OTL logfile created on: 2012-04-24 17:36:12 - Run 6 OTL by OldTimer - Version 3.2.41.0 Folder = C:\Documents and Settings\DJ\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 990,73 Mb Total Physical Memory | 339,64 Mb Available Physical Memory | 34,28% Memory free 2,33 Gb Paging File | 1,94 Gb Available in Paging File | 83,20% Paging File free Paging file location(s): C:\pagefile.sys 1488 2976 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 6,56 Gb Free Space | 13,44% Space Free | Partition Type: NTFS Drive F: | 184,05 Gb Total Space | 15,42 Gb Free Space | 8,38% Space Free | Partition Type: NTFS Computer Name: TORESSIK | User Name: DJ | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-04-23 17:46:54 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\DJ\Pulpit\OTL.exe PRC - [2012-03-29 15:48:46 | 000,671,552 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe PRC - [2012-03-29 15:45:24 | 001,527,104 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe PRC - [2011-11-10 10:49:56 | 000,124,616 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\Intel Desktop Utilities\iduServ.exe PRC - [2011-11-10 10:49:52 | 001,632,456 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\Intel Desktop Utilities\iptray.exe PRC - [2011-08-02 11:47:34 | 000,063,488 | ---- | M] () -- C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe PRC - [2011-07-04 16:33:36 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011-05-09 19:33:30 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011-01-10 15:23:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010-09-28 19:33:08 | 000,073,728 | ---- | M] (ProQuest Business Solutions) -- F:\Tomek\E-book\Cześci opla\BHPS\Gmg\bin\DBMonService.exe PRC - [2010-09-28 19:33:03 | 000,380,928 | ---- | M] (Transaction Software, D 81737 Munich) -- F:\Tomek\E-book\Cześci opla\BHPS\Gmg\bin\tbmux32.exe PRC - [2010-09-28 19:32:18 | 000,069,632 | ---- | M] (ProQuest Business Solutions) -- F:\Tomek\E-book\Cześci opla\BHPS\Pmap1\bin\MapperMonService.exe PRC - [2010-09-28 19:30:16 | 000,028,779 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\javaw.exe PRC - [2010-01-14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-08-02 11:47:34 | 000,063,488 | ---- | M] () -- C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe MOD - [2010-09-28 19:30:16 | 000,102,515 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\java.dll MOD - [2010-09-28 19:30:16 | 000,057,455 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\net.dll MOD - [2010-09-28 19:30:16 | 000,057,453 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\verify.dll MOD - [2010-09-28 19:30:16 | 000,053,364 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\zip.dll MOD - [2010-09-28 19:30:16 | 000,028,791 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\hpi.dll MOD - [2010-09-28 19:30:16 | 000,028,779 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\javaw.exe MOD - [2010-09-28 19:30:15 | 001,212,546 | ---- | M] () -- C:\Program Files\BHPS\JRE142\bin\client\jvm.dll MOD - [2010-06-17 15:27:22 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - [2012-04-14 21:23:17 | 000,253,088 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-03-29 15:45:24 | 001,527,104 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2012-03-29 15:40:26 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp) SRV - [2011-11-10 10:49:56 | 000,124,616 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Desktop Utilities\iduServ.exe -- (IduService) Intel(R) SRV - [2011-11-10 10:47:08 | 000,061,440 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\FSC\FSCAppServ.exe -- (Intel(R) Desktop Boards FSC Application Service) Intel(R) SRV - [2011-11-05 15:27:22 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2011-08-02 11:47:34 | 000,063,488 | ---- | M] () [Auto | Running] -- C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe -- (CDMA Device Service) SRV - [2011-07-04 16:33:36 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011-05-09 19:33:30 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010-09-28 19:33:08 | 000,073,728 | ---- | M] (ProQuest Business Solutions) [Auto | Running] -- F:\Tomek\E-book\Cześci opla\BHPS\Gmg\bin\DBMonService.exe -- (pqeauto.database.dbmonitor.GMG) SRV - [2010-09-28 19:32:18 | 000,069,632 | ---- | M] (ProQuest Business Solutions) [Auto | Running] -- F:\Tomek\E-book\Cześci opla\BHPS\Pmap1\bin\MapperMonService.exe -- (pqeauto.energy.mappermonitor) SRV - [2008-11-11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2007-08-22 16:19:32 | 000,151,552 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\BCL Technologies\easyPDF 5\bepldr.exe -- (bepldr) SRV - [2005-11-17 15:18:52 | 001,527,900 | ---- | M] (MAGIX®) [Disabled | Stopped] -- F:\Tomek\Programy\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) SRV - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\tv.sys -- (tv) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\sdvo.sys -- (sdvo) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCAMPR5.SYS -- (PCAMPR5) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lvds.sys -- (lvds) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\k750obex.sys -- (k750obex) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\k750mgmt.sys -- (k750mgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\k750mdm.sys -- (k750mdm) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\k750mdfl.sys -- (k750mdfl) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM) DRV - File not found [Kernel | System | Stopped] -- system32\drivers\InCDRm.sys -- (InCDRm) DRV - File not found [Kernel | System | Stopped] -- system32\drivers\InCDPass.sys -- (InCDPass) DRV - File not found [File_System | Disabled | Stopped] -- system32\drivers\InCDFs.sys -- (InCDFs) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\DJ\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\analog.sys -- (analog) DRV - [2012-02-13 16:32:28 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2012-01-17 17:42:54 | 000,023,456 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DrvAgent32.sys -- (DrvAgent32) DRV - [2011-12-08 06:22:34 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2011-12-08 06:22:34 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bserd.sys -- (ss_bserd) DRV - [2011-12-08 06:22:34 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2011-12-08 06:22:34 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2011-10-18 03:43:42 | 000,028,856 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudcdf.sys -- (ssudcdf) DRV - [2011-07-04 16:33:37 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011-07-04 16:33:37 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2011-06-10 07:45:32 | 001,669,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iegdmini.sys -- (iegdmini) DRV - [2011-06-02 11:08:34 | 000,011,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\SystemRequirementsLab\cpudrv.sys -- (cpudrv) DRV - [2011-03-20 17:54:31 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2010-06-17 15:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010-06-17 15:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009-12-22 04:31:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009-11-18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009-11-18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009-02-05 00:00:00 | 000,026,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Tomek\Programy\Everest_Ultimate_5.00.1650___Keygen_\Everest Ultimate 5.00.1650 [+Keygen]\kerneld.wnt -- (EverestDriver) DRV - [2009-01-22 18:06:34 | 000,030,816 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\iqvw32.sys -- (NAL) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-04-23 15:54:50 | 000,100,488 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mgmt.sys -- (s115mgmt) Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM) DRV - [2007-04-23 15:54:50 | 000,098,568 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115obex.sys -- (s115obex) DRV - [2007-04-23 15:54:48 | 000,108,680 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mdm.sys -- (s115mdm) DRV - [2007-04-23 15:54:48 | 000,015,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115mdfl.sys -- (s115mdfl) DRV - [2007-04-23 15:54:46 | 000,083,208 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s115bus.sys -- (s115bus) Sony Ericsson Device 115 driver (WDM) DRV - [2006-09-19 12:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw) DRV - [2006-09-15 12:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys) DRV - [2006-02-26 13:32:41 | 000,642,560 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2004-09-24 12:14:40 | 002,276,672 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2004-08-26 11:17:38 | 000,051,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Wtm.sys -- (Wtm_AA) Service for Waveterminal 192M Audio Driver (EWDM) DRV - [2004-08-26 11:17:36 | 000,022,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Wtmwdm.sys -- (Wtm_01) DRV - [2004-08-04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-06-07 05:43:52 | 000,036,484 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMBios.sys -- (SMBios) Intel (R) DRV - [2004-03-17 16:10:40 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService) DRV - [2003-08-04 14:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2002-11-18 16:51:40 | 000,377,358 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM) DRV - [2002-07-09 23:33:12 | 000,182,248 | ---- | M] (Matrox Electronic Systems Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mtxdma0.sys -- (MtxDma0) Matrox Dma Manager (0) DRV - [2001-08-17 23:02:32 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame) DRV - [2001-08-17 20:19:34 | 000,040,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\es1371mp.sys -- (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) DRV - [2000-01-01 02:00:00 | 000,022,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\intelsmb.sys -- (smbusp) Intel(R) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://startsear.ch/?aff=1&q={searchTerms} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.speedbit.com/?aff=105 IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes,DefaultScope = {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes\${searchCLSID}: "URL" = http://search.yahoo.com/search?fr=megaup&p={searchTerms} IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://home.speedbit.com/search.aspx?aff=106&q={searchTerms} IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes\{AAF0962C-44D7-4009-8E84-EFAB96DA1DEE}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms} IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://startsear.ch/?aff=1&q={searchTerms} IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1343024091-412668190-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@parallelgraphics.com/Cortona: C:\Program Files\Common Files\ParallelGraphics\Cortona\npCortona.dll (ParallelGraphics) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-04-17 10:07:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-04-24 17:19:06 | 000,000,000 | ---D | M] [2011-04-11 20:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\DJ\Dane aplikacji\Mozilla\Extensions [2012-04-10 21:41:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\DJ\Dane aplikacji\Mozilla\Firefox\Profiles\plimamap.default\extensions [2012-01-06 18:06:54 | 000,002,534 | ---- | M] () -- C:\Documents and Settings\DJ\Dane aplikacji\Mozilla\Firefox\Profiles\plimamap.default\searchplugins\speedbit.xml [2012-04-17 10:07:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-01-14 19:55:27 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} () (No name found) -- C:\DOCUMENTS AND SETTINGS\DJ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\PLIMAMAP.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\DOCUMENTS AND SETTINGS\DJ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\PLIMAMAP.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI [2012-03-13 06:38:06 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-04-03 19:35:14 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2012-03-13 07:36:36 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-03-13 07:36:36 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-03-13 07:36:36 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-03-13 07:36:36 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-03-13 07:36:36 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-03-13 07:36:36 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: SpeedBit Search (Enabled) CHR - default_search_provider: search_url = http://home.speedbit.com/search.aspx?aff=106&q={searchTerms} CHR - default_search_provider: suggest_url = http://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms} CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.152\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.152\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll CHR - plugin: Babylon Chrome Plugin (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.3_0\BabylonChromePI.dll CHR - plugin: vShare.tv plug-in (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll CHR - plugin: vShare.tv plug-in (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll CHR - plugin: Skype Toolbars (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 6.1c (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll CHR - plugin: Cortona3D Viewer (Enabled) = C:\Program Files\Common Files\ParallelGraphics\Cortona\npCortona.dll CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files\Veetle\Player\npvlc.dll CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files\Veetle\plugins\npVeetle.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: Angry Birds = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.1.2.1_1\ CHR - Extension: YouTube = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\ CHR - Extension: Babylon Translator = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.3_0\ CHR - Extension: vshare plugin = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\ CHR - Extension: Skype Click to Call = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\ CHR - Extension: Gmail = C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2011-02-28 18:24:00 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3 - HKU\S-1-5-21-1343024091-412668190-725345543-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [ipTray.exe] C:\Program Files\Intel\Intel Desktop Utilities\ipTray.exe (Intel(R) Corporation) O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found O4 - HKLM..\Run: [Skrót do strony właściwości High Definition Audio] C:\WINDOWS\System32\Hdaudpropshortcut.exe (Windows (R) Server 2003 DDK provider) O4 - HKU\S-1-5-21-1343024091-412668190-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 [2012-04-14 20:39:11 | 000,000,000 | ---D | M] O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 [2012-04-14 20:39:11 | 000,000,000 | ---D | M] O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 [2012-04-14 20:39:11 | 000,000,000 | ---D | M] O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1343024091-412668190-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\S-1-5-21-1343024091-412668190-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Download All by FlashGet - G:\PROGRA~1\FlashGet\jc_all.htm File not found O8 - Extra context menu item: Download using FlashGet - G:\PROGRA~1\FlashGet\jc_link.htm File not found O9 - Extra Button: Wyslij SMS'a - {215940F1-E7E0-4801-BEE3-44D045534106} - C:\Program Files\Common Files\moje.js () O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B157C15-3F32-4CCF-87E8-6449FFB64458}: DhcpNameServer = 8.8.8.8 8.8.4.4 O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O27 - HKLM IFEO\capture.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\coreldrw.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\corelpp.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\csbprof.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\dtlite.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\fontnav.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\isuspm.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\rave.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\sptdinst-x86.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\trace.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O27 - HKLM IFEO\uninst.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-08-18 14:55:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-04-23 17:47:02 | 000,594,944 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\DJ\Pulpit\OTL.exe [2012-04-16 21:27:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2012-04-16 19:26:02 | 002,402,840 | ---- | C] (Intel® Corporation) -- C:\Documents and Settings\DJ\Pulpit\INF_AllOS_8.3.1.1009_PV_Intel.exe [2012-04-16 19:11:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2012-04-16 19:06:07 | 000,891,496 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2012-04-16 19:06:07 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2012-04-16 19:06:07 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2012-04-16 19:06:06 | 001,493,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2012-04-16 19:06:05 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2012-04-16 19:06:05 | 002,276,672 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2012-04-16 19:06:05 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2012-04-16 19:06:01 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2012-04-16 19:06:01 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2012-04-16 19:05:58 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2012-04-16 19:05:58 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2012-04-16 19:05:58 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2012-04-16 19:05:58 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2012-04-16 19:05:57 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2012-04-16 19:05:47 | 001,698,408 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2012-04-16 18:33:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\DJ\Pulpit\Downloads [2012-04-16 18:23:20 | 032,573,822 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\DJ\Moje dokumenty\Realtek-HD-Audio-Driver.exe [2012-04-16 18:16:33 | 000,056,936 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstXP.dll [2012-04-16 17:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\DJ\Pulpit\AUD_allOS_XP_Vista_5377_PV_Realtek [2012-04-16 15:24:15 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll [2012-04-16 10:31:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\DJ\Dane aplikacji\Intel [2012-04-16 10:30:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Intel [2012-04-16 10:28:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Intel [2012-04-16 10:27:52 | 000,008,192 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\cpuio.sys [2012-04-16 10:27:46 | 000,022,272 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\intelsmb.sys [2012-04-16 10:27:45 | 000,970,752 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\ismbun.exe [2012-04-16 10:27:45 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2012-04-16 10:27:44 | 000,007,680 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\variable.sys [2012-04-16 10:23:23 | 000,065,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2012-04-16 10:23:23 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2012-04-16 10:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\SlimWare Utilities Inc [2012-04-16 10:19:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SlimDrivers [2012-04-16 10:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\SlimDrivers [2012-04-16 10:19:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Downloaded Installers [2012-04-13 17:18:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software [2012-04-11 21:47:28 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache [2012-04-10 16:19:27 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe [2012-04-10 16:19:25 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll [2012-04-10 16:19:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2011 [2012-04-10 16:19:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\DJ\Dane aplikacji\TuneUp Software [2012-04-10 16:18:54 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2011 [2012-04-10 16:18:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2012-04-10 16:17:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} [2012-04-03 19:35:25 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2012-04-03 19:35:25 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2012-04-03 19:35:25 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2012-04-03 19:35:25 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2012-04-03 19:35:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012-04-03 18:53:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2012-03-30 19:47:01 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-04-24 17:23:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-04-24 17:21:16 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2012-04-24 17:21:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-04-24 17:20:21 | 014,680,064 | -H-- | M] () -- C:\Documents and Settings\DJ\NTUSER.DAT [2012-04-24 17:20:16 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\DJ\ntuser.ini [2012-04-24 17:11:20 | 000,001,120 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-412668190-725345543-1003UA.job [2012-04-24 17:11:01 | 000,001,068 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-412668190-725345543-1003Core.job [2012-04-24 16:12:18 | 000,580,883 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\adwcleaner.exe [2012-04-24 16:07:20 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7B236E38-B4E9-4A67-959A-78BF2E272736}.job [2012-04-23 17:46:54 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\DJ\Pulpit\OTL.exe [2012-04-23 17:40:17 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-04-17 12:14:14 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-04-17 12:06:14 | 000,178,176 | ---- | M] () -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-04-17 11:13:38 | 000,215,040 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\net-log.exe [2012-04-17 10:07:12 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-04-16 21:29:05 | 000,002,231 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\SlimDrivers.lnk [2012-04-16 19:26:07 | 002,402,840 | ---- | M] (Intel® Corporation) -- C:\Documents and Settings\DJ\Pulpit\INF_AllOS_8.3.1.1009_PV_Intel.exe [2012-04-16 19:05:27 | 032,573,822 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\DJ\Moje dokumenty\Realtek-HD-Audio-Driver.exe [2012-04-16 18:23:18 | 001,090,568 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2012-04-16 18:23:18 | 000,491,064 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-04-16 18:23:18 | 000,433,242 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-04-16 18:23:18 | 000,084,316 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-04-16 18:23:18 | 000,068,006 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-04-16 10:46:06 | 000,048,608 | ---- | M] () -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2012-04-16 10:30:25 | 001,492,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-04-16 10:28:04 | 000,001,788 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Intel(R) Desktop Utilities.lnk [2012-04-16 10:27:17 | 000,007,680 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\drivers\variable.sys [2012-04-16 10:27:16 | 000,008,192 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\cpuio.sys [2012-04-14 21:23:17 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-04-14 21:23:17 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-04-14 20:38:49 | 000,039,453 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\2AlNQ1.jpg [2012-04-13 15:58:15 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012-04-11 20:13:44 | 000,002,279 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\Google Chrome.lnk [2012-04-10 16:54:08 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2012-04-10 16:54:08 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for [2012-04-10 16:19:24 | 000,001,763 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2011.lnk [2012-04-10 16:19:24 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk [2012-04-08 12:11:36 | 000,055,957 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\7Rrny7.jpg [2012-04-06 13:29:12 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-04-04 17:28:03 | 1038,954,496 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2012-04-03 19:35:12 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2012-04-03 19:35:12 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2012-04-03 19:35:12 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2012-04-03 19:35:12 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2012-04-03 19:35:11 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2012-04-02 19:22:21 | 000,008,606 | ---- | M] () -- C:\Documents and Settings\DJ\Pulpit\CV_1.zip [2012-03-30 17:12:06 | 000,000,085 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2012-03-29 15:50:48 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe [2012-03-29 15:40:26 | 000,029,504 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-04-24 16:12:30 | 000,580,883 | ---- | C] () -- C:\Documents and Settings\DJ\Pulpit\adwcleaner.exe [2012-04-17 11:15:58 | 000,215,040 | ---- | C] () -- C:\Documents and Settings\DJ\Pulpit\net-log.exe [2012-04-16 19:06:01 | 000,021,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT [2012-04-16 10:28:04 | 000,001,788 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Intel(R) Desktop Utilities.lnk [2012-04-16 10:19:36 | 000,002,231 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\SlimDrivers.lnk [2012-04-14 20:38:48 | 000,039,453 | ---- | C] () -- C:\Documents and Settings\DJ\Pulpit\2AlNQ1.jpg [2012-04-10 16:19:24 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2011.lnk [2012-04-10 16:19:24 | 000,001,763 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2011.lnk [2012-04-10 16:19:24 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk [2012-04-08 12:11:35 | 000,055,957 | ---- | C] () -- C:\Documents and Settings\DJ\Pulpit\7Rrny7.jpg [2012-04-02 19:22:28 | 000,008,606 | ---- | C] () -- C:\Documents and Settings\DJ\Pulpit\CV_1.zip [2012-03-30 19:47:02 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-02-25 13:23:44 | 001,787,232 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2012-02-15 17:25:24 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-02-09 18:12:10 | 000,707,504 | ---- | C] () -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\unins000.exe [2012-02-09 18:12:10 | 000,011,761 | ---- | C] () -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\unins000.msg [2012-02-09 18:12:10 | 000,002,159 | ---- | C] () -- C:\Documents and Settings\DJ\Ustawienia lokalne\Dane aplikacji\unins000.dat [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm7.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm6.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm5.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm4.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm3.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm2.sys [2012-01-18 17:52:43 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Wtmwdm1.sys [2012-01-18 17:49:09 | 000,000,008 | RHS- | C] () -- C:\WINDOWS\System32\52DBDC2E5C.sys [2012-01-06 18:05:30 | 000,109,216 | ---- | C] () -- C:\WINDOWS\System32\EasyHook64.dll [2012-01-06 18:05:30 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\EasyHook32.dll [2012-01-04 17:27:45 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4764.dll [2012-01-03 21:09:57 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\IEGDUI.dll [2011-10-23 14:49:51 | 000,000,020 | ---- | C] () -- C:\WINDOWS\mafosav.INI [2011-07-26 17:26:46 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll [2011-07-26 17:26:46 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll [2011-07-26 17:26:46 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll [2011-07-26 17:26:46 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll [2011-03-08 22:00:26 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-03-08 22:00:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-03-08 22:00:22 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-03-08 22:00:22 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-03-08 22:00:22 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-03-08 22:00:22 | 000,000,590 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2011-02-09 20:42:43 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll [2011-02-09 20:28:43 | 000,009,452 | ---- | C] () -- C:\Documents and Settings\DJ\Dane aplikacji\F44A.94D [2010-10-10 21:11:26 | 000,000,045 | -H-- | C] () -- C:\WINDOWS\dsez4423.dat [2010-09-20 19:19:28 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-08-18 18:42:59 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010-08-18 18:42:59 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [color=#E56717]========== LOP Check ==========[/color] [2009-04-07 18:32:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2DBoy [2009-10-06 18:44:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Boss Media [2011-03-20 17:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-05-03 12:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Disney Interactive [2012-01-04 18:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Driver Tool [2011-04-12 17:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-02-02 21:59:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GameHouse [2012-01-08 11:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GetRight [2010-07-16 20:25:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Grisoft [2011-02-09 20:44:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MAGIX [2008-04-11 17:37:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nitro PDF [2011-11-07 19:06:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Orion [2012-01-09 19:42:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters Inc [2010-08-18 18:46:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2011-12-07 20:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files [2012-03-15 18:54:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung [2008-04-10 17:11:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SolidDocuments [2012-01-06 18:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit [2012-03-15 19:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-09-14 19:27:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TmForever [2012-04-10 16:19:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2010-03-21 17:37:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WildTangent [2012-04-10 16:17:33 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} [2012-01-17 19:15:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1} [2011-03-05 17:51:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\.wtw [2012-01-04 19:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\3v [2009-08-21 15:44:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Ace [2010-03-20 15:25:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\AnvSoft [2008-12-19 21:29:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\BESTplayer [2009-03-30 19:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Crayon Physics Deluxe [2010-05-03 13:00:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Cream Software [2012-01-05 22:20:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\DAEMON Tools Lite [2008-01-09 17:13:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Disney Interactive [2012-01-03 21:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\driveridentifier [2010-12-11 16:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\DVDVideoSoft [2011-11-07 22:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\flightgear.org [2007-07-16 18:31:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\fltk.org [2009-12-12 15:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\funkitron [2008-11-11 15:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Gadu-Gadu [2011-04-12 19:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Gadu-Gadu 10 [2012-01-08 11:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\GetRight [2012-03-15 19:04:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Hardcore [2008-11-19 16:34:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Hide IP NG [2012-03-15 19:05:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Juce VST Host [2011-11-25 23:33:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\LolClient [2011-02-09 20:44:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\MAGIX [2009-01-05 17:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\mojosoft [2012-01-04 19:51:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\mypcdrivers [2008-04-11 17:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Nitro PDF [2011-01-14 18:14:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Opera [2011-06-10 16:44:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\OwnRooms [2010-08-18 18:46:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\PC Suite [2006-08-18 15:53:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Publish Providers [2011-09-21 20:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Samsung [2012-03-15 19:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Sawer [2008-04-05 22:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\SecondLife [2008-04-10 21:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\SolidDocuments [2006-08-18 15:52:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Sony [2010-10-15 20:44:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\streamripper [2010-11-06 16:37:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Teleca [2012-04-10 16:19:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\TuneUp Software [2011-03-26 17:44:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\Unity [2011-11-08 17:32:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\DJ\Dane aplikacji\YoudaGames [2012-04-13 17:18:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software [2012-04-24 16:07:20 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7B236E38-B4E9-4A67-959A-78BF2E272736}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 166 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8A5B0737 @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:553CA6CA < End of report >