OTL logfile created on: 2012-05-11 08:36:56 - Run 1 OTL by OldTimer - Version 3.2.42.3 Folder = F:\A-zapis Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 503,48 Mb Total Physical Memory | 101,58 Mb Available Physical Memory | 20,18% Memory free 1,20 Gb Paging File | 0,76 Gb Available in Paging File | 63,11% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 19,53 Gb Total Space | 6,57 Gb Free Space | 33,62% Space Free | Partition Type: NTFS Drive F: | 56,79 Gb Total Space | 42,60 Gb Free Space | 75,01% Space Free | Partition Type: NTFS Computer Name: PAFAL-M1Y9L5ALU | User Name: lfanczak | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-05-11 08:35:24 | 000,595,456 | ---- | M] (OldTimer Tools) -- F:\A-zapis\OTL.exe PRC - [2012-04-26 05:38:18 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-03-26 11:24:58 | 001,516,600 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe PRC - [2012-01-04 13:32:36 | 000,718,888 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe PRC - [2012-01-04 13:32:18 | 000,173,096 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe PRC - [2012-01-04 13:32:10 | 000,126,504 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe PRC - [2008-04-28 06:14:00 | 000,073,728 | ---- | M] (Software 2000 Limited) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1006MC.EXE PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-09-14 07:02:10 | 001,080,264 | ---- | M] (C. Ghisler & Co.) -- C:\totalCMD\totalcmd\TOTALCMD.EXE PRC - [2007-06-01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe PRC - [2007-06-01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2003-02-13 10:25:48 | 000,493,024 | ---- | M] (Computer Associates International, Inc.) -- C:\Program Files\CA\eTrust Antivirus\Realmon.exe PRC - [2003-02-13 10:24:30 | 000,234,976 | ---- | M] (Computer Associates International, Inc.) -- C:\Program Files\CA\eTrust Antivirus\InoTask.exe PRC - [2003-02-13 10:24:04 | 000,230,880 | ---- | M] (Computer Associates International, Inc.) -- C:\Program Files\CA\eTrust Antivirus\InoRT.exe PRC - [2003-02-13 10:24:00 | 000,144,864 | ---- | M] (Computer Associates International, Inc.) -- C:\Program Files\CA\eTrust Antivirus\InoRpc.exe PRC - [2000-11-15 11:52:40 | 000,569,344 | ---- | M] () -- C:\Lotus\Notes\nlnotes.exe PRC - [2000-11-15 11:38:18 | 000,020,480 | ---- | M] () -- C:\Lotus\Notes\nhldaemn.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-05-11 08:15:31 | 008,797,856 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll MOD - [2012-04-26 05:38:17 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2012-03-26 11:25:32 | 000,345,656 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll MOD - [2012-03-26 11:25:32 | 000,282,168 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll MOD - [2012-03-26 11:25:26 | 008,197,176 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtGUI4.dll MOD - [2012-03-26 11:25:26 | 002,302,008 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll MOD - [2012-03-26 11:25:24 | 000,027,704 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll MOD - [2012-03-26 11:25:22 | 000,202,296 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll MOD - [2003-02-13 10:20:50 | 000,627,920 | ---- | M] () -- C:\Program Files\CA\SharedComponents\ScanEngine\Vete.dll MOD - [2000-11-15 12:08:48 | 000,614,400 | ---- | M] () -- C:\Lotus\Notes\nstrings.dll MOD - [2000-11-15 12:06:12 | 010,436,608 | ---- | M] () -- C:\Lotus\Notes\nnotesws.dll MOD - [2000-11-15 11:52:40 | 000,569,344 | ---- | M] () -- C:\Lotus\Notes\nlnotes.exe MOD - [2000-11-15 11:47:12 | 000,032,768 | ---- | M] () -- C:\Lotus\Notes\ntcp.dll MOD - [2000-11-15 11:46:26 | 000,032,768 | ---- | M] () -- C:\Lotus\Notes\nplugins.dll MOD - [2000-11-15 11:45:02 | 000,053,248 | ---- | M] () -- C:\Lotus\Notes\nnetbios.dll MOD - [2000-11-15 11:42:16 | 000,942,080 | ---- | M] () -- C:\Lotus\Notes\nlsxbe.dll MOD - [2000-11-15 11:39:14 | 000,073,728 | ---- | M] () -- c:\Lotus\Notes\nicnv.dll MOD - [2000-11-15 11:38:18 | 000,020,480 | ---- | M] () -- C:\Lotus\Notes\nhldaemn.exe MOD - [2000-09-19 20:24:24 | 007,454,720 | ---- | M] () -- C:\Lotus\Notes\nnotes.dll MOD - [2000-09-13 23:36:48 | 000,061,440 | ---- | M] () -- C:\Lotus\Notes\nntcp.dll MOD - [2000-09-13 23:19:58 | 000,225,280 | ---- | M] () -- C:\Lotus\Notes\nlsccstr.dll MOD - [2000-09-13 23:19:50 | 000,057,344 | ---- | M] () -- C:\Lotus\Notes\ltssb01.dll MOD - [2000-09-13 23:19:48 | 000,016,384 | ---- | M] () -- C:\Lotus\Notes\namhook.dll MOD - [2000-09-13 23:09:18 | 000,327,680 | ---- | M] () -- C:\Lotus\Notes\js32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-05-11 08:15:31 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-04-26 05:38:19 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-01-04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2003-02-13 10:24:30 | 000,234,976 | ---- | M] (Computer Associates International, Inc.) [Auto | Running] -- C:\Program Files\CA\eTrust Antivirus\InoTask.exe -- (InoTask) SRV - [2003-02-13 10:24:04 | 000,230,880 | ---- | M] (Computer Associates International, Inc.) [Auto | Running] -- C:\Program Files\CA\eTrust Antivirus\InoRT.exe -- (InoRT) SRV - [2003-02-13 10:24:00 | 000,144,864 | ---- | M] (Computer Associates International, Inc.) [Auto | Running] -- C:\Program Files\CA\eTrust Antivirus\InoRpc.exe -- (InoRPC) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\usbser_lowerflt.sys -- (upperdev) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\lfanczak\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - [2011-11-01 11:07:26 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-07-12 14:49:18 | 000,060,104 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - [2010-07-12 14:48:56 | 000,073,032 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2009-06-25 12:00:30 | 000,004,716 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-07-18 13:26:04 | 004,547,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2006-12-14 10:44:06 | 000,085,120 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2003-01-03 16:12:52 | 000,113,728 | ---- | M] (Computer Associates) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\ino_fltr.sys -- (INO_FLTR) DRV - [2003-01-03 14:08:14 | 000,019,776 | ---- | M] (Computer Associates) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\ino_flpy.sys -- (INO_FLPY) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={A2B2D875-CD59-494A-8F31-C69969ADA692} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://klit.startnow.com/?src=startpage&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=741&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.3.0&install_country=PL&install_date=20111025&user_guid=E415CAC99D1443078768018267E4F42C&machine_id=6cc28090e97afc71e8465bf555c834db&browser=IE&os=win&os_version=5.1-x86-SP3 IE - HKCU\..\SearchScopes,DefaultScope = {0388404D-6072-4CEB-B521-8F090FEAEE57} IE - HKCU\..\SearchScopes\{0388404D-6072-4CEB-B521-8F090FEAEE57}: "URL" = http://klit.startnow.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=741&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.3.0&install_country=PL&install_date=20111025&user_guid=E415CAC99D1443078768018267E4F42C&machine_id=6cc28090e97afc71e8465bf555c834db&browser=IE&os=win&os_version=5.1-x86-SP3&iesrc={referrer:source} IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={A2B2D875-CD59-494A-8F31-C69969ADA692} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "SweetIM Search" FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.wp.pl/" FF - prefs.js..keyword.URL: "http://klit.startnow.com/s/?src=addrbar&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=741&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.3.0&install_country=PL&install_date=20111025&user_guid=E415CAC99D1443078768018267E4F42C&machine_id=6cc28090e97afc71e8465bf555c834db&browser=FF&os=win&os_version=5.1-x86-SP3&q=" FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "" FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "" FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "SweetIM Search" FF - prefs.js..browser.startup.homepage: "http://www.wp.pl" FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://mystart.incredimail.com/mb68/?loc=ff_address_bar&u=92260241304071225&search=" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-04-26 05:38:19 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-22 11:18:04 | 000,000,000 | ---D | M] [2009-07-06 05:57:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Extensions [2012-05-07 05:59:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Firefox\Profiles\2mq3yk53.default\extensions [2010-12-14 07:01:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Firefox\Profiles\2mq3yk53.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-10-21 12:34:31 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Firefox\Profiles\2mq3yk53.default\searchplugins\MyStart Search.xml [2011-10-25 07:53:59 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Firefox\Profiles\2mq3yk53.default\searchplugins\sweetim.xml [2011-10-25 09:06:24 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\lfanczak\Dane aplikacji\Mozilla\Firefox\Profiles\2mq3yk53.default\searchplugins\yahoo-zugo.xml [2012-03-19 14:33:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-10-25 08:11:30 | 000,010,043 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\LFANCZAK\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\2MQ3YK53.DEFAULT\EXTENSIONS\IPLEXTOALL@ALLPLAYER.ORG.XPI [2012-04-26 05:38:19 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-03-05 06:54:09 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-18 05:43:52 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2011-10-18 05:43:52 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-10-18 05:43:52 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-10-18 05:43:52 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2011-10-18 05:43:52 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-10-18 05:43:52 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2012-04-05 06:39:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\lfanczak\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found. O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [Realtime Monitor] C:\Program Files\CA\eTrust Antivirus\Realmon.exe (Computer Associates International, Inc.) O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9D63037A-D505-4208-8E37-099DAB6F12E6}: NameServer = 10.0.1.5,192.204.152.34 O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\$hf_mig$\KB969897\SP3QFE\mshtml.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\lfanczak\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\lfanczak\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-06-25 11:24:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-05-11 08:04:35 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2012-05-07 05:51:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nokia PC Suite [2012-05-07 05:51:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite [2012-05-07 05:51:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia [2012-05-07 05:49:55 | 000,018,816 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2012-05-07 05:49:45 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2012-04-26 05:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-04-26 05:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla [2012-04-18 10:42:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\lfanczak\DoctorWeb [2012-04-16 06:51:25 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [269 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [22 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-05-11 08:17:50 | 000,005,629 | ---- | M] () -- C:\WINDOWS\WINCMD.INI [2012-05-11 08:15:32 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-05-11 08:15:31 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-05-11 08:15:31 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-05-11 08:15:09 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-05-11 08:14:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-05-11 08:14:45 | 000,127,704 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-05-11 08:06:43 | 000,501,348 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-05-11 08:06:43 | 000,442,306 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-05-11 08:06:43 | 000,089,884 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-05-11 08:06:43 | 000,072,242 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-05-11 08:03:05 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012-05-07 05:51:18 | 000,001,763 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nokia PC Suite.lnk [2012-04-27 13:56:27 | 000,002,525 | ---- | M] () -- C:\Documents and Settings\lfanczak\Pulpit\Microsoft Word.lnk [2012-04-16 06:51:50 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2012-04-16 06:51:49 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2012-04-11 15:55:28 | 002,028,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2012-04-11 15:55:21 | 002,070,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe [2012-04-11 15:55:21 | 002,070,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2012-04-11 15:55:03 | 002,149,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2012-04-11 15:54:42 | 001,862,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys [2012-04-11 15:54:42 | 001,862,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2012-04-11 15:54:22 | 002,193,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe [2012-04-11 15:54:22 | 002,193,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [269 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [22 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-05-07 05:51:17 | 000,001,763 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nokia PC Suite.lnk [2012-04-16 06:51:50 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf [2012-04-16 06:51:49 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2012-02-15 06:53:29 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2011-12-01 10:58:33 | 000,000,067 | ---- | C] () -- C:\WINDOWS\Speed Video to Audio Converter.INI [2011-12-01 10:47:04 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\datdtoagi.dll [2011-12-01 10:04:05 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\sysvm501.dll [2011-12-01 08:30:36 | 000,004,930 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\qjaxlkio.dss [2011-11-25 11:18:07 | 000,000,018 | ---- | C] () -- C:\WINDOWS\avi2divx.INI [2011-10-28 12:18:08 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-10-28 12:18:07 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-10-28 12:18:07 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-10-28 12:18:05 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-10-25 09:06:12 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-10-25 07:17:53 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-02-02 07:26:07 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\lfanczak\Dane aplikacji\$_hpcst$.hpc [2010-05-28 05:39:40 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\lfanczak\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-05-27 13:41:01 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\HPPLVS.dll < End of report >