sys -- (h648101) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\h647906.sys -- (h647906) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\CFx\catchme.sys -- (catchme) DRV - [2010-07-15 15:18:22 | 000,120,136 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Mpfp.sys -- (MPFP) DRV - [2010-05-31 20:32:58 | 000,385,880 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk) DRV - [2010-02-17 16:52:48 | 000,079,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk) DRV - [2010-02-17 16:52:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfesmfk.sys -- (mfesmfk) DRV - [2010-02-17 16:52:48 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk) DRV - [2010-02-17 16:52:10 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (mferkdk) DRV - [2009-07-17 19:25:58 | 000,145,408 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm) DRV - [2009-05-04 23:10:44 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd) DRV - [2009-04-12 10:04:42 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi) DRV - [2009-03-27 01:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132) DRV - [2008-08-08 15:31:18 | 000,043,192 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid8101.sys -- (hid8101) DRV - [2008-08-08 15:31:18 | 000,040,856 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid8103.sys -- (hid8103) DRV - [2008-08-08 15:31:16 | 000,041,272 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid7906.sys -- (hid7906) DRV - [2008-04-18 23:00:38 | 000,249,152 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter) DRV - [2008-04-18 23:00:38 | 000,030,688 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008-04-14 00:16:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\61883.sys -- (61883) DRV - [2008-04-14 00:16:22 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc) DRV - [2008-04-14 00:16:10 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msdv.sys -- (MSDV) DRV - [2008-04-11 10:50:40 | 000,097,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman) DRV - [2008-03-12 20:03:18 | 000,039,472 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hotcore3.sys -- (hotcore3) DRV - [2008-02-22 22:21:08 | 000,082,380 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K) DRV - [2007-11-03 11:21:02 | 000,068,096 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive) DRV - [2007-02-22 10:15:56 | 000,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd) DRV - [2007-02-22 10:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm) DRV - [2007-02-22 10:15:14 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj) DRV - [2007-02-22 10:15:14 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc) DRV - [2007-02-07 16:50:32 | 000,118,552 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw) DRV - [2007-02-07 16:50:14 | 000,056,088 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ELOADER) General Purpose USB Driver (adildr.sys) DRV - [2006-12-03 19:58:36 | 000,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2006-11-10 15:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc) DRV - [2005-06-10 17:12:12 | 000,099,584 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs) DRV - [2005-06-10 17:11:50 | 000,029,696 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDpass.sys -- (InCDPass) DRV - [2005-06-10 15:11:44 | 000,028,160 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\InCDrm.sys -- (incdrm) DRV - [2004-12-22 10:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004-12-15 05:01:00 | 003,329,504 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2004-12-14 16:55:22 | 000,009,472 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO) DRV - [2004-07-30 02:35:54 | 000,031,654 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\ckldrv.sys -- (NetworkX) DRV - [2004-07-28 23:15:38 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2004-07-28 23:15:36 | 000,033,024 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2004-07-20 14:19:16 | 000,020,096 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt) DRV - [2004-07-14 10:23:00 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2) DRV - [2004-07-06 19:56:26 | 000,044,544 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Video3D.sys -- (Video3D) DRV - [2004-06-03 03:40:50 | 000,068,224 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA NForce(tm) DRV - [2004-06-03 03:40:46 | 000,079,360 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2004-05-02 10:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\GVCplDrv.sys -- (GVCplDrv) DRV - [2004-04-02 08:40:00 | 000,021,760 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp) DRV - [2004-03-28 07:25:14 | 000,024,176 | R--- | M] (China Geniatech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PhTVTune.sys -- (PhTVTune) DRV - [2003-12-05 10:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc) DRV - [2003-06-03 15:52:24 | 000,123,957 | ---- | M] (StorageCraft) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\PQV2i.sys -- (PQV2i) DRV - [2003-06-03 15:52:20 | 000,046,900 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQIMount.sys -- (PQIMount) DRV - [2003-04-02 08:36:42 | 000,348,352 | R--- | M] (Philips Semiconductors) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Cap7134.sys -- (Cap7134) TV Card(Philips) DRV - [2001-10-26 17:02:28 | 000,907,584 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HCF_MSFT.sys -- (HCF_MSFT) DRV - [2001-08-17 20:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\el90xbc5.sys -- (EL90XBC) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Font Size = 01 00 00 00 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gazetawyborcza.pl/0,0.html?p=4 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8 FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009-05-07 21:02:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010-07-25 21:02:06 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2006-02-07 17:34:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2006-02-07 17:34:24 | 000,000,000 | ---D | M] [2010-01-07 19:31:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Mozilla\Extensions [2006-02-07 17:55:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Mozilla\Firefox\Profiles\lnbkopll.default\extensions [2009-09-23 20:44:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Mozilla\Firefox\Profiles\lnbkopll.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008-01-19 13:26:02 | 000,000,000 | ---D | M] (SignupShield) -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Mozilla\Firefox\Profiles\lnbkopll.default\extensions\{D02B1E87-A8C6-433f-9B5C-2CEC4A072736} [2006-02-07 17:34:24 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-06-14 22:00:48 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2006-07-14 02:10:16 | 001,486,848 | ---- | M] (LizardTech) -- C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll [2010-06-14 22:00:38 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll O1 HOSTS File: ([2010-07-27 00:33:04 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\tbFre1.dll (Conduit Ltd.) O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll () O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O3 - HKLM\..\Toolbar: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\tbFre1.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (Freecorder Toolbar) - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - C:\Program Files\Freecorder\tbFre1.dll (Conduit Ltd.) O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [McENUI] C:\Program Files\McAfee\MHN\McENUI.exe (McAfee, Inc.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation) O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKCU..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe (ASUSTeK Inc.) O4 - HKCU..\Run: [PowerBar] C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe (Cyberlink, Corp.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Service Manager.lnk = C:\MSSQL7\Binn\sqlmangr.exe (Microsoft Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1142979742203 (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1228169852859 (MUWebControl Class) O16 - DPF: {81E688E8-36A4-4FEF-B70B-8B0A1C5C1308} http://eplytki.pl/launcher.cab (WebLauncherX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.4.0/jinstall-1_4_0_03-windows-i586.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation) O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (pgdfgsvc C 1) - C:\WINDOWS\System32\pgdfgsvc.exe (Sysinternals - www.sysinternals.com) O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe () O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-07-28 00:17:39 | 000,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Krzysztof\Pulpit\RootRepeal.exe [2010-07-28 00:17:38 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTL.exe [2010-07-27 21:56:29 | 000,882,672 | ---- | C] (Duplex Secure Ltd.) -- C:\Documents and Settings\Krzysztof\Pulpit\SPTDinst-v169-x86.exe [2010-07-27 21:56:20 | 000,641,536 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTS.exe [2010-07-27 21:56:13 | 000,640,512 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTS.com [2010-07-27 21:56:02 | 000,258,560 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTH.exe [2010-07-27 00:17:11 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-07-27 00:08:35 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-07-27 00:08:30 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-07-27 00:08:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-07-27 00:08:29 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-07-27 00:01:46 | 000,000,000 | ---D | C] -- C:\CFx [2010-07-27 00:01:04 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-07-25 21:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\SACore [2010-07-25 21:02:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SiteAdvisor [2010-07-25 21:00:12 | 000,079,816 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfeavfk.sys [2010-07-25 21:00:12 | 000,040,552 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfesmfk.sys [2010-07-25 21:00:12 | 000,035,272 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfebopk.sys [2010-07-25 21:00:09 | 000,120,136 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\Mpfp.sys [2010-07-25 20:59:40 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com [2010-07-25 20:59:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee [2010-07-25 20:59:26 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee [2010-07-25 20:51:41 | 000,034,248 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mferkdk.sys [2010-07-18 14:44:34 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2004-12-01 06:18:45 | 000,151,552 | R--- | C] ( ) -- C:\WINDOWS\System32\ATIDEMGR.dll [8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Krzysztof\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Krzysztof\Moje dokumenty\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-07-28 00:23:00 | 000,007,191 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF [2010-07-28 00:22:42 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2010-07-28 00:20:00 | 000,017,555 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-07-28 00:19:30 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-07-28 00:19:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-07-28 00:12:56 | 008,650,752 | ---- | M] () -- C:\Documents and Settings\Krzysztof\ntuser.dat [2010-07-27 23:12:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTL.exe [2010-07-27 12:21:32 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-07-27 11:14:56 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\5elwpyjr.exe [2010-07-27 11:14:40 | 000,147,456 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\catchme(2).exe [2010-07-27 11:14:28 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\unvj281h.exe [2010-07-27 11:09:30 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\zi5xp1vt.exe [2010-07-27 10:53:12 | 000,882,672 | ---- | M] (Duplex Secure Ltd.) -- C:\Documents and Settings\Krzysztof\Pulpit\SPTDinst-v169-x86.exe [2010-07-27 10:29:46 | 000,258,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTH.exe [2010-07-27 10:29:04 | 000,640,512 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTS.com [2010-07-27 10:27:06 | 000,147,456 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\catchme.exe [2010-07-27 10:23:02 | 000,641,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Krzysztof\Pulpit\OTS.exe [2010-07-27 10:22:36 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\RSIT.exe [2010-07-27 10:21:46 | 000,525,824 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\dds.scr [2010-07-27 10:21:28 | 000,525,824 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\dds.com [2010-07-27 00:49:54 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Krzysztof\ntuser.ini [2010-07-27 00:34:00 | 000,000,243 | ---- | M] () -- C:\WINDOWS\system.ini [2010-07-27 00:17:24 | 000,000,264 | RHS- | M] () -- C:\boot.ini [2010-07-26 23:31:02 | 003,744,545 | R--- | M] () -- C:\Documents and Settings\Krzysztof\Pulpit\CFx.exe [2010-07-25 21:02:22 | 000,000,582 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Center.lnk [2010-07-25 21:02:04 | 000,000,577 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee EasyNetwork.lnk [2010-07-25 21:01:56 | 000,034,360 | ---- | M] () -- C:\Documents and Settings\Krzysztof\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-07-25 20:59:56 | 000,000,354 | ---- | M] () -- C:\WINDOWS\tasks\McDefragTask.job [2010-07-25 20:59:56 | 000,000,326 | ---- | M] () -- C:\WINDOWS\tasks\McQcTask.job [2010-07-25 20:40:24 | 003,061,256 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Krzysztof\Pulpit\DMSetup.exe [2010-07-15 15:18:22 | 000,120,136 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\Mpfp.sys [2010-07-07 23:07:50 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2010-06-30 22:34:04 | 000,500,872 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-06-30 22:34:04 | 000,441,090 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-06-30 22:34:04 | 000,089,218 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-06-30 22:34:04 | 000,071,408 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-06-30 22:34:02 | 001,072,236 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Krzysztof\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Krzysztof\Moje dokumenty\*.tmp -> ] [1 C:\*.tmp files -> C:\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-07-27 21:56:33 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\5elwpyjr.exe [2010-07-27 21:56:31 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\zi5xp1vt.exe [2010-07-27 21:56:29 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\unvj281h.exe [2010-07-27 21:56:26 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\RSIT.exe [2010-07-27 21:55:56 | 000,525,824 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\dds.scr [2010-07-27 21:55:51 | 000,525,824 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\dds.com [2010-07-27 21:55:45 | 000,147,456 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\catchme.exe [2010-07-27 21:55:45 | 000,147,456 | ---- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\catchme(2).exe [2010-07-27 00:08:37 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-07-27 00:08:30 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-07-27 00:08:30 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-07-27 00:08:29 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-07-27 00:08:29 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-07-26 23:43:56 | 003,744,545 | R--- | C] () -- C:\Documents and Settings\Krzysztof\Pulpit\CFx.exe [2010-07-25 21:02:42 | 000,007,191 | ---- | C] () -- C:\WINDOWS\System32\Config.MPF [2010-07-25 21:02:21 | 000,000,582 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Center.lnk [2010-07-25 21:02:03 | 000,000,577 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\McAfee EasyNetwork.lnk [2010-07-25 20:59:54 | 000,000,354 | ---- | C] () -- C:\WINDOWS\tasks\McDefragTask.job [2010-07-25 20:59:53 | 000,000,326 | ---- | C] () -- C:\WINDOWS\tasks\McQcTask.job [2010-03-11 18:51:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI [2010-02-10 18:44:01 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\ATKOSDMini.DLL [2010-02-10 18:44:01 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini [2010-02-10 18:44:00 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\ATKCheckDispIDs.dll [2009-09-30 21:31:38 | 000,001,775 | ---- | C] () -- C:\WINDOWS\wbocx.ini [2009-04-12 10:04:41 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys [2009-01-08 21:16:10 | 000,000,405 | ---- | C] () -- C:\WINDOWS\log.ini [2008-11-10 10:55:37 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2008-09-27 22:43:07 | 000,000,025 | ---- | C] () -- C:\WINDOWS\OUTSTACKER.INI [2008-09-27 22:29:47 | 000,000,267 | ---- | C] () -- C:\WINDOWS\sripper.ini [2008-09-27 22:29:47 | 000,000,051 | ---- | C] () -- C:\WINDOWS\StreamRipper32.INI [2008-09-16 20:01:07 | 000,002,455 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2008-05-17 23:36:53 | 000,000,169 | ---- | C] () -- C:\WINDOWS\adidsl.ini [2008-05-17 23:36:53 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini [2008-05-17 23:36:29 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll [2008-05-17 23:36:29 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL [2008-05-13 03:53:16 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-05-13 03:50:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest [2008-05-13 03:50:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest [2008-05-13 03:50:08 | 000,831,488 | ---- | C] () -- C:\WINDOWS\System32\divx_xx0a.dll [2008-05-13 03:49:02 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2008-04-18 23:22:04 | 004,244,744 | ---- | C] () -- C:\WINDOWS\System32\qtp-mt334.dll [2008-04-18 23:22:04 | 000,247,560 | ---- | C] () -- C:\WINDOWS\System32\prgiso.dll [2008-04-18 23:22:04 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\wnaspi32.dll [2008-04-11 14:01:42 | 000,000,990 | ---- | C] () -- C:\WINDOWS\adiras.ini [2008-04-03 00:48:43 | 000,000,152 | ---- | C] () -- C:\WINDOWS\ULead32.ini [2008-02-13 21:25:41 | 000,035,840 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll [2007-06-15 18:33:34 | 000,270,336 | ---- | C] () -- C:\WINDOWS\System32\GTTunerCard.dll [2007-06-02 00:06:30 | 000,000,015 | ---- | C] () -- C:\WINDOWS\qtw.ini [2007-02-11 23:30:41 | 000,037,888 | ---- | C] () -- C:\WINDOWS\System32\setupnt.dll [2007-01-29 22:28:03 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI [2007-01-15 12:18:54 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\TVAudio.dll [2006-11-02 22:54:34 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2006-09-19 00:08:13 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL [2006-09-18 23:08:39 | 000,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2006-09-18 00:37:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\frontend.INI [2006-09-04 22:26:15 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys [2006-09-01 23:35:56 | 000,078,336 | ---- | C] () -- C:\WINDOWS\System32\dbjavio6.dll [2006-09-01 23:35:55 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\dbauth6.dll [2006-09-01 23:35:47 | 000,000,101 | ---- | C] () -- C:\WINDOWS\Crypkey.ini [2006-09-01 23:35:44 | 000,031,654 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys [2006-09-01 23:35:44 | 000,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll [2006-08-23 23:15:55 | 000,001,140 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2006-08-23 23:05:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PPMManager.INI [2006-07-15 00:32:48 | 000,626,688 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll [2006-07-12 22:05:21 | 000,000,048 | ---- | C] () -- C:\WINDOWS\wpd99.drv [2006-07-12 22:05:11 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini [2006-07-12 22:03:49 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\pdfmona.dll [2006-07-12 22:03:49 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll [2006-07-05 23:50:37 | 000,000,000 | ---- | C] () -- C:\WINDOWS\epcmonitor.INI [2006-07-05 23:50:09 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\XNMHB458.DLL [2006-07-05 23:50:09 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\XNMHN425.DLL [2006-07-05 23:50:09 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\XNMTE458.DLL [2006-07-05 23:50:09 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\XNMTE425.DLL [2006-07-05 23:50:09 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\XNMHN458.DLL [2006-07-05 23:50:09 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\DS1410D.SYS [2006-07-05 23:50:08 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\XNMBA458.DLL [2006-07-05 23:50:08 | 000,303,616 | ---- | C] () -- C:\WINDOWS\System32\XNMBA425.DLL [2006-07-05 23:50:08 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\XNMHB425.DLL [2006-07-05 23:50:08 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\DS1410D.SYS [2006-06-04 23:49:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\FCE.INI [2006-04-30 10:06:46 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini [2006-04-12 00:14:20 | 000,000,831 | ---- | C] () -- C:\WINDOWS\ldp.INI [2006-03-23 00:23:37 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI [2006-03-21 23:09:07 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2006-02-27 17:48:29 | 000,000,073 | ---- | C] () -- C:\WINDOWS\wininit.ini [2006-02-11 15:36:23 | 000,000,157 | ---- | C] () -- C:\WINDOWS\Route.INI [2006-02-08 23:00:23 | 000,001,191 | ---- | C] () -- C:\WINDOWS\disney.ini [2006-02-08 22:34:01 | 000,001,201 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006-02-08 22:33:51 | 000,001,098 | ---- | C] () -- C:\WINDOWS\YDPDICT.INI [2006-02-07 21:11:18 | 000,000,246 | ---- | C] () -- C:\WINDOWS\VOGEL.INI [2006-02-01 22:56:25 | 000,000,274 | ---- | C] () -- C:\WINDOWS\hpqcopy.INI [2006-01-31 18:33:24 | 000,364,544 | ---- | C] () -- C:\WINDOWS\System32\hpgt23.dll [2006-01-05 23:29:29 | 000,000,095 | ---- | C] () -- C:\WINDOWS\EEC.ini [2005-12-31 00:32:30 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2005-12-30 22:33:35 | 000,000,120 | ---- | C] () -- C:\WINDOWS\bascomlt.ini [2005-12-29 23:40:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2005-12-29 23:32:33 | 000,000,659 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini [2005-12-29 23:29:38 | 000,001,488 | ---- | C] () -- C:\WINDOWS\WINCMD.INI [2005-12-29 22:33:32 | 000,000,029 | ---- | C] () -- C:\WINDOWS\CAI.INI [2005-12-29 18:52:39 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2005-12-28 01:15:08 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2005-12-28 01:15:06 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2004-10-26 23:39:05 | 003,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll [2004-10-11 11:19:00 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\ASUSASV2.DLL [2004-09-01 11:12:19 | 000,054,784 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2004-09-01 11:10:02 | 000,212,480 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2004-07-29 02:19:46 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2003-06-28 14:34:20 | 000,069,707 | ---- | C] () -- C:\WINDOWS\System32\DISP_OPT1.dll [1999-08-06 16:01:28 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\dbextf50.dll [1999-08-06 15:17:44 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\dbodtr6.dll [1998-06-11 03:08:40 | 000,015,120 | ---- | C] () -- C:\WINDOWS\System32\Reputil.dll [1996-09-24 23:40:44 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\W32mkrc.dll [1993-11-03 00:12:36 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\Nwlocale.dll [color=#E56717]========== LOP Check ==========[/color] [2006-01-05 17:28:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems [2006-01-05 17:33:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SmartSound Software Inc [2006-01-21 22:36:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OLYMPUS [2006-02-02 23:57:16 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Visio [2006-07-12 22:03:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\pdf995 [2007-06-08 22:46:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations [2007-06-08 22:46:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2007-06-08 22:53:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2007-12-22 21:09:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2008-04-11 10:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Acronis [2008-04-14 21:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PowerQuest [2008-09-16 19:59:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\FreeRIP [2009-02-22 17:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\vsosdk [2009-02-25 23:04:12 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{83C91755-2546-441D-AC40-9A6B4B860800} [2009-10-09 21:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl [2009-12-28 19:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Buena Vista Games [2006-01-05 22:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Ulead Systems [2006-01-05 23:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\OpenOffice.ux.pl2 [2006-01-31 18:35:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Folder przesyłania Share-to-Web [2006-04-19 00:36:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Opera [2006-07-12 22:05:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\pdf995 [2006-08-15 22:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\DVD2AVI Ripper [2006-11-14 23:55:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Tlen.pl [2007-02-16 00:04:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Registry Cleaner [2007-06-08 22:46:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\PC Suite [2007-06-08 22:56:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Nokia [2008-01-03 12:23:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Vso [2008-01-19 09:12:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Printer Info Cache [2008-01-28 22:11:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\uTorrent [2008-04-11 13:33:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Langenscheidt [2008-04-14 21:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\IsolatedStorage [2008-10-16 21:11:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Ashampoo [2009-02-23 22:08:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\BESTplayer [2009-12-13 20:44:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\Summer Athletics 2009 [2010-06-14 22:07:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krzysztof\Dane aplikacji\OpenOffice.org [2010-07-28 00:22:42 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [2010-07-07 23:07:50 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job [2010-07-25 20:59:56 | 000,000,326 | ---- | M] () -- C:\WINDOWS\Tasks\McQcTask.job [2010-07-25 20:59:56 | 000,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\McDefragTask.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Files - Unicode (All) ==========[/color] [2006-09-02 11:06:56 | 000,000,000 | ---D | M](C:\WINDOWS\System32\?w) -- C:\WINDOWS\System32\w [2006-09-02 11:06:55 | 000,000,000 | ---D | C](C:\WINDOWS\System32\?w) -- C:\WINDOWS\System32\w < End of report >