OTL logfile created on: 2010-07-29 12:41:45 - Run 1
OTL by OldTimer - Version 3.2.9.1     Folder = C:\Documents and Settings\test\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
511,00 Mb Total Physical Memory | 154,00 Mb Available Physical Memory | 30,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 6,24 Gb Free Space | 21,30% Space Free | Partition Type: NTFS
Drive D: | 45,23 Gb Total Space | 29,17 Gb Free Space | 64,51% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: TEST-35585F4396
Current User Name: test
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010-07-29 12:40:47 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\test\Pulpit\OTL.exe
PRC - [2010-07-24 20:25:56 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-07-09 14:30:26 | 001,915,368 | ---- | M] (CPUID) -- C:\Documents and Settings\test\Pulpit\cpu-z_1.55-32bits-en\cpuz.exe
PRC - [2010-06-28 22:57:18 | 002,837,864 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010-06-28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-02-06 13:12:34 | 001,181,328 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2010-01-27 19:13:12 | 000,788,880 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2007-06-13 15:23:49 | 001,034,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010-07-29 12:40:47 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\test\Pulpit\OTL.exe
MOD - [2006-08-25 17:51:13 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- C:\Program Files\CDBurnerXP Pro 3\Tools\NMSAccess.exe -- (NMSAccess)
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010-06-28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-06-28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-06-28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010-02-06 13:12:34 | 001,181,328 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2006-10-05 19:26:18 | 000,024,072 | ---- | M] (TuneUp Software GmbH) [Disabled | Stopped] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2004-09-07 16:25:12 | 001,151,090 | ---- | M] (Ahead Software AG) [Disabled | Stopped] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\PCAMPR5.SYS -- (PCAMPR5)
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\DRIVERS\nvcap.sys -- (nvcap) nVidia WDM Video Capture (universal)
DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\ivws.sys -- (krsubf)
DRV - File not found [Kernel | On_Demand | Running] -- C:\DOCUME~1\test\USTAWI~1\Temp\cpuz134\cpuz134_x32.sys -- (cpuz134)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Messi\USTAWI~1\Temp\catchme.sys -- (catchme)
DRV - [2010-06-28 22:37:52 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-06-28 22:37:30 | 000,165,456 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-06-28 22:33:13 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-06-28 22:32:45 | 000,100,176 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010-06-28 22:32:33 | 000,017,744 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-06-28 22:32:16 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009-09-23 14:55:23 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2007-05-31 03:32:34 | 000,099,648 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\V0420Vid.sys -- (V0420VID) Live! Cam Vista IM (VF0420)
DRV - [2006-10-14 08:56:41 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi)
DRV - [2006-10-14 08:55:26 | 000,664,064 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2006-09-19 12:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2006-09-15 12:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys)
DRV - [2005-02-24 17:32:00 | 003,454,144 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2004-12-08 19:24:34 | 000,032,782 | ---- | M] (USB Com port.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser120.sys -- (SER120)
DRV - [2004-09-07 16:27:38 | 000,028,544 | ---- | M] (Ahead Software AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDpass.sys -- (InCDPass)
DRV - [2004-09-07 16:27:22 | 000,091,136 | ---- | M] (Ahead Software AG) [File_System | Disabled | Running] -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2004-08-04 01:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004-08-03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV - [2004-08-02 15:09:18 | 000,635,281 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004-06-03 04:40:50 | 000,068,224 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA NForce(tm)
DRV - [2004-06-03 04:40:46 | 000,079,360 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004-05-17 08:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004-05-17 08:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004-02-24 05:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2003-12-05 11:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003-10-29 07:02:00 | 000,021,120 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
DRV - [2003-08-04 14:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
DRV - [2001-08-17 22:49:10 | 000,026,624 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irstusb.sys -- (STIrUsb)
DRV - [1999-03-05 09:41:52 | 000,052,800 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\HPFECP20.SYS -- (HPFECP20)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-220523388-1482476501-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl/
IE - HKU\S-1-5-21-220523388-1482476501-839522115-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-220523388-1482476501-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..network.proxy.type: 4
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-27 12:18:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-24 20:26:03 | 000,000,000 | ---D | M]
 
[2008-12-25 15:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\Mozilla\Extensions
[2010-07-28 14:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\Mozilla\Firefox\Profiles\fawr9f0n.default\extensions
[2010-07-20 10:31:35 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\test\Dane aplikacji\Mozilla\Firefox\Profiles\fawr9f0n.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010-07-28 14:07:46 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2008-11-11 09:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
[2010-07-01 21:08:07 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-07-01 21:08:07 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-07-01 21:08:07 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-07-01 21:08:07 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-07-01 21:08:07 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-07-01 21:08:07 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2009-08-14 14:02:07 | 000,000,792 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 getmirar.com
O1 - Hosts: 127.0.0.1 mirarsearch.com
O1 - Hosts: 127.0.0.1 net-nucleus.com
O1 - Hosts: 127.0.0.1 getmirar.com\click
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Messi\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (no name) - {2F7DB8D7-9BE7-4666-901E-F380555BCAC7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\..\Toolbar\ShellBrowser: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\..\Toolbar\WebBrowser: (no name) - {37B85A29-692B-4205-9CAD-2626E4993404} - No CLSID value found.
O3 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKU\S-1-5-21-220523388-1482476501-839522115-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe File not found
O4 - HKU\S-1-5-21-220523388-1482476501-839522115-1003..\RunOnce: [Shockwave Updater] C:\WINDOWS\System32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -Mozilla\5.0_( File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Internet ADSL.lnk =  File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-220523388-1482476501-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-08-20 19:43:04 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-08-25 12:37:32 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009-08-25 12:37:32 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{6d2ec32e-81aa-11dd-b564-4d6564696130}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-07-29 12:40:44 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\test\Pulpit\OTL.exe
[2010-07-29 12:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Pulpit\cpu-z_1.55-32bits-en
[2010-07-25 13:49:43 | 000,000,000 | ---D | C] -- C:\Program Files\NovaLogic
[2010-07-25 09:53:15 | 000,000,000 | ---D | C] -- C:\Program Files\Codemasters
[2010-07-20 10:53:03 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\avastSS.scr
[2010-07-13 14:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\test\Moje dokumenty\JoWooD
[2007-01-19 17:11:16 | 000,018,384 | ---- | C] (              ) -- C:\WINDOWS\System32\video.drv
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-07-29 12:40:47 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\test\Pulpit\OTL.exe
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
[2010-07-29 12:40:19 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
[2010-07-29 12:24:36 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-07-29 12:24:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-07-29 12:24:06 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys
[2010-07-29 00:57:50 | 007,340,032 | -H-- | M] () -- C:\Documents and Settings\test\NTUSER.DAT
[2010-07-29 00:57:50 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\test\ntuser.ini
[2010-07-29 00:57:38 | 001,575,786 | -H-- | M] () -- C:\Documents and Settings\test\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-07-20 10:53:05 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-07-07 11:12:24 | 000,263,024 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2009-02-04 22:07:20 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2009-02-04 22:07:20 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2009-02-04 22:07:10 | 000,001,094 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2009-02-04 22:07:06 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2009-02-04 22:07:04 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL
[2008-12-30 19:47:16 | 002,294,291 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2008-12-30 19:47:15 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-12-30 19:47:13 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-12-30 19:47:13 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-12-30 18:06:09 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2008-12-30 18:05:54 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2008-12-30 18:05:51 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2008-10-03 16:52:12 | 000,000,219 | ---- | C] () -- C:\WINDOWS\HPFTBX20.INI
[2008-10-03 16:52:12 | 000,000,193 | ---- | C] () -- C:\WINDOWS\hpc.ini
[2008-06-28 19:33:52 | 000,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-03-15 23:25:16 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2008-02-27 17:04:51 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2008-02-18 18:37:25 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini
[2007-10-28 18:19:24 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007-08-21 19:19:43 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2007-08-09 12:27:54 | 000,394,240 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
[2007-08-09 12:27:53 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2007-02-17 14:38:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\DarkstoneDemo.INI
[2007-01-27 15:29:55 | 000,000,047 | ---- | C] () -- C:\WINDOWS\entpack.ini
[2007-01-22 18:58:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\dxinfo.INI
[2007-01-21 18:39:58 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2007-01-19 17:31:22 | 000,000,049 | ---- | C] () -- C:\WINDOWS\PCWKCD.INI
[2007-01-04 16:30:12 | 000,000,472 | ---- | C] () -- C:\WINDOWS\merge.INI
[2006-11-22 14:21:27 | 000,000,267 | ---- | C] () -- C:\WINDOWS\cncscore.ini
[2006-10-14 08:56:41 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys
[2006-10-14 08:55:26 | 000,664,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2006-10-14 08:55:26 | 000,096,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8285.sys
[2006-10-13 18:43:06 | 000,000,148 | ---- | C] () -- C:\WINDOWS\gambler.ini
[2006-09-15 10:14:37 | 000,000,039 | ---- | C] () -- C:\WINDOWS\pamlicCls.dll
[2006-08-05 13:20:01 | 000,000,526 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006-07-31 22:48:16 | 000,000,795 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2006-07-30 12:43:54 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006-07-28 21:29:28 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\micr0st.dll
[2006-07-28 18:07:37 | 000,001,682 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006-07-28 18:07:37 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\CBBDFA8E03.sys
[2006-07-27 21:14:22 | 000,000,155 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2006-07-27 21:04:23 | 000,001,105 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2006-07-26 15:53:05 | 000,001,297 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005-02-24 17:32:00 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2004-02-07 15:16:34 | 000,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2004-01-05 17:53:53 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2004-01-05 17:43:11 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2004-01-05 17:43:06 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2003-11-18 13:50:24 | 000,421,888 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002-10-06 19:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-03-26 21:18:28 | 000,091,136 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll
[2002-02-21 18:41:20 | 000,157,184 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2002-01-20 14:26:36 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\SimpleResize.dll
[2001-09-17 13:20:02 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2001-06-22 13:06:02 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\MPEG2DEC.dll
[1999-03-05 10:27:32 | 000,004,715 | ---- | C] () -- C:\WINDOWS\System32\HPFlnk20.ini
[1999-03-05 10:16:58 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\HPFhrl20.dll
[1999-03-05 10:16:56 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\HPFsrl20.dll
[1999-03-05 10:16:50 | 000,302,080 | ---- | C] () -- C:\WINDOWS\System32\HPFmrl20.dll
[1999-03-05 10:16:46 | 001,152,000 | ---- | C] () -- C:\WINDOWS\System32\HPFtrl20.dll
[1999-03-05 10:05:28 | 000,194,048 | ---- | C] () -- C:\WINDOWS\System32\HPFcps20.dll
[1999-03-05 10:04:56 | 000,076,800 | ---- | C] () -- C:\WINDOWS\System32\HPF24r20.dll
[1999-03-05 10:03:44 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\HPFtst20.dll
[1999-03-05 10:02:04 | 000,071,680 | ---- | C] () -- C:\WINDOWS\System32\HPFpcl20.dll
[1999-03-05 09:55:24 | 000,401,920 | ---- | C] () -- C:\WINDOWS\System32\HPFui20.dll
[1999-03-05 09:49:46 | 000,209,408 | ---- | C] () -- C:\WINDOWS\System32\HPFwin20.dll
[1999-03-05 09:46:14 | 000,037,376 | ---- | C] () -- C:\WINDOWS\System32\HPFmon20.dll
[1999-03-05 09:45:36 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\HPFcbl20.dll
[1999-03-05 09:43:36 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\HPFnet20.dll
[1999-03-05 09:43:24 | 000,033,384 | ---- | C] () -- C:\WINDOWS\System32\HPFiop20.dll
[1999-03-05 09:43:12 | 000,069,284 | ---- | C] () -- C:\WINDOWS\System32\HPFpml20.dll
[1999-03-05 09:43:06 | 000,137,232 | ---- | C] () -- C:\WINDOWS\System32\HPFmlc20.dll
[1999-03-05 09:43:00 | 000,057,240 | ---- | C] () -- C:\WINDOWS\System32\HPFmem20.dll
[1999-03-05 09:42:56 | 000,048,292 | ---- | C] () -- C:\WINDOWS\System32\HPFlpm20.dll
[1999-03-05 09:42:44 | 000,072,368 | ---- | C] () -- C:\WINDOWS\System32\HPFcom20.dll
[1999-03-05 09:41:52 | 000,052,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\HPFecp20.sys
[1999-03-05 09:41:04 | 000,029,184 | ---- | C] () -- C:\WINDOWS\System32\HPFrsu20.dll
[1999-03-05 09:40:34 | 000,117,760 | ---- | C] () -- C:\WINDOWS\System32\HPFrsa20.dll
[1999-03-05 09:36:06 | 001,777,664 | ---- | C] () -- C:\WINDOWS\System32\HPFimg20.dll
[1999-03-05 09:32:40 | 000,124,928 | ---- | C] () -- C:\WINDOWS\System32\HPFcnt20.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-01-24 22:08:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2009-11-16 15:02:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2008-08-20 19:41:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\muvee Technologies
[2010-02-28 20:32:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2006-12-05 19:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2007-04-12 09:07:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2009-03-20 16:31:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\VirtualFarm
[2009-12-04 23:27:29 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[2009-08-14 14:54:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\EurekaLog
[2008-02-27 18:57:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\Gadu-Gadu
[2010-02-18 23:07:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\maxup
[2008-03-15 23:25:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\Megaupload
[2009-08-24 12:43:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\Notepad++
[2009-08-18 15:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\Nowe Gadu-Gadu
[2007-08-16 13:21:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Messi\Dane aplikacji\TuneUp Software
[2010-03-27 12:39:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\EurekaLog
[2008-02-27 19:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\Gadu-Gadu
[2009-09-21 15:28:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\InterTrust
[2009-11-20 12:35:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\ipla
[2010-02-19 10:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\maxup
[2008-04-13 18:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\MEGAUPLOADTOOLBAR
[2010-01-24 19:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\Nowe Gadu-Gadu
[2009-08-18 21:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\OpenFM
[2007-04-12 09:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\test\Dane aplikacji\TuneUp Software
[2008-04-20 12:58:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojek\Dane aplikacji\MEGAUPLOADTOOLBAR
[2007-05-12 16:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojek\Dane aplikacji\TuneUp Software
[2010-07-29 12:40:19 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 1).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 2).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 3).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 4).job
[2010-07-29 12:40:20 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:C4252FE0
< End of report >