OTL logfile created on: 2012-01-18 00:37:15 - Run 4 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\user\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,88 Gb Available Physical Memory | 72,05% Memory free 8,00 Gb Paging File | 6,82 Gb Available in Paging File | 85,24% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 97,65 Gb Total Space | 18,96 Gb Free Space | 19,42% Space Free | Partition Type: NTFS Drive D: | 200,43 Gb Total Space | 185,48 Gb Free Space | 92,54% Space Free | Partition Type: NTFS Drive F: | 97,65 Gb Total Space | 61,18 Gb Free Space | 62,64% Space Free | Partition Type: NTFS Drive G: | 200,43 Gb Total Space | 50,22 Gb Free Space | 25,06% Space Free | Partition Type: NTFS Drive H: | 7,46 Gb Total Space | 7,46 Gb Free Space | 99,98% Space Free | Partition Type: FAT32 Computer Name: USER-KOMPUTER | User Name: user | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-01-16 05:05:06 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\user\Downloads\OTL.exe PRC - [2011-12-21 09:04:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2011-10-15 09:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011-10-15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2009-03-12 16:39:54 | 000,086,016 | ---- | M] () -- C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe PRC - [2006-11-22 09:11:22 | 000,291,760 | ---- | M] () -- C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe PRC - [2006-11-02 19:40:12 | 000,174,656 | ---- | M] () -- C:\Program Files (x86)\Common Files\Protexis\License Service\PSIService.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-12-21 09:04:06 | 002,124,760 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2011-11-23 13:33:43 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll MOD - [2011-10-15 00:54:26 | 000,265,536 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll MOD - [2006-11-22 09:11:22 | 000,291,760 | ---- | M] () -- C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe MOD - [2006-08-08 14:54:18 | 000,278,528 | ---- | M] () -- C:\Program Files (x86)\Lexmark 5400 Series\lxctscw.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2011-04-14 18:17:04 | 000,551,896 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\Windows\SysNative\appdrvrem01.exe -- (appdrvrem01) SRV:[b]64bit:[/b] - [2010-10-22 08:43:02 | 001,030,600 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-03-12 16:39:54 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe -- (mi-raysat_3dsmax2010_64) SRV:[b]64bit:[/b] - [2006-11-22 09:11:54 | 000,566,192 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxctcoms.exe -- (lxct_device) SRV - [2011-10-15 09:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011-10-15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2010-10-15 09:02:16 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service) SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2006-11-22 09:11:36 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\lxctcoms.exe -- (lxct_device) SRV - [2006-11-02 19:40:12 | 000,174,656 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PSIService.exe -- (ProtexisLicensing) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-07-20 08:45:54 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm) DRV:[b]64bit:[/b] - [2011-07-20 08:45:54 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM) DRV:[b]64bit:[/b] - [2011-07-20 08:45:54 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM) DRV:[b]64bit:[/b] - [2011-07-20 08:45:54 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb) DRV:[b]64bit:[/b] - [2011-07-20 08:45:54 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter) DRV:[b]64bit:[/b] - [2011-04-14 18:17:09 | 002,715,824 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\appdrv01.sys -- (appdrv01) Application Driver (01) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2011-03-02 21:55:31 | 000,503,352 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2010-11-20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2009-10-13 01:15:52 | 000,061,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l160x64.sys -- (AtcL001) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2008-02-29 02:16:52 | 000,057,360 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt) DRV:[b]64bit:[/b] - [2008-02-29 02:16:44 | 000,054,800 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt) DRV:[b]64bit:[/b] - [2006-12-20 11:59:02 | 000,140,160 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\adusbser.sys -- (adusbser) DRV:[b]64bit:[/b] - [2005-03-29 00:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.v9.com/idg/idg_1326294454_354121 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "chrome://superstart/content/index.html" FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-01-11 16:07:45 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011-05-15 10:58:56 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011-09-03 22:00:29 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.9\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011-09-03 22:00:29 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.9\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011-09-03 22:00:29 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2012-01-11 14:33:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions [2010-10-12 23:47:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2012-01-17 14:53:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions [2012-01-11 20:47:13 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2012-01-11 20:47:13 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae} [2012-01-11 23:49:32 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions\anttoolbar@ant.com [2012-01-14 11:24:20 | 000,000,000 | ---D | M] (Simple Mail) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions\simplemail@telega.phpnet.us [2012-01-17 14:53:40 | 000,000,000 | ---D | M] (Super Start) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\43mxtxef.default\extensions\superstart@enjoyfreeware.org [2012-01-11 16:07:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\43MXTXEF.DEFAULT\EXTENSIONS\{9AA46F4F-4DC7-4C06-97AF-5035170634FE}.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\43MXTXEF.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI () (No name found) -- C:\USERS\USER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\43MXTXEF.DEFAULT\EXTENSIONS\FIREQUERY@BINARYAGE.COM.XPI [2011-12-21 09:04:06 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2011-10-03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-12-21 06:04:32 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2011-12-21 06:04:32 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2011-03-04 20:00:24 | 000,002,197 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google-search.xml [2011-12-21 06:04:32 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2011-12-21 06:04:32 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2011-12-21 06:04:32 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-12-21 06:04:32 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2012-01-16 23:49:07 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4:[b]64bit:[/b] - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [lxctmon.exe] C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe () O4 - HKLM..\RunOnce: [GrpConv] C:\Windows\SysWow64\grpconv.exe (Microsoft Corporation) O4 - Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fliptoast.lnk = File not found O4 - Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_52415782.lnk = C:\Users\user\AppData\Local\Temp\_uninst_52415782.bat () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8:[b]64bit:[/b] - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert selected links to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert selection to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{33DFCA3C-F4D8-45FA-91B1-27736C4F291C}: NameServer = 8.26.56.26,156.154.70.22 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FF5E237A-8074-4BC8-BFED-D5E38163EE29}: NameServer = 193.41.112.18 193.41.112.14 O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-01-17 23:48:58 | 000,000,000 | ---D | C] -- C:\Windows\LastGood [2012-01-17 16:48:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab [2012-01-17 16:05:23 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Uninstaller Tool(Comodo Forums) [2012-01-17 15:57:30 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2012-01-17 15:51:48 | 000,000,000 | ---D | C] -- C:\_OTL [2012-01-17 15:37:38 | 000,638,976 | ---- | C] (ESET) -- C:\Users\user\Desktop\ESETUninstaller.exe [2012-01-17 14:16:42 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2012-01-16 22:22:42 | 000,000,000 | ---D | C] -- C:\Config.Msi [2012-01-16 22:21:10 | 000,000,000 | ---D | C] -- C:\Users\user\Desktop\OLD [2012-01-16 14:16:40 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll [2012-01-16 00:45:34 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Malwarebytes [2012-01-16 00:45:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2012-01-16 00:45:30 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2012-01-16 00:45:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2012-01-16 00:29:10 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner [2012-01-16 00:29:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner [2012-01-16 00:29:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eusing Free Registry Cleaner [2012-01-16 00:25:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012-01-16 00:22:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2012-01-16 00:22:03 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2012-01-16 00:20:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Google [2012-01-16 00:20:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2012-01-11 23:34:53 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\NVIDIA [2012-01-11 23:31:44 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\e-pity [2012-01-11 23:13:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2012-01-11 23:12:05 | 024,796,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2012-01-11 23:12:05 | 024,742,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2012-01-11 23:12:05 | 018,871,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2012-01-11 23:12:05 | 017,248,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2012-01-11 23:12:05 | 015,693,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2012-01-11 23:12:05 | 007,581,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2012-01-11 23:12:05 | 005,578,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2012-01-11 23:12:05 | 002,542,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2012-01-11 23:12:05 | 002,401,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2012-01-11 23:12:05 | 002,232,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2012-01-11 23:12:05 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2012-01-11 23:12:05 | 001,533,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll [2012-01-11 23:12:05 | 001,454,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco64.dll [2012-01-11 23:12:05 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2012-01-11 23:12:05 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2012-01-11 23:11:12 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012-01-11 22:40:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3 [2012-01-11 22:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit [2012-01-11 22:40:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit [2012-01-11 22:39:25 | 000,000,000 | ---D | C] -- C:\Windows\pss [2012-01-11 10:34:40 | 052,988,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe [2012-01-11 09:34:43 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2012-01-11 09:34:42 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2012-01-11 09:34:42 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll [2012-01-11 09:34:42 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll [2012-01-11 09:34:38 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2012-01-11 09:34:38 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2012-01-11 09:34:37 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2012-01-11 09:34:36 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll [2012-01-11 09:34:36 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll [2012-01-06 13:45:57 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Apps [2012-01-02 13:52:11 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Applian FLV and Media Player [2012-01-02 13:50:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies [2012-01-02 13:49:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Applian Technologies [2012-01-02 13:49:05 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\com.w3i.FlipToast [2012-01-02 13:49:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fliptoast [2012-01-02 13:48:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR [2011-03-27 18:44:33 | 000,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctinpa.dll [2011-03-27 18:44:32 | 001,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctserv.dll [2011-03-27 18:44:32 | 000,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctusb1.dll [2011-03-27 18:44:32 | 000,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxcthbn3.dll [2011-03-27 18:44:32 | 000,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcomc.dll [2011-03-27 18:44:32 | 000,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctpmui.dll [2011-03-27 18:44:32 | 000,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctlmpm.dll [2011-03-27 18:44:32 | 000,537,520 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcoms.exe [2011-03-27 18:44:32 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcomm.dll [2011-03-27 18:44:32 | 000,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctiesc.dll [2011-03-27 18:44:32 | 000,385,968 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctih.exe [2011-03-27 18:44:32 | 000,381,872 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcfg.exe [2011-03-27 18:44:32 | 000,181,168 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctppls.exe [2011-03-27 18:44:32 | 000,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctprox.dll [2011-03-27 18:44:32 | 000,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctpplc.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-01-18 00:30:24 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012-01-18 00:30:14 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012-01-17 23:31:47 | 001,549,932 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012-01-17 23:31:47 | 000,697,896 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2012-01-17 23:31:47 | 000,616,032 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012-01-17 23:31:47 | 000,135,006 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2012-01-17 23:31:47 | 000,106,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012-01-17 23:21:59 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012-01-17 23:21:59 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012-01-17 23:18:34 | 000,000,334 | ---- | M] () -- C:\Windows\red_dialer.ini [2012-01-17 23:14:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-01-17 23:14:06 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys [2012-01-17 16:48:41 | 000,000,973 | ---- | M] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_52415782.lnk [2012-01-17 15:51:33 | 113,998,800 | ---- | M] () -- C:\Users\user\Desktop\setup_11.0.0.1245.x01_2012_01_17_16_40.exe [2012-01-17 15:42:52 | 005,075,834 | ---- | M] () -- C:\Users\user\Desktop\Setup.zip [2012-01-17 15:40:58 | 000,120,677 | ---- | M] () -- C:\Users\user\Desktop\avira_registry_cleaner_en.zip [2012-01-17 15:37:39 | 000,638,976 | ---- | M] (ESET) -- C:\Users\user\Desktop\ESETUninstaller.exe [2012-01-16 23:49:07 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2012-01-16 23:11:35 | 230,630,450 | ---- | M] () -- C:\Windows\MEMORY.DMP [2012-01-16 14:16:40 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll [2012-01-16 00:45:32 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2012-01-16 00:29:10 | 000,001,059 | ---- | M] () -- C:\Users\user\Desktop\Eusing Free Registry Cleaner.lnk [2012-01-16 00:26:10 | 000,542,658 | ---- | M] () -- C:\Users\user\Documents\cc_20120116_002543.reg [2012-01-16 00:22:08 | 000,000,828 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012-01-12 13:24:55 | 000,002,828 | -HS- | M] () -- C:\Windows\SysWow64\KGyGaAvL.sys [2012-01-11 23:31:39 | 000,002,054 | ---- | M] () -- C:\Users\user\Desktop\e-pity2011.lnk [2012-01-11 22:40:14 | 000,001,188 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk [2012-01-11 16:07:47 | 000,001,144 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012-01-05 19:53:10 | 000,000,655 | ---- | M] () -- C:\Users\user\Desktop\PETER — skrót.lnk [2012-01-02 13:49:08 | 000,000,995 | ---- | M] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fliptoast.lnk [2011-12-21 13:49:17 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-01-17 16:48:41 | 000,000,973 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_52415782.lnk [2012-01-17 15:45:17 | 113,998,800 | ---- | C] () -- C:\Users\user\Desktop\setup_11.0.0.1245.x01_2012_01_17_16_40.exe [2012-01-17 15:42:39 | 005,075,834 | ---- | C] () -- C:\Users\user\Desktop\Setup.zip [2012-01-17 15:40:57 | 000,120,677 | ---- | C] () -- C:\Users\user\Desktop\avira_registry_cleaner_en.zip [2012-01-16 23:11:35 | 230,630,450 | ---- | C] () -- C:\Windows\MEMORY.DMP [2012-01-16 00:45:32 | 000,001,115 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2012-01-16 00:29:10 | 000,001,059 | ---- | C] () -- C:\Users\user\Desktop\Eusing Free Registry Cleaner.lnk [2012-01-16 00:25:55 | 000,542,658 | ---- | C] () -- C:\Users\user\Documents\cc_20120116_002543.reg [2012-01-16 00:22:08 | 000,000,828 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012-01-16 00:20:08 | 000,001,044 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012-01-16 00:20:06 | 000,001,040 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012-01-11 23:31:39 | 000,002,054 | ---- | C] () -- C:\Users\user\Desktop\e-pity2011.lnk [2012-01-11 22:40:14 | 000,001,188 | ---- | C] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk [2012-01-11 16:07:47 | 000,001,144 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012-01-11 16:07:46 | 000,001,156 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2012-01-05 19:53:10 | 000,000,655 | ---- | C] () -- C:\Users\user\Desktop\PETER — skrót.lnk [2012-01-02 13:49:08 | 000,000,995 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fliptoast.lnk [2011-12-21 13:49:17 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2011-10-15 00:54:52 | 000,321,856 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011-07-30 11:03:10 | 000,008,192 | ---- | C] () -- C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-07-26 16:26:48 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2011-07-26 16:26:46 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2011-07-26 16:26:46 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2011-07-26 16:26:46 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2011-07-26 16:26:46 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2011-05-19 18:42:25 | 000,000,263 | ---- | C] () -- C:\Windows\PlotFlow.INI [2011-03-27 18:44:33 | 000,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXCTinst.dll [2011-02-05 22:36:46 | 000,000,048 | ---- | C] () -- C:\Windows\WinInit.Ini [2011-01-12 21:20:02 | 000,000,000 | ---- | C] () -- C:\Windows\setup32.INI [2010-10-22 15:30:15 | 000,000,168 | ---- | C] () -- C:\Program Files\Crazybump [2010-10-14 22:50:32 | 000,000,231 | ---- | C] () -- C:\Windows\SysWow64\3dsmax.ini [2010-10-14 22:50:32 | 000,000,043 | ---- | C] () -- C:\Windows\SysWow64\InstallSettings.ini [2010-10-13 15:40:49 | 000,000,334 | ---- | C] () -- C:\Windows\red_dialer.ini [2010-09-30 19:36:17 | 000,000,008 | RHS- | C] () -- C:\Windows\SysWow64\31AA75032C.sys [2010-09-30 18:53:37 | 000,002,828 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys [2009-11-06 09:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2009-10-06 08:16:00 | 000,819,200 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2009-07-14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009-07-14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009-07-14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318} /S >[/color] "Class" = Keyboard "ClassDesc" = @%SystemRoot%\System32\SysClass.Dll,-3002 "" = Keyboards "Installer32" = SysClass.Dll,KeyboardClassInstaller "IconPath" = %SystemRoot%\System32\setupapi.dll,-3 [binary data] -- [2010-11-20 13:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) "UpperFilters" = kbdclass [binary data] "NoInstallClass" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318}\0000] "LocationInformationOverride" = podłączone do portu klawiatury "InfPath" = keyboard.inf "InfSection" = STANDARD_Inst "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7601.17514 "MatchingDeviceId" = *pnp0303 "DriverDesc" = Standardowa klawiatura PS/2 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318}\Properties] [color=#A23BEC]< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318} /S >[/color] "Class" = Mouse "ClassDesc" = @%SystemRoot%\System32\SysClass.Dll,-3004 "" = Mice and other pointing devices "IconPath" = %SystemRoot%\System32\setupapi.dll,-2 [binary data] -- [2010-11-20 13:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) "Installer32" = SysClass.Dll,MouseClassInstaller "NoInstallClass" = 1 "UpperFilters" = mouclass [binary data] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0000] "InfPath" = msmouse.inf "InfSection" = HID_Mouse_Inst "InfSectionExt" = .NT "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7600.16385 "MatchingDeviceId" = hid\vid_046d&pid_c00e "DriverDesc" = Mysz Logitech USB Wheel [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0001] "InfPath" = msmouse.inf "InfSection" = HID_Mouse_Inst "InfSectionExt" = .NT "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7600.16385 "MatchingDeviceId" = hid\vid_046d&pid_c00e "DriverDesc" = Mysz Logitech USB Wheel [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0002] "InfPath" = oem2.inf "InfSection" = LOGIHIDMOUSE "InfSectionExt" = .NT "ProviderName" = Logitech "DriverDateData" = 00 00 D6 06 66 7A C8 01 [binary data] "DriverDate" = 2-29-2008 "DriverVersion" = 4.60.42.0 "MatchingDeviceId" = hid\vid_046d&pid_c521&mi_00 "DriverDesc" = Logitech HID-compliant Cordless Mouse "CoInstallers32" = WdfCoInstaller01005.dll,WdfCoInstaller [binary data] "IncludedInfs" = msmouse.inf [binary data] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0003] "InfPath" = msmouse.inf "InfSection" = HID_Mouse_Inst "InfSectionExt" = .NT "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7600.16385 "MatchingDeviceId" = hid_device_system_mouse "DriverDesc" = Mysz zgodna z HID [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0004] "InfPath" = msmouse.inf "InfSection" = HID_Mouse_Inst "InfSectionExt" = .NT "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7600.16385 "MatchingDeviceId" = hid_device_system_mouse "DriverDesc" = Mysz zgodna z HID [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0005] "InfPath" = msmouse.inf "InfSection" = HID_Mouse_Inst "InfSectionExt" = .NT "ProviderName" = Microsoft "DriverDateData" = 00 80 8C A3 C5 94 C6 01 [binary data] "DriverDate" = 6-21-2006 "DriverVersion" = 6.1.7600.16385 "MatchingDeviceId" = hid_device_system_mouse "DriverDesc" = Mysz zgodna z HID [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\0006] "CoInstallers32" = WdfCoInstaller01005.dll,WdfCoInstaller [binary data] "InfPath" = oem2.inf "IncludedInfs" = msmouse.inf [binary data] "InfSection" = LOGIHIDMOUSE "InfSectionExt" = .NT "ProviderName" = Logitech "DriverDateData" = 00 00 D6 06 66 7A C8 01 [binary data] "DriverDate" = 2-29-2008 "DriverVersion" = 4.60.42.0 "MatchingDeviceId" = hid\vid_046d&pid_c521&mi_00 "DriverDesc" = Logitech HID-compliant Cordless Mouse [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}\Properties] < End of report >