OTL logfile created on: 2011-11-17 13:00:32 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\8002-300\Desktop\fixit Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 1,49 Gb Total Physical Memory | 0,93 Gb Available Physical Memory | 62,36% Memory free 2,83 Gb Paging File | 2,44 Gb Available in Paging File | 86,30% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 108,95 Gb Total Space | 4,54 Gb Free Space | 4,17% Space Free | Partition Type: NTFS Drive E: | 9,76 Gb Total Space | 2,24 Gb Free Space | 22,94% Space Free | Partition Type: FAT32 Computer Name: A5720 | User Name: 8002-300 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-11-17 12:51:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\8002-300\Desktop\fixit\OTL.exe PRC - [2011-10-22 11:28:47 | 000,212,992 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\8002-300\Local Settings\temp\RtkBtMnt.exe PRC - [2008-04-14 01:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-04-01 09:02:38 | 000,568,176 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe PRC - [2007-03-21 21:00:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe PRC - [2007-03-21 21:00:00 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2003-05-23 12:04:40 | 000,139,264 | ---- | M] () -- C:\Program Files\USB Sharing\usbshare.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2007-04-01 09:00:28 | 002,842,624 | ---- | M] () -- C:\WINDOWS\system32\btwicons.dll MOD - [2007-04-01 08:57:16 | 000,053,248 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll MOD - [2003-05-23 12:04:40 | 000,139,264 | ---- | M] () -- C:\Program Files\USB Sharing\usbshare.exe [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-09-11 07:24:32 | 000,735,960 | ---- | M] () [Auto | Stopped] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2007-03-21 21:00:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R) SRV - [2004-03-18 16:55:48 | 000,065,536 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-02-25 10:00:43 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2010-02-25 10:00:41 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2010-02-25 10:00:41 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2009-12-03 21:22:04 | 006,021,664 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-11-18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009-11-18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009-09-11 07:26:24 | 000,055,768 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2009-09-11 07:26:20 | 000,135,048 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2009-09-11 07:23:50 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-09-11 07:17:16 | 000,116,008 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2008-12-16 14:44:42 | 000,516,480 | ---- | M] (Digital Camera) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\Ca1528av.sys -- (Ca1528av) DRV - [2008-11-16 18:39:44 | 000,131,984 | ---- | M] (Deterministic Networks, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE) DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k) DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmeaext.sys -- (ZTEusbnmeaext) DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea) DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k) DRV - [2008-10-14 08:10:30 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-06-27 15:41:14 | 000,011,648 | ---- | M] (SunPlus) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Bulk1528.sys -- (Bulk1528) DRV - [2008-06-16 09:13:46 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2008-05-16 11:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM) DRV - [2008-05-16 11:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS) DRV - [2008-05-16 11:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl) DRV - [2008-05-16 11:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm) DRV - [2008-05-16 11:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM) DRV - [2008-05-16 11:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex) DRV - [2008-05-16 11:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM) DRV - [2008-03-13 12:51:52 | 000,057,536 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - [2008-03-13 12:50:02 | 000,072,000 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2007-09-06 14:40:12 | 000,009,600 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vmnetadapter.sys -- (VMnetAdapter) DRV - [2007-04-30 06:37:20 | 002,206,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32) Intel(R) DRV - [2007-03-31 21:02:42 | 000,876,384 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL) DRV - [2007-03-31 21:02:40 | 000,055,352 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid) DRV - [2007-03-23 18:50:42 | 000,067,960 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2007-03-23 18:50:36 | 000,037,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem) DRV - [2007-03-23 18:50:24 | 000,149,123 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS) DRV - [2007-03-23 18:50:08 | 000,037,424 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver) DRV - [2007-03-23 18:49:54 | 000,539,072 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio) DRV - [2007-02-16 23:46:00 | 000,160,256 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2007-02-07 18:35:10 | 001,729,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2007-01-24 22:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21) DRV - [2007-01-18 20:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA) DRV - [2006-12-22 19:56:44 | 000,988,800 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2006-12-22 19:56:00 | 000,209,664 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2006-12-22 19:55:56 | 000,730,112 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2006-04-25 09:39:14 | 000,282,752 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Mrvw125.sys -- (W8335XP) Marvell Libertas 802.11b/g Driver for Windows XP (8335) DRV - [2006-04-25 09:39:06 | 000,032,640 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtf32bus.sys -- (GTF32BUS) DRV - [2006-04-25 09:39:02 | 000,019,328 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtscser.sys -- (GTSCSER) DRV - [2006-04-25 09:39:02 | 000,008,064 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtptser.sys -- (GTPTSER) DRV - [2005-11-17 15:36:34 | 000,008,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\flash.sys -- (flash) DRV - [2005-04-07 18:08:46 | 000,078,208 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-shd.sys -- (EpmShd) DRV - [2004-12-06 14:43:07 | 000,045,534 | ---- | M] (EUTRON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\eusk3usb.sys -- (eusk3usb) DRV - [2004-07-19 13:10:00 | 000,004,096 | ---- | M] (Acer Value Labs, USA) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epm-psd.sys -- (EpmPsd) DRV - [2004-05-05 11:10:58 | 000,043,235 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftcusb.sys -- (FTCUSB) DRV - [2004-03-23 17:36:44 | 000,056,031 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftcser2k.sys -- (FTCSER2K) DRV - [2003-01-06 16:27:46 | 000,040,448 | ---- | M] (DeviceGuys, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\DgivEcp.sys -- (DgivEcp) DRV - [2001-08-17 14:04:08 | 000,173,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\philcam2.sys -- (phil2vid) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\SOFTWARE\Microsoft\Internet Explorer\Main,AlwaysUseDefaultPrinter = IE - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found IE - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-11-17 10:12:21 | 000,000,000 | ---D | M] [2011-11-17 10:14:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\8002-300\Application Data\Mozilla\Extensions [2009-12-21 17:35:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\8002-300\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2011-06-21 08:25:12 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll O1 HOSTS File: ([2011-10-22 09:48:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found O3 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\..\Toolbar\ShellBrowser: (no name) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - No CLSID value found. O3 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\..\Toolbar\WebBrowser: (no name) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - No CLSID value found. O3 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found. O4 - HKLM..\Run: [BIH] C:\WINDOWS\System32\bih.dll (Thomas Michel eMail: support.batteryinfo@arcor.de Web: http://www.batteryinfo.de.vu or http://home.arcor.de/batteryinfo) O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation) O4 - HKLM..\Run: [PLFSet] C:\WINDOWS\PLFSet.dll ( ) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\USB Sharing.lnk = C:\Program Files\USB Sharing\usbshare.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1292072267-1719026120-300380043-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O16 - DPF: {1E53EA77-34F2-474E-9046-B2B0C86F1821} http://www.eska.pl/streamplayers/OggX.ocx (OggX Control) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {C1D592D2-D4F6-4E9C-968D-797449DC0ADC} http://www.dvrstation.com/webServer.cab (WebViewerX Control) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 156.17.8.1 156.17.18.10 156.17.5.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D1693477-1DDA-4A88-AAB4-F51FCF243D8E}: DhcpNameServer = 156.17.8.1 156.17.18.10 156.17.5.2 O18 - Protocol\Handler\ic32pp - No CLSID value found O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-11-17 12:56:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\8002-300\Desktop\fixit [2011-11-17 09:57:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\8002-300\My Documents\tempy [2011-11-17 08:00:58 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2011-10-22 11:25:13 | 000,000,000 | ---D | C] -- C:\RECYCLER [2011-10-19 08:26:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\8002-300\My Documents\wypadek_dok [2008-02-12 05:36:59 | 000,016,384 | ---- | C] ( ) -- C:\WINDOWS\System32\ClearEvent.exe [2008-02-12 05:33:42 | 000,049,152 | ---- | C] ( ) -- C:\WINDOWS\System32\SysMonitor.exe [2008-02-12 05:31:38 | 000,045,056 | ---- | C] ( ) -- C:\WINDOWS\PLFSet.dll [2008-02-12 05:31:37 | 000,172,032 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [2008-02-12 05:31:37 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [1998-08-24 09:31:44 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\implode.dll [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2018-06-08 23:00:00 | 000,002,304 | ---- | M] () -- C:\WINDOWS\Systema0X_E5.dlx [2011-11-17 12:59:29 | 000,446,152 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-11-17 12:59:29 | 000,073,358 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-11-17 12:55:35 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-11-17 12:54:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-11-17 12:54:14 | 1600,565,248 | -HS- | M] () -- C:\hiberfil.sys [2011-11-17 12:53:05 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat [2011-11-17 10:41:45 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-11-17 10:09:06 | 000,001,594 | ---- | M] () -- C:\WINDOWS\VPNUnInstall.MIF [2011-11-17 10:01:46 | 000,210,488 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-11-02 20:04:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\1050496442 [2011-10-25 10:37:52 | 000,562,358 | ---- | M] () -- C:\Documents and Settings\8002-300\Prescan.dib [2011-10-25 10:35:51 | 000,000,024 | ---- | M] () -- C:\WINDOWS\ssnew01.ini [2011-10-22 09:48:20 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2011-10-21 13:24:08 | 000,059,904 | ---- | M] () -- C:\Documents and Settings\8002-300\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2018-06-08 23:00:00 | 000,002,304 | ---- | C] () -- C:\WINDOWS\Systema0X_E5.dlx [2011-11-17 10:08:12 | 000,001,594 | ---- | C] () -- C:\WINDOWS\VPNUnInstall.MIF [2011-11-17 07:57:21 | 1600,565,248 | -HS- | C] () -- C:\hiberfil.sys [2011-11-02 19:28:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\1050496442 [2011-10-21 14:13:46 | 1180,819,456 | ---- | C] () -- C:\Kung.Fu.Panda.2.2011.PLDUB.MD.DVDRip.XviD.AC3.5.1-A89.avi [2011-05-20 08:16:01 | 000,014,115 | ---- | C] () -- C:\WINDOWS\twspmm.ini [2010-12-27 12:13:01 | 000,000,062 | ---- | C] () -- C:\WINDOWS\PdvrServer.INI [2010-10-23 08:28:36 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\8002-300\Application Data\burnaware.ini [2010-01-07 20:58:33 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\8002-300\Local Settings\Application Data\PUTTY.RND [2009-12-30 11:18:35 | 000,000,046 | ---- | C] () -- C:\WINDOWS\adiras.ini [2009-02-11 09:51:27 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2009-02-02 17:52:37 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2009-01-25 23:46:26 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\hpgt33.dll [2009-01-10 07:06:51 | 000,008,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\flash.sys [2008-09-04 11:45:15 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\8002-300\Application Data\$_hpcst$.hpc [2008-07-25 08:31:44 | 000,000,066 | ---- | C] () -- C:\WINDOWS\CONREG.INI [2008-07-25 08:31:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2008-07-21 11:24:51 | 000,000,092 | ---- | C] () -- C:\WINDOWS\System32\ftcun2k.ini [2008-06-13 13:40:52 | 000,434,176 | ---- | C] () -- C:\WINDOWS\System32\ZSHP1020.EXE [2008-03-27 08:45:16 | 000,059,904 | ---- | C] () -- C:\Documents and Settings\8002-300\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-03-12 20:08:19 | 000,016,040 | ---- | C] () -- C:\Documents and Settings\8002-300\Application Data\ekiga.conf [2008-02-28 10:11:41 | 000,000,024 | ---- | C] () -- C:\WINDOWS\ssnew01.ini [2008-02-28 09:45:03 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\USBPRN.DLL [2008-02-28 09:45:03 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\SCANX.DLL [2008-02-16 18:32:03 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat [2008-02-15 08:00:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008-02-13 15:57:20 | 000,014,290 | ---- | C] () -- C:\Program Files\settings.dat [2008-02-13 14:11:35 | 000,324,608 | ---- | C] () -- C:\WINDOWS\wget.exe [2008-02-13 14:11:19 | 000,319,488 | ---- | C] () -- C:\WINDOWS\win-get.exe [2008-02-13 08:45:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\CDMKR32.INI [2008-02-12 08:20:14 | 000,000,544 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-02-12 08:20:13 | 000,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini [2008-02-12 08:20:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI [2008-02-12 05:38:09 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat [2008-02-12 05:36:30 | 000,319,488 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe [2008-02-12 05:33:21 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\8002-300\Local Settings\Application Data\fusioncache.dat [2008-02-12 05:31:38 | 001,729,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2008-02-12 05:10:53 | 000,000,039 | ---- | C] () -- C:\WINDOWS\PreLaunch.ini [2007-09-18 22:07:32 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\SDL.dll [2007-06-15 03:50:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2007-06-15 03:50:22 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2007-06-15 03:28:26 | 000,446,152 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2007-06-15 03:28:26 | 000,073,358 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2007-06-15 03:23:36 | 000,210,488 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2007-06-15 01:27:28 | 000,001,024 | RH-- | C] () -- C:\WINDOWS\System32\NTIBUN4.dll [2007-06-15 01:27:00 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\NTIMPEG2.dll [2007-06-15 01:27:00 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\NTIMP3.dll [2007-06-15 01:27:00 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\NTICDMK7.dll [2007-04-22 15:57:44 | 000,054,912 | ---- | C] () -- C:\WINDOWS\System32\drivers\sohci1394.sys [2007-04-16 22:51:16 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4820.dll [2007-04-16 22:16:28 | 000,910,464 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll [2007-04-01 09:00:28 | 002,842,624 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll [2007-04-01 08:41:52 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll [2007-01-18 12:21:48 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\s1394bus.sys [2006-08-29 02:30:04 | 000,013,952 | ---- | C] () -- C:\WINDOWS\System32\drivers\UBHelper.sys [2006-08-01 23:02:32 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2006-03-10 22:18:16 | 000,036,404 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2005-11-09 10:43:52 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\iidcapi_SONY.dll [2004-08-17 21:22:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2004-08-17 21:19:56 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2004-08-05 04:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2004-08-05 04:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2004-08-05 04:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2004-08-05 04:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2004-08-05 04:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2004-08-05 04:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004-08-05 04:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004-08-05 04:00:00 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2004-08-05 04:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2004-05-14 21:04:36 | 000,049,152 | ---- | C] () -- C:\WINDOWS\XMLaunch.exe [2003-11-24 23:55:48 | 000,743,424 | ---- | C] () -- C:\WINDOWS\libxml2.dll.off [2003-11-24 23:55:32 | 000,872,448 | ---- | C] () -- C:\WINDOWS\iconv.dll.off [2002-09-13 21:41:26 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2002-09-13 21:41:26 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-12-26 23:12:30 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\multiplex_vcd.dll [2001-11-14 13:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll [2001-09-04 06:46:38 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\Hmpg12.dll [2001-07-30 23:33:56 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\HMPV2_ENC.dll [2001-07-24 05:04:36 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\HMPV2_ENC_MMX.dll [1999-01-22 18:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL [color=#E56717]========== LOP Check ==========[/color] [2011-05-12 08:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\.wtw [2010-11-11 23:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\abby684 [2009-06-13 02:04:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Autodesk [2011-05-23 10:21:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\avidemux [2011-10-05 08:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Azureus [2009-06-13 01:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\DAEMON Tools [2009-09-11 14:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\DAEMON Tools Lite [2009-06-13 01:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\DAEMON Tools Pro [2009-12-04 10:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\ESET [2010-12-21 09:25:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\FileZilla [2009-12-22 14:36:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Gadu-Gadu [2011-04-14 11:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\gtk-2.0 [2008-11-28 02:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\iLibrary Reader [2008-09-29 14:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Image Zone Express [2011-01-20 10:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\InfraRecorder [2008-02-21 10:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Inkscape [2011-06-09 12:41:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\IrfanView [2009-02-16 14:21:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\KeePass [2010-01-22 11:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\maprogs [2009-11-13 13:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Nokia [2010-03-03 12:51:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\OpenOffice.org [2010-03-02 17:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\PC Suite [2011-11-17 10:13:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\stamina [2010-01-05 14:42:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\TeamViewer [2011-11-17 12:49:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\Thunderbird [2009-12-13 11:31:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\TuxPaint [2011-01-26 08:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\VitySoft [2011-03-21 09:02:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\8002-300\Application Data\XnView [2009-08-26 10:17:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk [2009-12-19 22:05:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus [2010-02-25 09:57:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software [2011-10-23 21:21:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cisco [2010-02-08 08:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CounterPath [2009-12-22 11:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite [2010-12-27 12:13:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EMS [2009-12-04 10:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET [2009-01-08 17:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations [2009-01-25 17:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NtiDvdCopy [2010-02-18 14:51:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite [2010-01-20 15:31:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TrueCrypt [2008-10-07 07:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Autodesk [2009-12-16 23:18:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\ESET [2008-12-15 10:39:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\PC Suite [2010-08-23 20:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Spyware Terminator [2008-11-08 09:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Guest\Application Data\Thunderbird [2009-12-04 10:38:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\ESET [color=#E56717]========== Purity Check ==========[/color] < End of report >