OTL logfile created on: 2012-07-08 15:52:56 - Run 1 OTL by OldTimer - Version 3.2.53.1 Folder = C:\ Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 84,74% Memory free 3,85 Gb Paging File | 3,72 Gb Available in Paging File | 96,72% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 80,69 Gb Total Space | 3,89 Gb Free Space | 4,82% Space Free | Partition Type: NTFS Drive D: | 68,36 Gb Total Space | 12,56 Gb Free Space | 18,37% Space Free | Partition Type: NTFS Computer Name: WS-F509C4F6E41C | User Name: Marek | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-08 15:40:41 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\OTL.exe PRC - [2012-03-26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-04-04 07:54:04 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-06-23 17:29:49 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-06-17 12:32:12 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-03-26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2012-02-19 22:51:55 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Stopped] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2008-02-27 12:22:58 | 000,494,088 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService) SRV - [2008-02-27 11:24:48 | 000,427,288 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2006-05-09 14:08:50 | 000,016,896 | ---- | M] (Apache Software Foundation) [Auto | Stopped] -- C:\Program Files\xampp\apache\bin\apache.exe -- (Apache2) SRV - [2006-05-01 18:56:30 | 000,576,000 | ---- | M] (FileZilla Project) [On_Demand | Stopped] -- C:\Program Files\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZilla Server) SRV - [2006-04-27 14:03:48 | 004,149,248 | ---- | M] () [Auto | Stopped] -- C:\Program Files\xampp\mysql\bin\mysqld-nt.exe -- (mysql) SRV - [2001-09-27 23:26:40 | 000,065,536 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2011-02-25 00:38:17 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter) DRV - [2011-02-25 00:38:17 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2011-02-25 00:38:14 | 000,129,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman) DRV - [2011-02-25 00:38:13 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpman.sys -- (tdrpman) DRV - [2009-08-17 13:16:06 | 001,390,976 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV - [2009-05-25 09:21:28 | 000,142,336 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008-09-04 07:28:22 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag) DRV - [2008-09-04 07:27:54 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem) DRV - [2008-09-04 07:27:28 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus) DRV - [2005-09-24 00:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus) DRV - [2004-09-10 12:28:46 | 000,291,456 | ---- | M] (Midiman/M-Audio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\delta.sys -- (DELTA) Service for Delta Driver (WDM) DRV - [2004-08-13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2790392 IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\URLSearchHook: {C94E154B-1459-4A47-966B-4B843BEFC7DB} - No CLSID value found IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\SearchScopes,DefaultScope = {CF739809-1C6C-47C0-85B9-569DBB141420} IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ironto&s={searchTerms}&f=4 IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392 IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}: "URL" = http://toolbar.ask.com/toolbarv/askRedirect?gct=&gc=1&q={searchTerms}&crm=1&toolbar=BT IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-796845957-261478967-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultthis.engineName: "BitTorrentBar Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2790392&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.selectedEngine: "BitTorrentBar Customized Web Search" FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2790392&SearchSource=2&q=" FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.3.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1: C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-07-08 14:01:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-04-13 22:04:00 | 000,000,000 | ---D | M] [2011-02-25 00:54:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Extensions [2012-05-31 13:04:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\extensions [2011-03-01 00:05:46 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-05-31 13:04:44 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} [2011-02-26 16:47:09 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} [2012-01-02 01:17:33 | 000,000,000 | ---D | M] (Facemoods) -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\extensions\ffxtlbr@Facemoods.com [2012-04-18 00:59:52 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\Marek\Dane aplikacji\Mozilla\Firefox\Profiles\29bywmo2.default\searchplugins\conduit.xml [2012-05-03 18:20:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-06-17 12:32:13 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2008-09-04 02:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll [2011-10-03 19:24:29 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2011-10-03 19:24:29 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-10-03 19:24:29 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-10-03 19:24:29 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2011-10-03 19:24:29 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-10-03 19:24:29 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\Toolbar\WebBrowser: (no name) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - No CLSID value found. O3 - HKU\S-1-5-21-796845957-261478967-1801674531-1004\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.) O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis) O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis) O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" File not found O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found O4 - HKLM..\Run: [DeltTray] C:\WINDOWS\System32\delttray.exe (Doug Fetter Software Wizardry) O4 - HKLM..\Run: [HDD Regenerator] "C:\Program Files\HDD Regenerator\HDD Regenerator.exe" File not found O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe (HP) O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe () O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe File not found O4 - HKLM..\Run: [themecpl] C:\Documents and Settings\Marek\Ustawienia lokalne\Dane aplikacji\Microsoft\Windows\3356\themecpl.exe () O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) O4 - HKU\S-1-5-21-796845957-261478967-1801674531-1004..\Run: [AdobeBridge] File not found O4 - HKU\S-1-5-21-796845957-261478967-1801674531-1004..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-796845957-261478967-1801674531-1004..\Run: [mxClock] F:\Dysk Nowy\Instale\mxClock.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-796845957-261478967-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.7.0_03) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.251.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1BBC4A23-465A-478B-801F-8D8E6143C964}: DhcpNameServer = 192.168.251.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-02-25 00:03:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-08 15:41:06 | 000,000,000 | ---D | C] -- C:\OTL [2012-07-08 15:41:01 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\OTL.exe [2012-07-08 15:32:40 | 000,000,000 | ---D | C] -- C:\LOGI [2012-07-08 14:55:15 | 000,000,000 | ---D | C] -- C:\1 Komputer zablokowany ukash POMOCY - Fixitpc.pl_pliki [2012-07-08 14:54:41 | 000,000,000 | ---D | C] -- C:\Dezynfekcja kroki finalizujące temat - Fixitpc.pl_pliki [2012-07-08 14:51:38 | 000,000,000 | ---D | C] -- C:\Blokada komputera UKASH - Fixitpc.pl_pliki [2012-07-08 13:35:10 | 000,000,000 | ---D | C] -- C:\Zablokowany komputer - UKASH. Grozi mi dożywocie, pomocy. - Fixitpc.pl_pliki [2012-07-08 12:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Dane aplikacji\hellomoto [2012-06-21 00:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Dane aplikacji\CyberLink [2012-06-21 00:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Moje dokumenty\CyberLink [2012-06-17 21:39:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Google Earth [2012-06-17 19:31:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Pulpit\PA Egzamin [2012-06-13 19:36:13 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2012-06-09 18:40:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Dane aplikacji\Ahead [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-08 15:59:21 | 000,000,406 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job [2012-07-08 15:58:20 | 000,000,366 | -H-- | M] () -- C:\WINDOWS\tasks\MpIdleTask.job [2012-07-08 15:48:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-07-08 15:40:41 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\OTL.exe [2012-07-08 15:40:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012-07-08 15:36:46 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012-07-08 15:01:18 | 003,858,720 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-07-08 14:55:16 | 000,104,722 | ---- | M] () -- C:\1 Komputer zablokowany ukash POMOCY - Fixitpc.pl.htm [2012-07-08 14:54:41 | 000,085,956 | ---- | M] () -- C:\Dezynfekcja kroki finalizujące temat - Fixitpc.pl.htm [2012-07-08 14:51:39 | 000,092,685 | ---- | M] () -- C:\Blokada komputera UKASH - Fixitpc.pl.htm [2012-07-08 14:29:39 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-07-08 13:35:11 | 000,095,383 | ---- | M] () -- C:\Zablokowany komputer - UKASH. Grozi mi dożywocie, pomocy. - Fixitpc.pl.htm [2012-07-08 13:34:23 | 000,618,655 | ---- | M] () -- C:\adwcleaner.exe [2012-07-08 13:28:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-07-08 13:19:15 | 001,444,041 | ---- | M] () -- C:\Diagnostyka ogólne raporty systemowe - Fixitpc_pl.mht [2012-07-08 13:10:03 | 000,294,491 | ---- | M] () -- C:\WINDOWS\System32\shimg.dll [2012-07-08 13:09:56 | 000,028,160 | ---- | M] () -- C:\WINDOWS\System32\dll.dll [2012-07-08 13:09:56 | 000,000,016 | ---- | M] () -- C:\WINDOWS\System32\crt.dat [2012-07-08 13:09:50 | 000,050,688 | ---- | M] () -- C:\WINDOWS\System32\mdhcp32.dll [2012-07-07 17:21:24 | 000,010,240 | ---- | M] () -- C:\Documents and Settings\Marek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-06 14:12:28 | 000,449,090 | ---- | M] () -- C:\Zdjęcie-0220.jpg [2012-07-06 14:12:16 | 000,335,093 | ---- | M] () -- C:\Zdjęcie-0219.jpg [2012-07-06 14:11:54 | 000,412,646 | ---- | M] () -- C:\Zdjęcie-0218.jpg [2012-07-06 13:58:53 | 000,000,347 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2012-07-06 13:36:20 | 000,001,726 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini [2012-07-06 12:55:00 | 000,002,104 | ---- | M] () -- C:\Documents and Settings\Marek\.recently-used.xbel [2012-07-05 12:26:24 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-06-23 17:29:48 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-06-23 17:29:48 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-06-13 19:53:20 | 000,527,820 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-06-13 19:53:19 | 000,466,258 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-06-13 19:53:19 | 000,102,718 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-06-13 19:53:19 | 000,081,282 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-06-13 19:49:52 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-08 14:55:15 | 000,104,722 | ---- | C] () -- C:\1 Komputer zablokowany ukash POMOCY - Fixitpc.pl.htm [2012-07-08 14:54:40 | 000,085,956 | ---- | C] () -- C:\Dezynfekcja kroki finalizujące temat - Fixitpc.pl.htm [2012-07-08 14:51:38 | 000,092,685 | ---- | C] () -- C:\Blokada komputera UKASH - Fixitpc.pl.htm [2012-07-08 13:35:10 | 000,095,383 | ---- | C] () -- C:\Zablokowany komputer - UKASH. Grozi mi dożywocie, pomocy. - Fixitpc.pl.htm [2012-07-08 13:34:08 | 000,618,655 | ---- | C] () -- C:\adwcleaner.exe [2012-07-08 13:19:13 | 001,444,041 | ---- | C] () -- C:\Diagnostyka ogólne raporty systemowe - Fixitpc_pl.mht [2012-07-08 13:09:56 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\dll.dll [2012-07-08 13:09:56 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\crt.dat [2012-07-08 13:09:54 | 000,294,491 | ---- | C] () -- C:\WINDOWS\System32\shimg.dll [2012-07-08 13:09:50 | 000,050,688 | ---- | C] () -- C:\WINDOWS\System32\mdhcp32.dll [2012-07-06 13:48:43 | 000,449,090 | ---- | C] () -- C:\Zdjęcie-0220.jpg [2012-07-06 13:48:43 | 000,412,646 | ---- | C] () -- C:\Zdjęcie-0218.jpg [2012-07-06 13:48:43 | 000,335,093 | ---- | C] () -- C:\Zdjęcie-0219.jpg [2012-07-06 12:55:00 | 000,002,104 | ---- | C] () -- C:\Documents and Settings\Marek\.recently-used.xbel [2012-06-20 00:36:55 | 000,088,170 | ---- | C] () -- C:\Documents and Settings\Marek\Pulpit\I_znowu_nieprzespana_Cest_La_Vie_EN.mid [2012-06-17 21:35:28 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012-06-17 21:35:28 | 000,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012-03-15 23:04:35 | 000,000,061 | ---- | C] () -- C:\WINDOWS\dcmvwr.INI [2012-02-16 00:42:19 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2011-11-10 20:30:00 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-10-15 01:01:06 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2011-10-02 00:21:27 | 000,131,247 | RHS- | C] () -- C:\WINDOWS\System32\ope2BB.exe [2011-09-16 23:32:44 | 000,000,655 | ---- | C] () -- C:\WINDOWS\Informat.ini [2011-06-24 14:54:08 | 000,000,052 | ---- | C] () -- C:\WINDOWS\runonce.ini [2011-06-24 14:51:48 | 000,001,781 | ---- | C] () -- C:\WINDOWS\GNMIDI.INI [2011-05-09 16:21:58 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe [2011-04-07 00:46:03 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\Marek\.gtk-bookmarks [2011-02-26 22:20:45 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI [2011-02-26 17:33:37 | 000,262,416 | ---- | C] () -- C:\WINDOWS\System32\Asfv2.dll [2011-02-26 17:30:11 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\TDI-SonyOMG.dll [2011-02-26 00:46:13 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2011-02-26 00:02:18 | 000,010,240 | ---- | C] () -- C:\Documents and Settings\Marek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-02-25 03:22:34 | 000,237,568 | R--- | C] () -- C:\WINDOWS\System32\qtmlClient.dll [2011-02-25 03:22:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Graffiti5.2Pin.ini [2011-02-25 02:15:17 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll [2011-02-25 02:14:44 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-02-25 02:14:44 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2011-02-25 02:14:43 | 000,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-02-25 02:14:43 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2011-02-25 02:14:42 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2011-02-25 02:14:41 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-02-25 01:52:51 | 000,001,726 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini [2011-02-25 01:52:13 | 000,000,347 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2011-02-25 00:55:36 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-02-25 00:54:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-02-25 00:54:20 | 003,858,720 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-02-25 00:33:42 | 000,000,376 | ---- | C] () -- C:\WINDOWS\mozregistry.dat [2011-02-25 00:17:30 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2011-02-25 00:17:28 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2011-02-25 00:17:28 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2011-02-25 00:14:38 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2011-02-25 00:08:05 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2011-02-25 00:08:00 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2011-02-25 00:07:50 | 000,021,211 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2011-02-25 00:07:50 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2011-02-25 00:04:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-02-25 00:00:42 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-02-24 15:19:30 | 002,195,030 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [color=#E56717]========== LOP Check ==========[/color] [2011-04-28 23:57:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Acronis [2011-02-25 01:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2011-10-28 18:22:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MakeMusic [2011-02-25 03:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle [2011-02-25 03:06:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle Studio Plus [2011-02-25 03:10:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Pinnacle Studio Ultimate [2011-12-22 20:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PlayFirst [2012-01-01 22:25:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe [2011-02-25 03:06:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Studio 12 [2011-11-10 00:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-02-25 00:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Acronis [2011-02-26 00:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Acronis [2011-10-30 20:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\BabylonToolbar [2012-07-05 12:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\BitTorrent [2011-10-21 00:34:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Blender Foundation [2011-11-13 22:19:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\com.adobe.downloadassistant.AdobeDownloadAssistant [2011-06-24 11:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Dev-Cpp [2012-01-02 23:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\facemoods.com [2011-09-17 00:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Gadu-Gadu 10 [2011-02-25 01:31:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Genie-Soft [2011-08-15 22:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\GrabIt [2012-06-13 01:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\gtk-2.0 [2012-07-08 12:39:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\hellomoto [2012-02-16 01:14:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Oracle [2011-02-25 03:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\proDAD [2012-01-01 23:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2011-05-25 00:06:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Thinstall [2011-12-12 00:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\Thunderbird [2012-05-20 20:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Dane aplikacji\VSO [2011-09-13 17:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\Gadu-Gadu 10 [2012-06-05 18:37:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\LG Electronics [2012-04-11 19:46:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Paulina\Dane aplikacji\PlayFirst [2012-07-08 15:58:20 | 000,000,366 | -H-- | M] () -- C:\WINDOWS\Tasks\MpIdleTask.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:B755D674 < End of report >