OTL logfile created on: 2012-07-17 19:32:13 - Run 2 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\chlebik\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,05 Gb Available Physical Memory | 68,45% Memory free 4,34 Gb Paging File | 3,48 Gb Available in Paging File | 80,09% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 20,75 Gb Total Space | 1,11 Gb Free Space | 5,35% Space Free | Partition Type: FAT32 Drive D: | 53,74 Gb Total Space | 39,69 Gb Free Space | 73,87% Space Free | Partition Type: FAT32 Drive F: | 931,51 Gb Total Space | 458,85 Gb Free Space | 49,26% Space Free | Partition Type: NTFS Computer Name: SERWER | User Name: chlebik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-17 16:20:00 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\chlebik\Pulpit\OTL.exe PRC - [2012-06-20 16:16:40 | 000,874,384 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2012-06-20 16:16:40 | 000,800,656 | ---- | M] (Opera Software) -- C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe PRC - [2012-03-07 07:21:36 | 000,077,824 | ---- | M] () -- f:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\ccr\bin\nmz.exe PRC - [2012-01-31 15:02:52 | 007,391,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\Identity Protection\Agent\Bin\AVGIDSAgent.exe PRC - [2012-01-17 20:03:24 | 002,339,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\avgtray.exe PRC - [2011-09-09 03:10:56 | 001,082,208 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\avgnsx.exe PRC - [2011-08-18 01:33:26 | 000,659,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\avgrsx.exe PRC - [2011-05-23 14:13:04 | 000,657,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\avgchsvx.exe PRC - [2011-04-22 14:21:10 | 000,247,728 | ---- | M] (TomTom) -- D:\TomTom HOME 2\TomTomHOMERunner.exe PRC - [2011-04-22 14:21:10 | 000,092,592 | ---- | M] (TomTom) -- D:\TomTom HOME 2\TomTomHOMEService.exe PRC - [2011-02-10 07:55:18 | 001,148,256 | ---- | M] () -- D:\Programy\Identity Protection\Agent\Bin\AVGIDSMonitor.exe PRC - [2011-02-08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Programy\avgwdsvc.exe PRC - [2011-02-01 15:58:00 | 002,853,904 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe PRC - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- D:\Java\JRE6v7\bin\jqs.exe PRC - [2010-04-03 14:05:46 | 000,380,928 | ---- | M] () -- C:\Program Files\Launchy\Launchy.exe PRC - [2010-03-31 08:03:28 | 000,512,000 | ---- | M] (Oracle Corporation) -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\BIN\TNSLSNR.EXE PRC - [2010-03-23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe PRC - [2009-10-03 11:19:26 | 002,131,392 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe PRC - [2009-09-25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe PRC - [2009-09-25 23:31:32 | 000,185,640 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe PRC - [2009-03-29 11:09:50 | 001,220,608 | ---- | M] (Don HO don.h@free.fr) -- C:\Program Files\Notepad++\notepad++.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-01-07 11:04:10 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\WINDOWS\system32\AstSrv.exe PRC - [2008-01-04 13:27:08 | 000,587,096 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe PRC - [2007-05-04 10:39:12 | 000,149,040 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2006-05-14 22:47:48 | 000,344,064 | ---- | M] () -- D:\Crystal Clear\RocketDock\RocketDock.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-07-12 06:58:56 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll MOD - [2012-06-20 16:16:56 | 000,783,360 | ---- | M] () -- C:\Program Files\Opera\gstreamer\gstreamer.dll MOD - [2012-06-20 16:16:56 | 000,316,928 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll MOD - [2012-06-20 16:16:56 | 000,276,480 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll MOD - [2012-06-20 16:16:56 | 000,168,448 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll MOD - [2012-06-20 16:16:56 | 000,099,840 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll MOD - [2012-06-20 16:16:56 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll MOD - [2012-06-20 16:16:56 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll MOD - [2012-06-20 16:16:56 | 000,078,336 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll MOD - [2012-06-20 16:16:56 | 000,076,800 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll MOD - [2012-06-20 16:16:56 | 000,068,608 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll MOD - [2012-06-20 16:16:56 | 000,064,000 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll MOD - [2012-06-20 16:16:56 | 000,046,592 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll MOD - [2012-06-20 16:16:56 | 000,045,568 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gsttypefindfunctions.dll MOD - [2012-06-20 15:56:18 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\dbc413807cb7360b3e26ef3ca1d54f9a\System.Web.ni.dll MOD - [2012-06-20 15:43:18 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll MOD - [2012-06-20 15:43:10 | 001,592,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll MOD - [2012-06-20 15:42:06 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2012-05-20 10:59:50 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll MOD - [2012-05-20 10:58:28 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\016444dfc5f7e3d11c776f2fbc7a4594\Accessibility.ni.dll MOD - [2012-05-20 10:11:56 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll MOD - [2012-05-20 10:09:38 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll MOD - [2012-05-20 10:09:28 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll MOD - [2012-03-07 07:21:36 | 000,077,824 | ---- | M] () -- f:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\ccr\bin\nmz.exe MOD - [2011-05-24 22:58:28 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll MOD - [2011-03-14 14:20:34 | 000,430,080 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll MOD - [2011-02-10 07:55:18 | 001,148,256 | ---- | M] () -- D:\Programy\Identity Protection\Agent\Bin\AVGIDSMonitor.exe MOD - [2010-04-03 22:40:14 | 000,081,920 | ---- | M] () -- C:\Program Files\Launchy\plugins\calcy.dll MOD - [2010-04-03 14:06:08 | 000,024,064 | ---- | M] () -- C:\Program Files\Launchy\plugins\gcalc.dll MOD - [2010-04-03 14:06:02 | 000,094,208 | ---- | M] () -- C:\Program Files\Launchy\plugins\runner.dll MOD - [2010-04-03 14:05:54 | 000,122,880 | ---- | M] () -- C:\Program Files\Launchy\plugins\weby.dll MOD - [2010-04-03 14:05:46 | 000,380,928 | ---- | M] () -- C:\Program Files\Launchy\Launchy.exe MOD - [2010-04-03 14:05:32 | 000,057,344 | ---- | M] () -- C:\Program Files\Launchy\plugins\verby.dll MOD - [2010-04-03 14:05:22 | 000,090,112 | ---- | M] () -- C:\Program Files\Launchy\plugins\controly.dll MOD - [2010-03-23 13:26:48 | 000,201,512 | ---- | M] () -- C:\WINDOWS\system32\vpnapi.dll MOD - [2010-03-16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll MOD - [2010-02-28 04:05:18 | 000,086,016 | ---- | M] () -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\BIN\oraperf11.dll MOD - [2009-12-17 01:18:48 | 000,233,472 | ---- | M] () -- C:\Program Files\Launchy\imageformats\qmng4.dll MOD - [2009-12-16 23:13:02 | 008,314,880 | ---- | M] () -- C:\Program Files\Launchy\QtGui4.dll MOD - [2009-12-16 22:56:22 | 000,712,704 | ---- | M] () -- C:\Program Files\Launchy\QtNetwork4.dll MOD - [2009-12-16 22:54:46 | 002,236,416 | ---- | M] () -- C:\Program Files\Launchy\QtCore4.dll MOD - [2008-11-11 19:48:40 | 000,074,240 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppNetNote.dll MOD - [2008-09-06 16:15:10 | 000,178,688 | ---- | M] () -- C:\Program Files\Notepad++\plugins\FTP_synchronize.dll MOD - [2008-09-06 14:51:16 | 000,014,336 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppExport.dll MOD - [2008-04-14 22:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2008-01-12 00:08:22 | 000,094,720 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll MOD - [2007-12-27 11:13:16 | 000,525,664 | ---- | M] () -- C:\Program Files\Lavasoft\Ad-Aware 2007\Update.dll MOD - [2007-11-14 11:11:46 | 000,106,496 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libiax2.dll MOD - [2007-11-14 11:11:42 | 000,061,440 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libjb.dll MOD - [2007-10-25 12:51:16 | 000,198,656 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libcurl.dll MOD - [2007-08-05 03:10:52 | 000,250,368 | ---- | M] () -- C:\Program Files\Notepad++\plugins\Config\tidy\libTidy.dll MOD - [2007-02-16 17:40:42 | 005,521,408 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll MOD - [2007-02-16 17:40:40 | 001,466,368 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll MOD - [2006-05-14 22:47:48 | 000,344,064 | ---- | M] () -- D:\Crystal Clear\RocketDock\RocketDock.exe MOD - [2006-04-25 01:40:58 | 000,003,584 | ---- | M] () -- D:\Crystal Clear\RocketDock\MouseHook2.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-07-12 12:51:30 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-07-06 13:22:44 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-06-05 15:36:12 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-03-07 07:21:36 | 000,077,824 | ---- | M] () [Auto | Running] -- f:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\ccr\bin\nmz.exe -- (OracleOraDb11g_home2ConfigurationManager) SRV - [2012-01-31 15:02:52 | 007,391,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- D:\Programy\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent) SRV - [2011-04-22 14:21:10 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- D:\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService) SRV - [2011-02-08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- D:\Programy\avgwdsvc.exe -- (avgwd) SRV - [2011-02-01 15:58:00 | 002,853,904 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware) SRV - [2010-12-08 14:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- D:\Java\JRE6v7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2010-04-02 08:46:58 | 106,487,808 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- f:\oracledb\app\chlebik\product\11.2.0\dbhome_1\bin\ORACLE.EXE -- (OracleServiceORACLE) SRV - [2010-04-02 08:38:42 | 000,049,152 | ---- | M] () [Disabled | Stopped] -- f:\oracledb\app\chlebik\product\11.2.0\dbhome_1\Bin\extjob.exe -- (OracleJobSchedulerORACLE) SRV - [2010-04-01 12:39:54 | 000,069,632 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\bin\omtsreco.exe -- (OracleMTSRecoveryService) SRV - [2010-03-31 08:03:28 | 000,512,000 | ---- | M] (Oracle Corporation) [Auto | Running] -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\BIN\TNSLSNR.exe -- (OracleOraDb11g_home2TNSListener) SRV - [2010-03-23 13:19:32 | 001,528,616 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND) SRV - [2010-03-02 01:47:18 | 000,049,152 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\BIN\nmesrvc.exe -- (OracleDBConsoleoracle) SRV - [2010-02-28 03:26:08 | 000,038,400 | ---- | M] (Oracle Corporation) [On_Demand | Stopped] -- F:\OracleDB\app\chlebik\product\11.2.0\dbhome_1\bin\OraClrAgnt.exe -- (OracleOraDb11g_home2ClrAgent) SRV - [2009-09-25 23:32:18 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service) SRV - [2008-01-07 11:04:10 | 000,057,344 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\\AstSrv.exe -- (Ast Service) SRV - [2008-01-04 13:27:08 | 000,587,096 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -- (aawservice) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a4dmepur) DRV - [2011-07-29 13:54:56 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv) DRV - [2011-07-29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv) DRV - [2011-05-27 19:05:44 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2011-05-25 00:21:44 | 006,554,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2011-04-05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2011-03-30 14:46:12 | 000,101,392 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService) DRV - [2011-03-18 18:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2011-03-16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86) DRV - [2011-03-01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-02-22 08:13:02 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\AVGIDSEH.sys -- (AVGIDSEH) DRV - [2011-02-10 07:53:54 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2011-02-10 07:53:52 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2011-01-07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-09-19 07:57:36 | 000,072,808 | ---- | M] (Emsi Software GmbH) [File_System | On_Demand | Stopped] -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys -- (a2acc) DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-06-28 01:21:36 | 000,138,016 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK) DRV - [2010-05-17 02:04:06 | 000,101,904 | R--- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2010-03-23 13:15:36 | 000,308,859 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA) DRV - [2009-11-30 12:27:36 | 000,123,280 | ---- | M] (Sun Microsystems, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxDrv.sys -- (VBoxDrv) DRV - [2009-11-30 12:27:36 | 000,110,992 | ---- | M] (Sun Microsystems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt) DRV - [2009-11-30 12:27:34 | 000,100,048 | ---- | M] (Sun Microsystems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV - [2009-11-30 12:27:34 | 000,041,616 | ---- | M] (Sun Microsystems, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon) DRV - [2008-11-16 18:39:44 | 000,131,984 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE) DRV - [2008-10-31 23:26:50 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-28 17:19:28 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus) DRV - [2008-01-19 23:08:48 | 000,014,656 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2007-12-20 18:00:06 | 004,637,696 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-11-14 19:05:16 | 000,394,952 | ---- | M] (Zone Labs, LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant) DRV - [2007-01-18 20:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA) DRV - [2006-11-22 08:01:00 | 000,250,496 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2006-11-21 19:27:58 | 000,043,648 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\jraid.sys -- (JRAID) DRV - [2006-02-08 04:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\JGOGO.sys -- (JGOGO) DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2002-09-16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{93DD7DB0-DF21-48EF-9BB4-728F0F58F25E}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: D:\Java\JRE6v7\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\jqs@sun.com: D:\Java\JRE6v7\lib\deploy\jqs\ff [2009-03-18 20:07:22 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: D:\Programy\Firefox4\ [2011-05-28 10:16:56 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-27 12:42:24 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2008-01-19 22:54:02 | 000,000,000 | ---D | M] [2008-06-24 01:30:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Extensions [2011-07-16 11:35:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Extensions\home2@tomtom.com [2012-06-20 15:37:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Firefox\Profiles\3j1k1v3n.default\extensions [2010-04-27 07:48:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Firefox\Profiles\3j1k1v3n.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-12-30 11:45:26 | 000,000,000 | ---D | M] (Html Validator) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Firefox\Profiles\3j1k1v3n.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e} [2011-01-09 10:05:10 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\Firefox\Profiles\3j1k1v3n.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} [2011-12-05 19:18:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-05-31 13:10:00 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-07-06 13:22:46 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2010-11-12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2012-07-04 17:21:58 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [2012-07-04 17:21:58 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-07-04 17:21:58 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-07-04 17:21:58 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-07-04 17:21:58 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-07-04 17:21:58 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Yahoo! UK & Ireland (Enabled) CHR - default_search_provider: search_url = http://uk.search.yahoo.com/search?ei={inputEncoding}&fr=crmas&p={searchTerms} CHR - default_search_provider: suggest_url = http://uk-sayt.ff.search.yahoo.com/gossip-uk-sayt?output=fxjson&command={searchTerms} CHR - homepage: http://start.facemoods.com/?a=ddr CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.142\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Java Deployment Toolkit 6.0.230.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U23 (Enabled) = D:\Java\JRE6v7\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.142\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\18.0.1025.142\pdf.dll CHR - plugin: AVG Internet Security (Enabled) = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\plugins\npgoogletalk.dll CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\chlebik\Dane aplikacji\Mozilla\plugins\npgtpo3dautoplugin.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.69\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: Facemoods = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\ CHR - Extension: Facemoods = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.6_0\ CHR - Extension: AVG Safe Search = C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\ O1 HOSTS File: ([2012-04-01 10:01:20 | 000,001,053 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 Desktop O1 - Hosts: 192.168.0.236 extensa O1 - Hosts: 192.168.0.171 solaris O1 - Hosts: 192.168.0.171 teenlife.localhost O1 - Hosts: 192.168.0.171 hq.reclity.localhost O1 - Hosts: 192.168.0.171 reclity.localhost O1 - Hosts: 192.168.0.171 test.reclity.localhost O1 - Hosts: 192.168.66.101 mychesslog.localhost O1 - Hosts: 192.168.66.101 buddy.localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Programy\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (IE Developer Toolbar BHO) - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Java\JRE6v7\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Java\JRE6v7\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\JMRaidSetup.exe (Gigabyte Technology Corp.) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVG_TRAY] D:\Programy\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe () O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC) O4 - HKLM..\Run: [MP10_EnsureFileVer] C:\WINDOWS\inf\unregmp2.exe (Microsoft Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O4 - HKCU..\Run: [RocketDock] D:\Crystal Clear\RocketDock\RocketDock.exe () O4 - HKCU..\Run: [TomTomHOME.exe] D:\TomTom HOME 2\TomTomHOMERunner.exe (TomTom) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Launchy.lnk = C:\Program Files\Launchy\Launchy.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll (Microsoft Corporation) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O15 - HKCU\..Trusted Domains: polbank24.pl ([www] https in Zaufane witryny) O16 - DPF: {00000161-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/msaudio.cab (Reg Error: Key error.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 94.75.115.220 212.76.34.49 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{174690CB-02AE-4A6C-B96F-4281E851787E}: NameServer = 212.76.34.49 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{92C01F1F-8402-4FCC-81D8-6CEFC62938B2}: DhcpNameServer = 94.75.115.220 212.76.34.49 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Programy\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: O24 - Desktop BackupWallPaper: O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-01-19 21:06:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2012-07-17 16:14:02 | 000,000,067 | ---- | M] () - F:\autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (lsdelete) O34 - HKLM BootExecute: (D:\Programy\avgchsvx.exe /sync) O34 - HKLM BootExecute: (D:\Programy\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-17 19:18:28 | 000,000,000 | ---D | C] -- C:\_OTL [2012-07-17 16:19:59 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\chlebik\Pulpit\OTL.exe [2012-07-17 15:37:06 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012-07-17 15:37:06 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012-07-17 15:37:06 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012-07-17 15:37:06 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012-07-17 15:37:04 | 000,000,000 | --SD | C] -- C:\ComboFix [2012-07-17 15:36:54 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-07-17 15:36:51 | 000,000,000 | --SD | C] -- C:\Documents and Settings\chlebik\Moje dokumenty\Moje wideo [2012-07-17 15:36:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012-07-17 15:35:52 | 004,579,127 | R--- | C] (Swearware) -- C:\Documents and Settings\chlebik\Pulpit\ComboFix.exe [2012-07-17 15:33:54 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2012-07-17 00:20:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\chlebik\Recent [2012-07-13 12:05:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\chlebik\Dane aplikacji\Pro Cycling Manager 2008 - Demo [2012-07-12 12:51:23 | 009,226,440 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2012-06-20 15:36:06 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2008-09-27 03:19:50 | 001,462,272 | ---- | C] (CPUID) -- C:\Program Files\cpuz.exe [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-17 19:28:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-07-17 19:26:26 | 000,624,883 | ---- | M] () -- C:\Documents and Settings\chlebik\Pulpit\adwcleaner.exe [2012-07-17 16:20:00 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\chlebik\Pulpit\OTL.exe [2012-07-17 16:07:14 | 000,007,680 | ---- | M] () -- C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-17 15:36:02 | 004,579,127 | R--- | M] (Swearware) -- C:\Documents and Settings\chlebik\Pulpit\ComboFix.exe [2012-07-17 14:51:02 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-07-17 13:20:02 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-602162358-1844237615-725345543-1003Core1cd627b1c8f8b62.job [2012-07-16 09:43:38 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\chlebik\Dane aplikacji\winscp.rnd [2012-07-16 09:20:12 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\PUTTY.RND [2012-07-14 09:34:56 | 000,002,262 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-07-13 17:44:52 | 000,003,193 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2012-07-13 17:44:52 | 000,000,080 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2012-07-12 12:51:28 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-07-12 12:51:28 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-07-12 12:51:24 | 009,226,440 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe [2012-07-11 08:27:54 | 001,604,864 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-06-25 07:17:24 | 000,001,984 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-06-20 15:42:16 | 000,496,642 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-06-20 15:42:16 | 000,438,714 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-06-20 15:42:16 | 000,085,838 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-06-20 15:42:16 | 000,069,490 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-17 19:26:24 | 000,624,883 | ---- | C] () -- C:\Documents and Settings\chlebik\Pulpit\adwcleaner.exe [2012-07-17 15:37:06 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2012-07-17 15:37:06 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012-07-17 15:37:06 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012-07-17 15:37:06 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012-07-17 15:37:06 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012-07-15 13:15:16 | 000,001,088 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-602162358-1844237615-725345543-1003Core1cd627b1c8f8b62.job [2012-05-22 18:25:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2012-05-22 18:25:45 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2012-05-22 18:25:45 | 000,233,765 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2012-05-22 18:25:45 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2012-05-19 13:36:46 | 002,469,760 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe [2012-05-19 13:36:46 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe [2012-05-19 13:36:46 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll [2012-05-19 13:36:46 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys [2012-05-19 13:36:46 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys [2012-05-16 11:49:32 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-05-04 12:17:47 | 000,004,934 | ---- | C] () -- C:\WINDOWS\DiabUnin.dat [2012-04-01 11:53:30 | 000,007,256 | ---- | C] () -- C:\Documents and Settings\chlebik\.recently-used.xbel [2012-02-09 19:47:49 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\€AstInfo.dat [2012-02-09 19:47:33 | 000,164,864 | ---- | C] () -- C:\WINDOWS\System32\patchw32.dll [2012-02-09 19:47:33 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\MSWTHK32.DLL [2012-02-09 19:47:33 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\IMPLODE.DLL [2012-02-09 19:47:33 | 000,003,360 | ---- | C] () -- C:\WINDOWS\System32\MSWTHK16.DLL [2012-02-09 19:47:32 | 000,158,720 | ---- | C] () -- C:\WINDOWS\System32\LFCMP61N.DLL [2012-02-09 19:47:32 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\Lfpng61n.dll [2012-02-09 19:47:32 | 000,043,008 | ---- | C] () -- C:\WINDOWS\System32\LTFIL61N.DLL [2012-01-06 19:08:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2011-11-01 11:15:15 | 000,060,944 | ---- | C] () -- C:\Documents and Settings\chlebik\.jose.user.preferences [2011-11-01 10:41:30 | 000,000,152 | ---- | C] () -- C:\WINDOWS\System32\sysplog2.dll [2011-11-01 10:41:19 | 000,000,152 | ---- | C] () -- C:\WINDOWS\System32\sysplog.dll [2011-11-01 10:40:28 | 000,000,428 | ---- | C] () -- C:\Program Files\Chessimo.lnk [2011-06-24 16:17:25 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-05-28 15:34:33 | 000,000,038 | ---- | C] () -- C:\WINDOWS\ChssBase.ini [2011-05-24 23:44:26 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll [2011-01-06 11:08:21 | 000,005,504 | ---- | C] () -- C:\Documents and Settings\chlebik\buw32.lc [2010-12-02 20:11:30 | 000,000,149 | ---- | C] () -- C:\Documents and Settings\chlebik\.Xauthority [2009-03-31 00:21:57 | 000,000,018 | ---- | C] () -- C:\Documents and Settings\chlebik\.javafx_ping_sent [2008-09-27 10:53:18 | 000,007,680 | ---- | C] () -- C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-09-27 03:19:50 | 000,000,168 | ---- | C] () -- C:\Program Files\cpuz.ini [2008-06-22 12:37:46 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\chlebik\Dane aplikacji\winscp.rnd [2008-06-05 04:13:01 | 000,000,146 | ---- | C] () -- C:\Documents and Settings\chlebik\.appletviewer [2008-05-24 03:23:45 | 000,000,120 | ---- | C] () -- C:\Documents and Settings\chlebik\.asadminpass [2008-05-24 03:23:36 | 000,003,867 | ---- | C] () -- C:\Documents and Settings\chlebik\.asadmintruststore [2008-05-08 02:07:53 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\chlebik\.zs [2008-05-05 16:51:55 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat [2008-05-02 03:42:56 | 000,000,178 | ---- | C] () -- C:\Documents and Settings\chlebik\.gemrc [2008-01-19 23:03:22 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\chlebik\Ustawienia lokalne\Dane aplikacji\PUTTY.RND < End of report >