OTL logfile created on: 2012-07-12 19:16:53 - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Papok\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 78,87% Memory free 6,19 Gb Paging File | 5,77 Gb Available in Paging File | 93,10% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 144,04 Gb Total Space | 8,67 Gb Free Space | 6,02% Space Free | Partition Type: NTFS Drive D: | 137,50 Gb Total Space | 34,78 Gb Free Space | 25,29% Space Free | Partition Type: NTFS Computer Name: PAPOK-PC | User Name: Papok | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-12 19:14:00 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Papok\Desktop\OTL.exe PRC - [2012-07-12 08:59:29 | 001,536,712 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe PRC - [2012-06-27 12:29:26 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe PRC - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe PRC - [2012-06-17 09:49:56 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-04-11 08:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-07-12 08:59:29 | 009,465,032 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_265.dll MOD - [2012-06-17 09:49:56 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2012-03-26 21:47:33 | 000,016,832 | ---- | M] () -- C:\Program Files\Adobe\Reader 9.0\Reader\ViewerPS.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-07-12 08:59:29 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012-06-26 21:23:02 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2012-06-17 09:49:56 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-06-15 17:07:53 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-06-05 15:17:44 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-06-01 13:18:16 | 000,736,104 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files\Tunngle\TnglCtrl.exe -- (TunngleService) SRV - [2011-12-07 13:31:06 | 000,279,968 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Ticno\Multibar\SearchService.exe -- (TicnoSearch) SRV - [2011-09-01 03:22:18 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-01-08 09:38:46 | 004,136,960 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe -- (WiselinkPro) SRV - [2008-10-16 18:26:20 | 000,860,160 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) SRV - [2008-10-16 17:54:34 | 000,466,944 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) SRV - [2008-03-07 16:05:10 | 000,024,576 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe -- (ETService) SRV - [2008-03-05 00:38:34 | 000,500,784 | ---- | M] (Egis Incorporated) [Auto | Stopped] -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service) SRV - [2008-02-15 10:09:30 | 000,595,248 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\System32\vfsFPService.exe -- (vfsFPService) SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008-01-16 19:35:02 | 000,081,504 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService) SRV - [2008-01-10 18:03:00 | 000,233,472 | ---- | M] (Acer Incorporated) [Auto | Stopped] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service) SRV - [2007-12-11 05:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Stopped] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2007-12-06 17:15:28 | 000,110,592 | ---- | M] () [Auto | Stopped] -- C:\ACER\Mobility Center\MobilityService.exe -- (MobilityService) SRV - [2007-10-03 15:45:02 | 000,358,936 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva394.sys -- (XDva394) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Papok\AppData\Local\Temp\ALSysIO.sys -- (ALSysIO) DRV - [2012-03-01 01:59:00 | 010,819,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2012-02-27 20:43:21 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc) DRV - [2012-02-27 20:43:21 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt) DRV - [2012-02-18 16:41:45 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2012-01-13 13:05:05 | 000,043,184 | ---- | M] (Alfa Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AlfaFF.sys -- (AlfaFF) DRV - [2010-08-16 16:26:29 | 006,637,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETwLv32.sys -- (NETwLv32) Sterownik karty Intel(R) DRV - [2009-09-16 08:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle) DRV - [2009-08-05 07:18:22 | 000,048,640 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E) DRV - [2009-03-18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi) DRV - [2008-11-17 08:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R) DRV - [2008-07-26 22:30:30 | 000,014,416 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Users\Papok\Desktop\Ikony!\Patryka\ThrottleStop_400\WinRing0.sys -- (WinRing0_1_2_0) DRV - [2008-03-13 16:23:06 | 000,080,912 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR) DRV - [2008-03-05 10:25:30 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Stopped] -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) DRV - [2008-02-29 09:13:38 | 001,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2008-02-15 10:09:46 | 000,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vfs101x.sys -- (vfs101x) DRV - [2008-01-21 04:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) DRV - [2008-01-16 19:35:08 | 000,122,368 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Stopped] -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys -- (NTIPPKernel) DRV - [2008-01-08 21:10:32 | 002,554,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Sterownik karty Intel(R) DRV - [2007-12-18 18:12:12 | 000,054,784 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\itecir.sys -- (itecir) DRV - [2007-07-13 10:21:12 | 000,125,728 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\Mpfp.sys -- (MPFP) DRV - [2007-01-26 08:32:18 | 000,069,632 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\int15.sys -- (int15) DRV - [2006-11-02 15:27:34 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Stopped] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/v9tb/v9tb_1331577254_778013 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=bf3&chnl=bf3&cd=2XzutAtN2Y1L1QzuyB0AyBzytDyDtAtBtCtDyE0DtA0AtCyEtN0D0TzutBtDtCtBtDyCtByD&cr=2119897581 IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\InprocServer32 File not found IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{3E2E85B4-0AFB-2B53-AFA4-6CD9C1F99833}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=bf3&chnl=bf3&cd=2XzutAtN2Y1L1QzuyB0AyBzytDyDtAtBtCtDyE0DtA0AtCyEtN0D0TzutBtDtCtBtDyCtByD&cr=2119897581 IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = http://www.google.pl/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/v9tb/v9tb_1331577254_778013 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultNetworkProfile = 517498287 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\InprocServer32 File not found IE - HKCU\..\SearchScopes,Backup.Old.DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=bf3&chnl=bf3&cd=2XzutAtN2Y1L1QzuyB0AyBzytDyDtAtBtCtDyE0DtA0AtCyEtN0D0TzutBtDtCtBtDyCtByD&cr=2119897581 IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=979E90F7-D36E-412A-B54C-6EDA2A2E61E2&apn_sauid=5C9CF885-8612-46BD-B703-734F643B7484& IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms} IE - HKCU\..\SearchScopes\{3E2E85B4-0AFB-2B53-AFA4-6CD9C1F99833}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=119998&babsrc=SP_ss&mntrId=6aa53a14000000000000001f3b715f6b IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678 IE - HKCU\..\SearchScopes\{B487FBBF-6A05-4202-A608-59C001373445}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW_plPL466 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..backup.old.browser.search.defaultenginename: "Google " FF - prefs.js..backup.old.browser.search.selectedEngine: "Google " FF - prefs.js..browser.startup.homepage: "http://www.google.pl" FF - prefs.js..browser.search.defaultenginename: "Search" FF - prefs.js..browser.search.order.1: "Google " FF - prefs.js..browser.search.selectedEngine: "Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.google.pl" FF - prefs.js..keyword.URL: "http://search.babylon.com/?AF=119998&babsrc=adbartrp&mntrId=6aa53a14000000000000001f3b715f6b&q=" FF - prefs.js..network.proxy.type: 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Papok\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Papok\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Papok\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Papok\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll File not found FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-17 09:49:56 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-17 09:49:56 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-01-13 18:11:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Papok\AppData\Roaming\mozilla\Extensions [2012-06-25 20:10:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Papok\AppData\Roaming\mozilla\Firefox\Profiles\j4cg8zd9.default\extensions [2012-06-25 20:09:49 | 000,002,295 | ---- | M] () -- C:\Users\Papok\AppData\Roaming\Mozilla\Firefox\Profiles\j4cg8zd9.default\searchplugins\Search.xml [2012-06-07 11:52:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-06-17 09:49:56 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-04-27 18:50:14 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-02-26 10:43:26 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2012-04-27 18:50:14 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-04-27 18:50:14 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-04-27 18:50:14 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-03-12 20:34:14 | 000,002,424 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml [2012-04-27 18:50:14 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-04-27 18:50:14 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (DownloadnSave Class) - {5E8DE51E-349C-94A0-DA80-680861761357} - C:\ProgramData\DownloadnSave\bhoclass.dll () O2 - BHO: (Funmoods Helper Object) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files\Funmoods\1.5.23.22\bh\escort.dll (Funmoods BHO) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis) O2 - BHO: (no name) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - No CLSID value found. O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll File not found O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) O2 - BHO: (GretechBHO Class) - {F0181C6E-9218-4792-9F3C-E8DF52B2F1AC} - C:\Program Files\GRETECH\GomPicker\GomPickerBHO.dll (Gretech Corporation) O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKLM\..\Toolbar: (Funmoods Toolbar) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files\Funmoods\1.5.23.22\escorTlbr.dll (Funmoods) O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll File not found O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTor.dll File not found O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [eRecoveryService] File not found O4 - HKLM..\Run: [Tapeter] C:\Program Files\Tapeter\Tapeter.exe () O4 - HKCU..\Run: [AdobeBridge] File not found O4 - HKCU..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe () O4 - HKCU..\Run: [WmiMgmt] C:\Users\Papok\AppData\Local\Microsoft\Windows\3019\WmiMgmt.exe () O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe () O9 - Extra 'Tools' menuitem : Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe () O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O13 - gopher Prefix: missing O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87276B3A-A2FA-4A7F-B460-9F2E62ADF797}: DhcpNameServer = 194.204.159.1 194.204.152.34 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C11F678F-DF66-4B51-9E3E-3239FDB6B50D}: DhcpNameServer = 7.254.254.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D213BFE9-1422-4173-8063-4C3BDB1102BB}: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AWinNotifyVitaKey MC3000: DllName - (C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll) - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll (Arachnoid Biometrics Identification Group Corp.) O24 - Desktop WallPaper: C:\Windows\Resources\Themes\SteelFlash Final\wallpaper.jpg O24 - Desktop BackupWallPaper: C:\Windows\Resources\Themes\SteelFlash Final\wallpaper.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-12 19:13:53 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Papok\Desktop\OTL.exe [2012-07-12 18:48:03 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\hellomoto [2012-07-12 11:05:41 | 000,000,000 | ---D | C] -- C:\Users\Papok\Documents\GTA San Andreas User Files [2012-07-12 10:52:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games [2012-07-12 09:31:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRt3 2012 Mipmap Edition [2012-07-12 07:58:30 | 002,047,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012-07-12 07:54:36 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012-07-12 07:54:35 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012-07-12 07:54:35 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012-07-12 07:54:35 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012-07-12 07:54:34 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012-07-12 07:54:34 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012-07-12 07:54:33 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012-07-11 15:19:57 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll [2012-07-10 18:18:19 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\LiveGBoost [2012-07-10 18:18:03 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\GZero [2012-07-10 18:17:43 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\GZero [2012-07-10 18:17:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GBoost [2012-07-10 18:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\GBoost [2012-07-08 22:20:48 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Microsoft Games [2012-07-08 02:05:04 | 000,000,000 | ---D | C] -- C:\Users\Papok\Desktop\Firma [2012-07-05 09:46:36 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Microsoft Help [2012-07-03 16:40:22 | 000,000,000 | ---D | C] -- C:\Users\Papok\Desktop\MTA Podmianki [2012-06-28 18:52:55 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\.minecraft [2012-06-28 16:37:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.3 [2012-06-28 16:04:27 | 000,000,000 | ---D | C] -- C:\Users\Papok\Desktop\Lick Library Learn To Play Red Hot Chili Peppers [2012-06-28 15:09:41 | 000,000,000 | ---D | C] -- C:\Users\Papok\Desktop\Quick Licks Slash [2012-06-27 16:42:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2012-06-27 16:42:27 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi [2012-06-26 22:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Minnetonka Audio Software [2012-06-26 21:59:38 | 000,000,000 | ---D | C] -- C:\AdobeTemp [2012-06-26 21:43:01 | 000,000,000 | ---D | C] -- C:\Users\Papok\Documents\Adobe [2012-06-26 21:41:45 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2012-06-26 21:27:11 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player [2012-06-26 21:27:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe [2012-06-26 21:23:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2012-06-25 20:39:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Premium [2012-06-25 20:09:01 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\SendSpace [2012-06-25 20:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\Funmoods [2012-06-25 20:08:27 | 000,000,000 | ---D | C] -- C:\Program Files\Optimizer Pro [2012-06-25 20:08:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownloadnSave [2012-06-25 20:08:11 | 000,000,000 | ---D | C] -- C:\ProgramData\DownloadnSave [2012-06-25 20:07:46 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate [2012-06-25 17:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity [2012-06-25 16:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\GoldWave [2012-06-25 15:40:01 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps [2012-06-25 15:37:03 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\Publish Providers [2012-06-24 19:40:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony [2012-06-24 19:40:22 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2012-06-24 19:23:49 | 000,000,000 | ---D | C] -- C:\Program Files\cFosSpeed [2012-06-23 20:12:37 | 000,000,000 | ---D | C] -- C:\Users\Papok\Adobe Photoshop CS6 [2012-06-23 20:08:42 | 000,000,000 | ---D | C] -- C:\Users\Papok\Adobe Premiere Pro CS6 [2012-06-23 19:12:13 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant [2012-06-23 19:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Download Assistant [2012-06-23 07:55:19 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2012-06-23 07:55:19 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2012-06-23 07:55:03 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll [2012-06-23 07:55:03 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll [2012-06-23 07:55:03 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll [2012-06-23 07:54:52 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2012-06-23 07:54:52 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2012-06-19 20:34:51 | 000,000,000 | ---D | C] -- C:\Users\Papok\Documents\Tunngle [2012-06-19 20:34:51 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\Tunngle [2012-06-19 20:34:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle [2012-06-19 20:34:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle [2012-06-19 20:34:46 | 000,027,136 | ---- | C] (Tunngle.net) -- C:\Windows\System32\drivers\tap0901t.sys [2012-06-19 20:34:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle [2012-06-19 20:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\Tunngle [2012-06-18 20:30:57 | 000,000,000 | ---D | C] -- C:\Users\Papok\Documents\Rigs of Rods 0.38 [2012-06-16 20:41:32 | 000,000,000 | ---D | C] -- C:\Users\Papok\Desktop\Tapety [2012-06-16 20:41:20 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tapeter [2012-06-16 20:41:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tapeter [2012-06-16 20:41:20 | 000,000,000 | ---D | C] -- C:\Program Files\Tapeter [2012-06-16 20:16:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tapeciarz [2012-06-16 20:16:31 | 000,000,000 | ---D | C] -- C:\Program Files\Tapeciarz [2012-06-15 22:09:21 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\VirtualStore [2012-06-15 22:06:21 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Google [2012-06-15 22:04:45 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Apple Computer [2012-06-15 22:04:44 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Roaming\Apple Computer [2012-06-15 22:03:38 | 000,000,000 | ---D | C] -- C:\Program Files\Safari [2012-06-15 22:03:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2012-06-15 22:02:34 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Apple [2012-06-15 22:02:30 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2012-06-15 22:02:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple [2012-06-15 21:50:28 | 000,000,000 | ---D | C] -- C:\Users\Papok\AppData\Local\Macromedia [2012-06-13 21:46:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2 [2012-06-13 21:46:18 | 000,000,000 | ---D | C] -- C:\Program Files\Cheat Engine 6.2 [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-12 19:19:03 | 000,671,154 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2012-07-12 19:19:03 | 000,595,386 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012-07-12 19:19:03 | 000,129,932 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2012-07-12 19:19:03 | 000,103,460 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012-07-12 19:14:51 | 000,001,356 | ---- | M] () -- C:\Users\Papok\AppData\Local\d3d9caps.dat [2012-07-12 19:14:00 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Papok\Desktop\OTL.exe [2012-07-12 19:12:24 | 003,725,512 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-12 19:11:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-07-12 19:10:24 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012-07-12 19:09:50 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012-07-12 19:09:46 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012-07-12 18:56:05 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2012-07-12 18:56:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1586873498-2195508970-1619562132-1000UA.job [2012-07-12 18:52:06 | 000,000,435 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics [2012-07-12 18:52:06 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml [2012-07-12 18:12:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012-07-12 17:58:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-12 11:55:59 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1586873498-2195508970-1619562132-1000Core.job [2012-07-12 11:04:31 | 000,000,639 | ---- | M] () -- C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk [2012-07-12 09:56:59 | 000,069,827 | ---- | M] () -- C:\Users\Papok\Desktop\116_SAStreamMemFix2.rar [2012-07-12 08:59:29 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2012-07-12 08:59:29 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2012-07-11 07:28:16 | 001,950,641 | ---- | M] () -- C:\Users\Papok\Desktop\px_dz.u.nr160.pdf [2012-07-09 19:38:45 | 000,013,036 | ---- | M] () -- C:\Users\Papok\Desktop\dsc07750a.jpg [2012-07-09 19:37:54 | 000,057,883 | ---- | M] () -- C:\Users\Papok\Desktop\dsc07865a.jpg [2012-07-04 09:02:56 | 000,007,168 | ---- | M] () -- C:\Users\Papok\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-03 21:23:52 | 000,000,132 | ---- | M] () -- C:\Users\Papok\AppData\Roaming\Adobe PNG Format CS6 Prefs [2012-07-03 16:39:38 | 019,819,374 | ---- | M] () -- C:\Users\Papok\Desktop\mtasa-1.3.exe [2012-07-01 01:00:00 | 000,000,348 | ---- | M] () -- C:\Windows\tasks\McQcTask.job [2012-06-27 12:08:28 | 000,000,087 | ---- | M] () -- C:\Windows\System32\ssprs.tgz [2012-06-27 12:08:28 | 000,000,073 | ---- | M] () -- C:\Windows\System32\ssprs.dll [2012-06-26 22:09:28 | 000,001,025 | ---- | M] () -- C:\Windows\System32\clauth2.dll [2012-06-26 22:09:28 | 000,001,025 | ---- | M] () -- C:\Windows\System32\clauth1.dll [2012-06-26 22:09:28 | 000,000,231 | ---- | M] () -- C:\Windows\System32\lsprst7.tgz [2012-06-26 22:09:28 | 000,000,217 | ---- | M] () -- C:\Windows\System32\lsprst7.dll [2012-06-25 20:09:00 | 000,302,425 | ---- | M] () -- C:\Users\Papok\AppData\Local\funmoods-speeddial.crx [2012-06-25 20:09:00 | 000,031,470 | ---- | M] () -- C:\Users\Papok\AppData\Local\funmoods.crx [2012-06-25 17:19:40 | 000,000,251 | ---- | M] () -- C:\Windows\xUninstall.bat [2012-06-24 19:44:45 | 000,002,592 | ---- | M] () -- C:\Users\Papok\Documents\Register Vegas Pro.htm [2012-06-24 19:25:20 | 000,101,924 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat [2012-06-19 20:37:47 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Access.dat [2012-06-17 15:01:27 | 000,000,067 | ---- | M] () -- C:\Users\Papok\Desktop\MC.bat [2012-06-13 15:40:21 | 002,047,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-12 19:09:07 | 003,725,512 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-12 09:56:58 | 000,069,827 | ---- | C] () -- C:\Users\Papok\Desktop\116_SAStreamMemFix2.rar [2012-07-11 07:28:16 | 001,950,641 | ---- | C] () -- C:\Users\Papok\Desktop\px_dz.u.nr160.pdf [2012-07-09 19:38:45 | 000,013,036 | ---- | C] () -- C:\Users\Papok\Desktop\dsc07750a.jpg [2012-07-09 19:37:54 | 000,057,883 | ---- | C] () -- C:\Users\Papok\Desktop\dsc07865a.jpg [2012-07-06 12:24:28 | 000,000,639 | ---- | C] () -- C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk [2012-07-03 21:23:52 | 000,000,132 | ---- | C] () -- C:\Users\Papok\AppData\Roaming\Adobe PNG Format CS6 Prefs [2012-07-03 16:37:40 | 019,819,374 | ---- | C] () -- C:\Users\Papok\Desktop\mtasa-1.3.exe [2012-06-26 22:09:28 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth2.dll [2012-06-26 22:09:28 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth1.dll [2012-06-26 22:09:28 | 000,000,231 | ---- | C] () -- C:\Windows\System32\lsprst7.tgz [2012-06-26 22:09:28 | 000,000,217 | ---- | C] () -- C:\Windows\System32\lsprst7.dll [2012-06-26 22:09:28 | 000,000,087 | ---- | C] () -- C:\Windows\System32\ssprs.tgz [2012-06-26 22:09:28 | 000,000,073 | ---- | C] () -- C:\Windows\System32\ssprs.dll [2012-06-26 22:06:53 | 000,001,184 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS4.lnk [2012-06-26 22:06:13 | 000,001,072 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CS4.lnk [2012-06-26 22:04:47 | 000,002,192 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Pixel Bender Toolkit.lnk [2012-06-26 22:02:26 | 000,001,272 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS4.lnk [2012-06-26 22:01:37 | 000,001,084 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS4.lnk [2012-06-25 20:09:01 | 000,302,425 | ---- | C] () -- C:\Users\Papok\AppData\Local\funmoods-speeddial.crx [2012-06-25 20:09:01 | 000,031,470 | ---- | C] () -- C:\Users\Papok\AppData\Local\funmoods.crx [2012-06-25 17:48:54 | 000,000,820 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2012-06-24 19:42:13 | 000,002,592 | ---- | C] () -- C:\Users\Papok\Documents\Register Vegas Pro.htm [2012-06-23 22:53:51 | 000,001,004 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk [2012-06-23 22:52:47 | 000,000,966 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk [2012-06-23 22:51:08 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk [2012-06-23 22:51:01 | 000,001,312 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk [2012-06-23 19:12:11 | 000,000,928 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk [2012-06-19 20:37:47 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat [2012-06-16 00:48:54 | 000,007,168 | ---- | C] () -- C:\Users\Papok\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-06-16 00:48:54 | 000,001,356 | ---- | C] () -- C:\Users\Papok\AppData\Local\d3d9caps.dat [2012-06-15 22:20:44 | 000,101,924 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat [2012-06-15 22:04:07 | 000,001,854 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk [2012-06-15 22:02:32 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk [2012-06-06 14:56:18 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2012-05-04 23:49:44 | 000,138,160 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2012-04-07 15:51:42 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll [2012-04-07 15:41:32 | 000,644,608 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2012-04-07 15:41:31 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll.bak [2012-03-26 20:54:54 | 000,000,083 | ---- | C] () -- C:\Windows\System32\getfilesfb.ini [2012-03-22 00:01:33 | 000,003,072 | ---- | C] () -- C:\Windows\setwintitle.exe [2012-03-10 18:31:20 | 000,271,200 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe [2012-03-09 14:13:17 | 000,000,175 | ---- | C] () -- C:\Windows\wininit.ini [2012-01-25 20:55:12 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe [2012-01-15 09:49:35 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2012-01-15 09:49:35 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2012-01-14 18:08:58 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [2012-01-13 13:09:20 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll [2012-01-13 13:09:20 | 000,200,704 | ---- | C] () -- C:\Windows\PLFSetI.exe [2012-01-13 13:09:20 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini [2012-01-13 13:05:26 | 001,548,099 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll [2011-09-28 18:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 99 bytes -> C:\ProgramData\TEMP:861A898F < End of report >