OTL logfile created on: 2010-09-23 21:20:26 - Run 3 OTL by OldTimer - Version 3.2.14.1 Folder = C:\Documents and Settings\gotrek\Pulpit Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 64,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 58,59 Gb Total Space | 8,73 Gb Free Space | 14,90% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 97,65 Gb Total Space | 68,23 Gb Free Space | 69,87% Space Free | Partition Type: NTFS Drive F: | 76,63 Gb Total Space | 16,65 Gb Free Space | 21,72% Space Free | Partition Type: NTFS Drive G: | 996,22 Mb Total Space | 661,20 Mb Free Space | 66,37% Space Free | Partition Type: FAT H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: POLOP Current User Name: gotrek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-09-23 21:18:21 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\gotrek\Pulpit\OTL.exe PRC - [2009-11-25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009-11-25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2009-11-25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe PRC - [2009-11-25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2009-11-25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-10-11 05:17:45 | 000,386,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jucheck.exe PRC - [2009-05-08 11:35:50 | 002,780,432 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe PRC - [2009-05-08 11:34:08 | 000,559,888 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe PRC - [2009-04-30 17:01:10 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe PRC - [2009-04-30 13:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe PRC - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe PRC - [2008-11-24 23:31:10 | 029,263,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe PRC - [2008-11-24 23:31:08 | 000,239,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe PRC - [2008-05-13 19:07:24 | 000,080,392 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-03-20 12:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe PRC - [2007-06-14 20:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) -- C:\WINDOWS\system32\bgsvcgen.exe PRC - [2004-12-20 20:41:22 | 000,033,792 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-09-23 21:18:21 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\gotrek\Pulpit\OTL.exe MOD - [2008-04-15 14:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- c:\usr\MYSQL\bin\mysqld.exe -- (MySql) SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2009-11-25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus) SRV - [2009-11-25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner) SRV - [2009-11-25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner) SRV - [2009-11-25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv) SRV - [2009-04-30 17:01:10 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2009-04-30 13:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service) SRV - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter) SRV - [2008-11-24 23:31:10 | 029,263,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$INSERTGT) SQL Server (INSERTGT) SRV - [2008-11-24 23:31:08 | 000,239,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser) SRV - [2008-11-24 23:31:08 | 000,045,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper) SRV - [2008-05-13 19:07:24 | 000,080,392 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service) SRV - [2007-06-14 20:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Running] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen) SRV - [2004-09-29 12:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k750obex.sys -- (k750obex) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k750mgmt.sys -- (k750mgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k750mdm.sys -- (k750mdm) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k750mdfl.sys -- (k750mdfl) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM) DRV - [2010-09-23 20:17:32 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2009-11-25 01:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2009-11-25 01:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2009-11-25 01:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009-11-25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2009-11-25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2009-11-25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009-05-01 01:03:30 | 000,023,832 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService) DRV - [2009-05-01 01:03:08 | 006,754,712 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam 120(UVC) DRV - [2009-04-30 17:00:12 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2009-04-26 19:27:15 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008-12-14 17:31:29 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2008-12-14 17:31:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2008-08-02 06:20:00 | 006,121,856 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-05-07 13:21:40 | 004,739,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-04-15 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008-01-09 13:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2008-01-03 16:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-12-10 15:22:22 | 000,110,120 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017unic.sys -- (s3017unic) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM) DRV - [2007-12-10 15:22:22 | 000,100,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017obex.sys -- (s3017obex) DRV - [2007-12-10 15:22:20 | 000,104,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017mgmt.sys -- (s3017mgmt) Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM) DRV - [2007-12-10 15:22:20 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017nd5.sys -- (s3017nd5) Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS) DRV - [2007-12-10 15:22:18 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017mdm.sys -- (s3017mdm) DRV - [2007-12-10 15:22:18 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017mdfl.sys -- (s3017mdfl) DRV - [2007-12-10 15:22:14 | 000,083,880 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s3017bus.sys -- (s3017bus) Sony Ericsson Device 3017 driver (WDM) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2006-02-20 03:17:40 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys -- (cdrbsdrv) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/ IE - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.4 FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-09-19 22:16:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-09-17 10:56:03 | 000,000,000 | ---D | M] [2009-07-06 19:31:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Extensions [2010-09-23 12:39:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions [2010-06-29 20:16:12 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671} [2010-04-27 14:39:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-09-19 10:05:34 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2010-02-11 15:26:58 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} [2010-05-07 16:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\firebug@software.joehewitt.com [2010-04-03 20:57:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\extensions\firefox@tvunetworks.com [2009-06-04 19:03:16 | 000,002,236 | ---- | M] () -- C:\Documents and Settings\gotrek\Dane aplikacji\Mozilla\Firefox\Profiles\itunarpv.default\searchplugins\askcom.xml [2010-09-23 12:39:53 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-04-04 17:18:10 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\gotrek\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe () O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004..\Run: [BitTorrent] C:\Program Files\BitTorrent\bittorrent.exe (BitTorrent, Inc.) O4 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKU\S-1-5-21-1547161642-1004336348-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab (QuickTime Plugin Control) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-12-13 15:52:15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-11-06 14:14:30 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-11-06 14:14:30 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-11-06 14:14:30 | 000,000,000 | RHSD | M] - F:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2006-06-30 23:31:30 | 000,000,000 | RHS- | M] () - G:\autorun.bat.VIR -- [ FAT ] O32 - AutoRun File - [2008-01-08 01:58:06 | 000,000,000 | RHS- | M] () - G:\autorun.bin -- [ FAT ] O32 - AutoRun File - [2001-08-16 07:42:52 | 000,000,000 | RHS- | M] () - G:\Autorun.ico -- [ FAT ] O32 - AutoRun File - [2006-06-29 16:49:46 | 000,017,213 | RHS- | M] () - G:\Autorun.ini -- [ FAT ] O32 - AutoRun File - [2006-06-14 11:26:38 | 000,000,024 | RHS- | M] () - G:\autorun.txt -- [ FAT ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-09-23 21:18:14 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\gotrek\Pulpit\OTL.exe [2010-09-04 17:28:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gotrek\Pulpit\House M.D Season 6 [2010-08-28 21:54:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\gotrek\Pulpit\House MD 6 [2009-12-10 10:54:56 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\Documents and Settings\All Users\Dane aplikacji\hpe255.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-09-23 21:18:21 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\gotrek\Pulpit\OTL.exe [2010-09-23 20:20:53 | 000,198,612 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-09-23 20:17:32 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys [2010-09-23 20:17:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-09-23 20:17:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-09-23 14:57:52 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\gotrek\NTUSER.DAT [2010-09-23 12:29:56 | 000,001,125 | ---- | M] () -- C:\WINDOWS\winamp.ini [2010-09-22 17:13:34 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\gotrek\ntuser.ini [2010-09-21 19:56:50 | 366,966,784 | ---- | M] () -- C:\Documents and Settings\gotrek\Pulpit\Usta.Usta.S01E08.PL.PDTV.XViD-ER.avi [2010-09-19 21:24:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2010-09-19 21:23:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\logiflt.iad [2010-09-18 17:50:31 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-09-17 11:28:28 | 000,000,482 | ---- | M] () -- C:\Documents and Settings\gotrek\intlname.ols [2010-09-15 13:00:40 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-09-14 18:26:14 | 000,082,944 | ---- | M] () -- C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-14 18:25:56 | 000,020,934 | ---- | M] () -- C:\Documents and Settings\gotrek\Pulpit\House_MD_06x20_(NAPISY-115129).NS.zip [2010-09-03 12:25:25 | 366,254,080 | ---- | M] () -- C:\Documents and Settings\gotrek\Pulpit\Dr.House.6x09.Wilson.ITA.WEB-DL.Mux.XviD-NovaRip.avi [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-09-21 19:56:50 | 366,966,784 | ---- | C] () -- C:\Documents and Settings\gotrek\Pulpit\Usta.Usta.S01E08.PL.PDTV.XViD-ER.avi [2010-09-14 18:25:53 | 000,020,934 | ---- | C] () -- C:\Documents and Settings\gotrek\Pulpit\House_MD_06x20_(NAPISY-115129).NS.zip [2010-09-02 20:15:52 | 366,254,080 | ---- | C] () -- C:\Documents and Settings\gotrek\Pulpit\Dr.House.6x09.Wilson.ITA.WEB-DL.Mux.XviD-NovaRip.avi [2010-08-15 15:38:42 | 000,001,125 | ---- | C] () -- C:\WINDOWS\winamp.ini [2010-05-31 21:36:01 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\PUTTY.RND [2010-01-02 18:07:26 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2009-12-31 18:57:45 | 000,082,289 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2009-12-16 19:42:41 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\BHARegister.dll [2009-12-10 17:53:07 | 000,000,084 | ---- | C] () -- C:\WINDOWS\InsRpPrint.INI [2009-11-21 00:05:54 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\libmySQL50.dll [2009-11-21 00:05:54 | 001,056,768 | ---- | C] () -- C:\WINDOWS\System32\libmysql41.dll [2009-08-23 21:30:09 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009-08-23 21:30:09 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2009-08-23 21:30:08 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2009-08-23 21:30:08 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-08-23 21:30:08 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-08-23 21:30:07 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2009-08-23 21:30:07 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2009-07-18 11:19:45 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009-05-08 11:13:04 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll [2009-04-30 17:00:12 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2009-04-26 19:27:15 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009-04-07 13:38:38 | 000,000,726 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2009-03-31 19:30:00 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache [2009-03-25 21:50:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI [2009-03-25 21:26:29 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2009-03-03 22:32:00 | 000,082,944 | ---- | C] () -- C:\Documents and Settings\gotrek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-12-14 20:06:04 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-12-14 17:31:29 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2008-12-14 17:31:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2008-08-02 06:20:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-08-02 06:20:00 | 001,499,136 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-08-02 06:20:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-08-02 06:20:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-08-02 06:20:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006-02-15 05:57:50 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll [2003-04-08 12:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2001-07-06 15:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-01-21 14:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software [2009-04-26 19:29:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2009-07-25 15:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fireglow [2010-01-19 09:47:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InsERT [2009-11-21 00:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MagneticOne Store Manager for osCommerce [2010-01-05 22:52:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2009-12-16 19:46:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panasonic [2009-03-31 21:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony [2010-02-04 10:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\AgerWebEdytor [2010-08-28 21:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\BESTplayer [2010-09-23 21:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\BitTorrent [2009-02-15 18:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\BloodTies [2009-04-26 19:30:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\DAEMON Tools Lite [2010-09-21 14:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\FileZilla [2008-12-21 12:31:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Gadu-Gadu [2010-07-28 13:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Gadu-Gadu 10 [2010-01-06 18:30:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\GHISLER [2010-05-24 22:15:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\gtk-2.0 [2010-01-20 15:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Image Zone Express [2009-12-10 18:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\InsERT GT [2009-12-31 18:58:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Leadertech [2010-07-02 13:23:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Notepad++ [2009-12-02 23:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Nowe Gadu-Gadu [2010-05-23 20:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Nvu [2010-01-05 22:52:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\OpenFM [2009-03-31 21:21:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Sony [2009-03-25 21:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\Teleca [2010-05-18 19:57:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\gotrek\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] < End of report >