OTL logfile created on: 7/21/2012 12:08:56 PM - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\jarex\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3.79 Gb Total Physical Memory | 1.85 Gb Available Physical Memory | 48.86% Memory free 7.59 Gb Paging File | 5.25 Gb Available in Paging File | 69.15% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 274.59 Gb Total Space | 134.33 Gb Free Space | 48.92% Space Free | Partition Type: NTFS Drive D: | 183.07 Gb Total Space | 115.45 Gb Free Space | 63.07% Space Free | Partition Type: NTFS Computer Name: JAREX-MSI | User Name: jarex | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012/07/21 11:05:30 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\jarex\Downloads\OTL.exe PRC - [2012/07/02 20:12:39 | 001,022,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe PRC - [2012/06/27 12:29:26 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe PRC - [2011/09/27 05:45:40 | 000,646,232 | ---- | M] () -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe PRC - [2011/02/15 18:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) -- C:\Program Files (x86)\ZxPreyIn\platform\windows\cronsvc.exe PRC - [2011/01/17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe PRC - [2011/01/17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin PRC - [2010/11/25 13:06:26 | 000,082,432 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen7.exe PRC - [2010/10/27 20:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010/08/25 12:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac PRC - [2010/06/18 03:52:14 | 002,486,272 | ---- | M] (Micro-Star International Co., Ltd.) -- C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe PRC - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2009/11/04 07:45:46 | 002,320,920 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2009/11/04 07:45:44 | 000,268,824 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2009/10/13 12:25:54 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2009/10/13 12:25:30 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe PRC - [2009/07/10 00:54:42 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) -- C:\Program Files (x86)\System Control Manager\MSIService.exe PRC - [2006/09/28 11:20:00 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012/07/10 06:09:00 | 000,438,296 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll MOD - [2012/07/10 06:08:59 | 003,972,120 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll MOD - [2012/07/10 06:07:39 | 000,554,520 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\libglesv2.dll MOD - [2012/07/10 06:07:37 | 000,117,784 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\libegl.dll MOD - [2012/07/10 06:07:22 | 000,140,328 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\avutil-51.dll MOD - [2012/07/10 06:07:21 | 000,262,184 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\avformat-54.dll MOD - [2012/07/10 06:07:19 | 002,386,984 | ---- | M] () -- C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\avcodec-54.dll MOD - [2012/01/08 15:41:12 | 000,093,696 | ---- | M] () -- C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll MOD - [2011/09/27 05:45:40 | 000,646,232 | ---- | M] () -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe MOD - [2011/04/01 10:25:24 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll MOD - [2011/03/17 01:11:16 | 004,297,568 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf MOD - [2010/11/25 13:08:50 | 000,054,784 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_show_image_plugin.o2x MOD - [2010/11/25 13:08:40 | 000,146,432 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_updater.o2x MOD - [2010/11/25 13:08:26 | 000,051,712 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_sms_era.o2x MOD - [2010/11/25 13:08:12 | 000,069,120 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_sms_plus.o2x MOD - [2010/11/25 13:08:08 | 000,136,704 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_sms.o2x MOD - [2010/11/25 13:08:02 | 000,111,616 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\screen_sender.o2x MOD - [2010/11/25 13:07:30 | 000,498,688 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_gadu.o2x MOD - [2010/11/25 13:06:44 | 001,992,704 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlenofonclientNG.o2x MOD - [2010/11/25 13:06:26 | 000,082,432 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen7.exe MOD - [2010/11/25 13:06:22 | 000,115,712 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_picture.o2x MOD - [2010/11/25 13:05:46 | 000,180,736 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_protocol_plugin_p2p_file.o2x MOD - [2010/11/25 13:05:36 | 000,962,560 | ---- | M] () -- C:\Program Files (x86)\Tlen7\plugins\tlen_protocol_plugin_p2p.o2x MOD - [2010/11/25 13:03:22 | 000,050,688 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_message_logger.dll MOD - [2010/11/25 13:03:20 | 001,894,400 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_application.dll MOD - [2010/11/25 13:03:02 | 000,068,608 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_profiles.dll MOD - [2010/11/25 13:02:56 | 000,087,552 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_editor.dll MOD - [2010/11/25 13:02:50 | 000,410,624 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_main_window.dll MOD - [2010/11/25 13:02:30 | 000,045,568 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gemius.dll MOD - [2010/11/25 13:02:26 | 000,382,464 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_settings_manager.dll MOD - [2010/11/25 13:02:10 | 000,295,424 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_video.dll MOD - [2010/11/25 13:01:44 | 000,045,568 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_language.dll MOD - [2010/11/25 13:01:40 | 000,055,808 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_shortcuts_tab.dll MOD - [2010/11/25 13:01:36 | 000,123,904 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_roster_filters_tab.dll MOD - [2010/11/25 13:01:26 | 000,097,280 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_notifications_tab.dll MOD - [2010/11/25 13:01:20 | 000,626,688 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_plugin.dll MOD - [2010/11/25 13:00:56 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_extensions.dll MOD - [2010/11/25 13:00:52 | 000,117,760 | ---- | M] () -- C:\Program Files (x86)\Tlen7\quazip.dll MOD - [2010/11/25 13:00:40 | 000,131,584 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_status_window.dll MOD - [2010/11/25 13:00:34 | 000,069,632 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_login_window.dll MOD - [2010/11/25 13:00:24 | 000,109,568 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_registration_wizard.dll MOD - [2010/11/25 13:00:18 | 000,608,256 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_archive_importer_plugin.dll MOD - [2010/11/25 12:59:58 | 000,173,056 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_archive.dll MOD - [2010/11/25 12:59:52 | 000,121,856 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_pubdir_search.dll MOD - [2010/11/25 12:59:46 | 000,224,256 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_notification.dll MOD - [2010/11/25 12:59:28 | 000,056,320 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_tray.dll MOD - [2010/11/25 12:59:20 | 000,137,216 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_accounts_tab.dll MOD - [2010/11/25 12:59:16 | 000,276,992 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_roster.dll MOD - [2010/11/25 12:58:46 | 000,196,608 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_roster_filter.dll MOD - [2010/11/25 12:58:40 | 000,069,632 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_tooltip.dll MOD - [2010/11/25 12:58:38 | 000,098,304 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_buddy_dialog.dll MOD - [2010/11/25 12:58:32 | 000,126,976 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_avatar.dll MOD - [2010/11/25 12:58:06 | 001,232,896 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_protocol_plugin.dll MOD - [2010/11/25 12:56:10 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_transfers.dll MOD - [2010/11/25 12:55:58 | 000,155,136 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_chat_manager.dll MOD - [2010/11/25 12:55:44 | 000,555,008 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_chat_window.dll MOD - [2010/11/25 12:55:02 | 000,074,240 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_archive.dll MOD - [2010/11/25 12:54:58 | 000,147,456 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_archive_module.dll MOD - [2010/11/25 12:54:48 | 000,046,592 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_archive_backend.dll MOD - [2010/11/25 12:54:44 | 000,406,016 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_db_module.dll MOD - [2010/11/25 12:54:38 | 000,041,984 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_shortcuts.dll MOD - [2010/11/25 12:54:34 | 000,051,712 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_context_menu.dll MOD - [2010/11/25 12:54:28 | 000,936,960 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_uigenerator.dll MOD - [2010/11/25 12:54:18 | 000,076,288 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_utils.dll MOD - [2010/11/25 12:54:12 | 000,062,464 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_message_box.dll MOD - [2010/11/25 12:54:08 | 000,236,544 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_gui_widgets.dll MOD - [2010/11/25 12:53:26 | 000,109,568 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_audio.dll MOD - [2010/11/25 12:53:14 | 000,224,768 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_roster.dll MOD - [2010/11/25 12:53:10 | 000,459,776 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_plugin.dll MOD - [2010/11/25 12:52:32 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_network.dll MOD - [2010/11/25 12:52:20 | 000,162,816 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_settings.dll MOD - [2010/11/25 12:52:10 | 000,272,896 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_data.dll MOD - [2010/11/25 12:51:44 | 000,045,568 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_xml.dll MOD - [2010/11/25 12:51:40 | 000,052,224 | ---- | M] () -- C:\Program Files (x86)\Tlen7\tlen_core.dll MOD - [2010/11/10 12:05:38 | 002,283,008 | ---- | M] () -- C:\Program Files (x86)\Tlen7\QtCore4.dll MOD - [2010/11/03 07:04:52 | 000,194,560 | ---- | M] () -- C:\Program Files (x86)\Tlen7\phonon_backend\phonon_ds94.dll MOD - [2010/11/03 07:02:20 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Tlen7\imageformats\qico4.dll MOD - [2010/11/03 07:02:14 | 000,284,672 | ---- | M] () -- C:\Program Files (x86)\Tlen7\imageformats\qtiff4.dll MOD - [2010/11/03 07:01:50 | 000,220,672 | ---- | M] () -- C:\Program Files (x86)\Tlen7\imageformats\qmng4.dll MOD - [2010/11/03 07:01:36 | 000,026,624 | ---- | M] () -- C:\Program Files (x86)\Tlen7\imageformats\qgif4.dll MOD - [2010/11/03 07:01:28 | 000,196,096 | ---- | M] () -- C:\Program Files (x86)\Tlen7\imageformats\qjpeg4.dll MOD - [2010/11/03 06:54:24 | 010,836,992 | ---- | M] () -- C:\Program Files (x86)\Tlen7\QtWebKit4.dll MOD - [2010/11/03 04:28:24 | 000,266,752 | ---- | M] () -- C:\Program Files (x86)\Tlen7\phonon4.dll MOD - [2010/11/03 04:14:44 | 008,166,912 | ---- | M] () -- C:\Program Files (x86)\Tlen7\QtGui4.dll MOD - [2010/11/03 04:00:26 | 000,914,432 | ---- | M] () -- C:\Program Files (x86)\Tlen7\QtNetwork4.dll MOD - [2010/11/03 03:58:56 | 000,339,968 | ---- | M] () -- C:\Program Files (x86)\Tlen7\QtXml4.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2012/03/11 23:13:23 | 002,815,496 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent) SRV:[b]64bit:[/b] - [2011/09/08 18:48:36 | 006,583,160 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen) SRV:[b]64bit:[/b] - [2011/09/08 18:48:36 | 000,528,760 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen) SRV:[b]64bit:[/b] - [2010/12/22 21:47:08 | 001,436,424 | ---- | M] (Acresso Software Inc.) [On_Demand | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2010/05/11 16:16:12 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:[b]64bit:[/b] - [2010/04/07 15:04:24 | 000,127,800 | ---- | M] (HP) [Auto | Running] -- C:\Windows\SysNative\HPSIsvc.exe -- (HPSIService) SRV:[b]64bit:[/b] - [2010/01/26 02:19:54 | 001,029,896 | ---- | M] (Motorola, Inc.) [On_Demand | Running] -- C:\Program Files\Motorola\Bluetooth\audiosrv.exe -- (Bluetooth Media Service) SRV:[b]64bit:[/b] - [2010/01/25 22:08:50 | 004,154,120 | ---- | M] (Motorola, Inc.) [On_Demand | Running] -- C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe -- (Bluetooth Device Manager) SRV:[b]64bit:[/b] - [2010/01/19 18:26:58 | 001,420,560 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R) SRV:[b]64bit:[/b] - [2010/01/19 18:05:22 | 000,831,760 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R) SRV:[b]64bit:[/b] - [2009/12/21 23:41:38 | 000,637,192 | ---- | M] (Motorola, Inc.) [Auto | Running] -- C:\Program Files\Motorola\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service) SRV:[b]64bit:[/b] - [2009/08/06 15:17:46 | 000,118,672 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost) SRV:[b]64bit:[/b] - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009/03/27 12:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio) SRV:[b]64bit:[/b] - [2008/07/29 14:20:28 | 004,737,024 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe -- (msvsmon90) SRV - [2012/07/10 20:14:27 | 004,419,392 | ---- | M] () [Auto | Running] -- c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll -- (Akamai) SRV - [2012/07/09 23:46:49 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012/06/27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012/06/07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012/02/26 16:42:28 | 000,632,320 | ---- | M] (FileZilla Project) [On_Demand | Stopped] -- C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe -- (FileZilla Server) SRV - [2011/02/15 18:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) [Auto | Running] -- C:\Program Files (x86)\ZxPreyIn\platform\windows\cronsvc.exe -- (CronService) SRV - [2010/08/19 02:07:50 | 000,647,680 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009/11/04 07:45:46 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R) SRV - [2009/11/04 07:45:44 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R) SRV - [2009/10/13 12:25:30 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel(R) SRV - [2009/07/10 00:54:42 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\System Control Manager\MSIService.exe -- (Micro Star SCM) SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2007/05/31 10:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2007/05/31 10:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2006/09/28 11:20:00 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\msi\msi Software Install\MGHwCtrl.sys -- (MGHwCtrl) DRV:[b]64bit:[/b] - [2012/03/11 23:13:38 | 000,022,696 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd) DRV:[b]64bit:[/b] - [2012/03/01 08:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2011/09/08 18:49:36 | 000,013,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor) DRV:[b]64bit:[/b] - [2011/09/08 18:49:24 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid) DRV:[b]64bit:[/b] - [2011/03/11 08:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011/03/11 08:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2010/12/23 16:51:58 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:[b]64bit:[/b] - [2010/12/23 16:51:58 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:[b]64bit:[/b] - [2010/05/11 16:46:18 | 006,790,656 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:[b]64bit:[/b] - [2010/05/11 15:25:56 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd) DRV:[b]64bit:[/b] - [2010/05/11 15:24:20 | 000,221,184 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:[b]64bit:[/b] - [2010/03/06 01:41:05 | 000,020,480 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mvusbews.sys -- (mvusbews) DRV:[b]64bit:[/b] - [2010/02/10 09:01:58 | 000,158,720 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd) DRV:[b]64bit:[/b] - [2010/01/27 01:53:48 | 000,461,312 | ---- | M] (Motorola, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmusb.sys -- (BTMUSB) DRV:[b]64bit:[/b] - [2010/01/18 14:37:56 | 000,128,512 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2010/01/14 01:44:58 | 000,034,048 | ---- | M] (Motorola, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmhid.sys -- (BTMHID) DRV:[b]64bit:[/b] - [2010/01/13 02:37:18 | 007,675,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETw5s64.sys -- (NETw5s64) Sterownik karty Intel(R) DRV:[b]64bit:[/b] - [2010/01/07 21:51:38 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R) DRV:[b]64bit:[/b] - [2009/12/18 00:25:17 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO) DRV:[b]64bit:[/b] - [2009/12/14 21:08:00 | 000,051,200 | ---- | M] (Motorola, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmcom.sys -- (BTMCOM) DRV:[b]64bit:[/b] - [2009/12/02 09:01:24 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService) DRV:[b]64bit:[/b] - [2009/11/06 04:22:02 | 000,154,112 | ---- | M] (AnyDATA.NET INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\adusbser.sys -- (adusbser) DRV:[b]64bit:[/b] - [2009/10/13 12:16:40 | 000,409,624 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:[b]64bit:[/b] - [2009/09/17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R) DRV:[b]64bit:[/b] - [2009/09/02 19:58:08 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR) DRV:[b]64bit:[/b] - [2009/08/20 18:05:06 | 000,239,616 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2009/08/09 23:25:45 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone) DRV:[b]64bit:[/b] - [2009/08/06 15:17:34 | 000,013,784 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB) DRV:[b]64bit:[/b] - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009/07/14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:[b]64bit:[/b] - [2009/06/10 23:01:14 | 001,227,776 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SmSerl64.sys -- (smserial) DRV:[b]64bit:[/b] - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009/06/09 05:34:08 | 001,208,320 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem) DRV:[b]64bit:[/b] - [2009/05/26 23:32:04 | 000,019,968 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter) DRV:[b]64bit:[/b] - [2009/03/18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV:[b]64bit:[/b] - [2007/11/15 21:33:58 | 000,528,256 | ---- | M] (Syntek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\StkTMini.sys -- (StkTMini) DRV:[b]64bit:[/b] - [2007/02/16 21:12:36 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter) DRV - [2009/09/02 19:58:08 | 000,225,280 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR) DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {AF2DA42E-ADAF-4C17-94E6-152DA775F576} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{AF2DA42E-ADAF-4C17-94E6-152DA775F576}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSITDF&pc=MAMI&src=IE-SearchBox IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {9EECF069-EF54-4AF6-A364-68CF8F39EBB5} IE - HKLM\..\SearchScopes\{9EECF069-EF54-4AF6-A364-68CF8F39EBB5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSITDF&pc=MAMI&src=IE-SearchBox IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.megawypas.pl/index.php [binary data] IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://msi.msn.com IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\..\SearchScopes,DefaultScope = {9EECF069-EF54-4AF6-A364-68CF8F39EBB5} IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421; [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.suggest.enabled: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.7 FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.2.2 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.4.1 FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2 FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9 FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.4.6 FF - user.js - File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\jarex\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\jarex\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox12\components [2012/07/09 23:46:54 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox12\plugins [2012/05/08 22:28:22 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox12\components [2012/07/09 23:46:54 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox12\plugins [2012/05/08 22:28:22 | 000,000,000 | ---D | M] [2010/12/19 01:46:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jarex\AppData\Roaming\mozilla\Extensions [2012/07/06 22:40:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions [2012/02/02 15:20:11 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2011/02/24 12:18:53 | 000,000,000 | ---D | M] (Web Developer) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} [2012/02/18 10:55:02 | 000,000,000 | ---D | M] (New Tab King) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions\{FC5BAC7D-D696-4ba6-B913-CF8F000C33DF} [2012/07/03 23:25:06 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions\firefox@ghostery.com [2012/06/14 18:01:30 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\jarex\AppData\Roaming\mozilla\Firefox\Profiles\1ert9hqy.default\extensions\inspector@mozilla.org [2010/03/29 12:58:14 | 000,001,871 | ---- | M] () -- C:\Users\jarex\AppData\Roaming\Mozilla\Firefox\Profiles\1ert9hqy.default\searchplugins\madaras-rapidsearch.xml [2011/08/25 09:49:44 | 000,028,993 | ---- | M] () (No name found) -- C:\USERS\JAREX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1ERT9HQY.DEFAULT\EXTENSIONS\{75CEEE46-9B64-46F8-94BF-54012DE155F0}.XPI [2012/07/18 00:51:06 | 001,611,859 | ---- | M] () (No name found) -- C:\USERS\JAREX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\1ERT9HQY.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.google.com/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: http://www.google.com/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\jarex\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\jarex\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: PDF-XChange Viewer (Enabled) = C:\Program Files (x86)\Mozilla Firefox12\plugins\npPDFXCviewNPPlugin.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: WacomTabletPlugin (Enabled) = C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll CHR - plugin: Wacom Dynamic Link Library (Enabled) = C:\Program Files (x86)\TabletPlugins\npwacom.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll CHR - Extension: YouTube = C:\Users\jarex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Adblock Plus (Beta) = C:\Users\jarex\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\ CHR - Extension: Szukaj w Google = C:\Users\jarex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Gmail = C:\Users\jarex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2011/07/29 11:57:18 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [BTMTrayAgent] C:\Program Files\Motorola\Bluetooth\btmshell.dll (Motorola, Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\windows\SysNative\hkcmd.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\windows\SysNative\igfxtray.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\windows\SysNative\igfxpers.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:[b]64bit:[/b] - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdcBase.exe (Microsoft Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" File not found O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe () O4 - HKLM..\Run: [FileZilla Server Interface] C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe (FileZilla Project) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [MGSysCtrl] C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe (Micro-Star International Co., Ltd.) O4 - HKLM..\Run: [SMSTray] C:\Program Files (x86)\Samsung\EmoDio\SMSTray.exe (SAMSUNG ELECTRONICS) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [UVS10 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe (Ulead Systems, Inc.) O4 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000..\Run: [Akamai NetSession Interface] C:\Users\jarex\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc) O4 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000..\Run: [Tlen.pl] C:\Program Files (x86)\Tlen7\tlen7.exe () O4 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Users\jarex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () O4 - Startup: C:\Users\jarex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\quietHDD — skrót.lnk = C:\Users\jarex\Downloads\quietHDD_v1.5-build250\quietHDD.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8:[b]64bit:[/b] - Extra context menu item: Ściągaj z Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm () O8:[b]64bit:[/b] - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm () O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Ściągaj z Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm () O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm () O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm () O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm () O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx (WRC Class) O16 - DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.4.1/jinstall-1_4_1_07-windows-i586.cab (Java Plug-in 1.4.1_07) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9D956E39-EE58-4E32-8910-087F7AA4BD9C}: DhcpNameServer = 194.168.4.100 194.168.8.100 O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-itss - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/12/22 21:22:36 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\...com [@ = comfile] -- Reg Error: Key error. File not found O37 - HKU\S-1-5-21-1431110669-3977131987-3945913302-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012/07/21 11:12:32 | 000,000,000 | ---D | C] -- C:\windows\erdnt [2012/07/21 02:28:12 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\ElevatedDiagnostics [2012/07/20 21:15:23 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{6767AF4C-EE7D-49DF-BC50-BB147AA4A6D7} [2012/07/20 21:14:54 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{109E1AEF-5B5B-4A12-BB8C-3807CDD7C2BB} [2012/07/18 19:06:12 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{7C8C9C8A-5A97-4B30-A245-EBD60524EF24} [2012/07/18 19:05:45 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{96AF75E1-7CB2-4E38-9B17-FF44F09C996D} [2012/07/17 20:30:04 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{91194BE8-EF59-4F68-9B42-DDA50C8EF894} [2012/07/17 20:29:36 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{AB83AE5D-9CA4-4019-B557-DBAB4F3C3516} [2012/07/16 19:37:33 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{2F4C948B-7912-411E-8987-7625A270A25C} [2012/07/16 19:37:02 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{A4983D89-0159-4F6B-82B6-2A1068855E2B} [2012/07/14 20:45:06 | 000,000,000 | ---D | C] -- C:\Users\jarex\Desktop\The.Hangover.Part.II.2011.PL.BRRip.XviD-MCK [2012/07/14 17:23:13 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{CF959515-BC8A-42FC-B2DA-A0C107255DB6} [2012/07/14 17:22:48 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{904143E2-DC5F-47CD-BE08-6F99278CF891} [2012/07/13 20:26:48 | 000,000,000 | ---D | C] -- C:\Users\jarex\Desktop\rozne [2012/07/10 19:45:40 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{F7B8B076-D553-4676-A771-2620A587998E} [2012/07/10 19:45:16 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{F6FFC77E-7CE8-4BE7-8D22-AF29C15B4C9F} [2012/07/06 22:26:41 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{EF7FA9A8-5686-481F-A295-3D4E8FF8D335} [2012/07/06 22:26:14 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{A350B6DF-A90C-4CAC-9248-0CC8A8A18B95} [2012/07/05 21:46:09 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{DE1E4E71-C4D1-47A0-B1B4-1A6A509C94A9} [2012/07/05 21:45:43 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{A3034130-525E-4F43-BE26-5ADA54FBC8D3} [2012/07/04 20:59:50 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{35325DCA-B412-4D9A-8FEC-DACA221C16E9} [2012/07/04 20:59:23 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{60C04E6D-6B93-412B-AED2-53D254184757} [2012/07/03 22:27:21 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{619FA93B-A76E-441D-A0DA-C2F520D0BEF2} [2012/07/03 22:26:58 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{E19B93D0-8083-438D-8F7A-CD44F28FCF1C} [2012/07/02 19:58:41 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{1279CC1A-9ED3-418A-8836-9C7059B77A75} [2012/07/02 19:58:25 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{F92BE6FA-D99E-4061-A9B4-B6D3A855AF68} [2012/07/01 17:23:00 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{A4027B74-1364-4461-BB11-45114B03231C} [2012/07/01 17:22:33 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{933ECA35-8814-49D5-B283-494C021A86CE} [2012/06/30 10:24:12 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{DFF7BD1C-ACC5-4EB2-8ADE-9F478DCC3DF9} [2012/06/30 10:23:46 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{D3C07D0F-4BCA-48EE-A661-087C2DDC6580} [2012/06/29 20:57:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2012/06/29 20:57:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi [2012/06/28 23:03:13 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{A2687805-A410-4B87-B795-5C90797BBEBF} [2012/06/28 23:02:41 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{3E42A6E5-3FA6-47CB-8140-86C6E4B3E2A2} [2012/06/27 19:52:12 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{2E50261D-130A-42EB-9E6B-3FC5E63A661C} [2012/06/27 19:51:51 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{32EC0FD1-66DB-4876-8A13-C7305F4F06D3} [2012/06/26 20:16:29 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{F82606B1-7538-4666-A2AA-A6CD191F10E4} [2012/06/26 20:15:59 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{69BE32FC-77E5-4879-8659-2DF8CB83690D} [2012/06/25 19:57:03 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{C38BDB73-7A49-4457-B10F-A81CA43ECBD7} [2012/06/25 19:56:30 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{9BB11CEF-CD12-4586-A4F9-B3A17EEEE6F6} [2012/06/24 14:38:10 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{54246BB4-C17D-497F-B357-5B034A344932} [2012/06/24 14:37:38 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{B344A698-DFC3-4B95-BFA9-D8EC288027E6} [2012/06/23 11:55:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent [2012/06/23 11:54:00 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Roaming\uTorrent [2012/06/22 23:48:55 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll [2012/06/22 23:48:55 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe [2012/06/22 23:48:55 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll [2012/06/22 23:48:26 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll [2012/06/22 23:48:25 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll [2012/06/22 23:48:25 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll [2012/06/22 23:47:49 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll [2012/06/22 23:47:49 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe [2012/06/21 22:04:23 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{1B74C3B7-7559-495E-8482-15300BA67565} [2012/06/21 22:04:11 | 000,000,000 | ---D | C] -- C:\Users\jarex\AppData\Local\{D85F1553-4E30-448E-94DA-A7BFA2A32BDD} [2012/06/21 19:35:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZxPreyIn [2012/06/21 18:29:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012/06/21 18:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [4 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ] [3 C:\Users\jarex\Desktop\*.tmp files -> C:\Users\jarex\Desktop\*.tmp -> ] [2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012/07/21 12:26:01 | 000,000,029 | ---- | M] () -- C:\windows\SysWow64\TempWmicBatchFile.bat [2012/07/21 11:53:01 | 000,001,058 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1431110669-3977131987-3945913302-1000UA.job [2012/07/21 11:50:04 | 000,001,046 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job [2012/07/21 11:33:58 | 000,017,600 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012/07/21 11:33:58 | 000,017,600 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012/07/21 11:25:01 | 000,001,042 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job [2012/07/21 11:24:46 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat [2012/07/21 11:24:38 | 3055,693,824 | -HS- | M] () -- C:\hiberfil.sys [2012/07/21 10:55:39 | 000,001,006 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1431110669-3977131987-3945913302-1000Core.job [2012/07/21 00:55:19 | 000,001,496 | ---- | M] () -- C:\Users\jarex\AppData\Local\Adobe Zapisz dla Internetu 12.0 Prefs [2012/07/19 23:41:22 | 000,024,041 | ---- | M] () -- C:\Users\jarex\Desktop\Umowa Hosting moja.odt [2012/07/14 17:50:57 | 007,788,669 | ---- | M] () -- C:\Users\jarex\Desktop\Donatan - Nie lubimy robi_.mp3 [2012/07/10 21:42:07 | 001,549,932 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI [2012/07/10 21:42:07 | 000,698,146 | ---- | M] () -- C:\windows\SysNative\perfh015.dat [2012/07/10 21:42:07 | 000,616,242 | ---- | M] () -- C:\windows\SysNative\perfh009.dat [2012/07/10 21:42:07 | 000,135,224 | ---- | M] () -- C:\windows\SysNative\perfc015.dat [2012/07/10 21:42:07 | 000,106,622 | ---- | M] () -- C:\windows\SysNative\perfc009.dat [2012/07/02 20:12:45 | 000,000,957 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk [2012/07/01 08:38:08 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe [2012/07/01 08:38:08 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl [2012/06/29 20:57:21 | 000,000,936 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [4 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ] [3 C:\Users\jarex\Desktop\*.tmp files -> C:\Users\jarex\Desktop\*.tmp -> ] [2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012/07/19 23:34:06 | 000,024,041 | ---- | C] () -- C:\Users\jarex\Desktop\Umowa Hosting moja.odt [2012/07/14 17:50:23 | 007,788,669 | ---- | C] () -- C:\Users\jarex\Desktop\Donatan - Nie lubimy robi_.mp3 [2012/06/29 20:57:21 | 000,000,936 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [2012/06/23 11:55:49 | 000,000,957 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk [2012/06/21 19:39:40 | 000,000,029 | ---- | C] () -- C:\windows\SysWow64\TempWmicBatchFile.bat [2012/05/02 17:30:35 | 000,007,611 | ---- | C] () -- C:\Users\jarex\AppData\Local\Resmon.ResmonCfg [2011/12/21 19:18:41 | 000,000,000 | ---- | C] () -- C:\Users\jarex\AppData\Local\{DC2FF87C-BF87-4FC5-B4D6-A9BF523259B7} [2011/11/26 01:51:15 | 000,002,048 | -HS- | C] () -- C:\Users\jarex\AppData\Local\e4fae0d1\@ [2011/11/16 21:49:56 | 000,045,867 | ---- | C] () -- C:\windows\php.ini [2011/07/29 09:59:41 | 000,000,164 | ---- | C] () -- C:\windows\install.dat [2011/07/11 10:44:46 | 000,007,680 | ---- | C] () -- C:\windows\SysWow64\drivers\Onsreged.sys [2011/06/04 17:58:03 | 000,000,132 | ---- | C] () -- C:\Users\jarex\AppData\Roaming\Preferencje Adobe CS5 dla formatu GIF [2011/05/21 18:18:13 | 000,000,126 | ---- | C] () -- C:\windows\SysWow64\quietHDD.ini [2011/04/11 13:09:11 | 000,000,132 | ---- | C] () -- C:\Users\jarex\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\windows\SysWow64\xlive.dll.cat [2011/02/03 12:22:35 | 000,005,504 | ---- | C] () -- C:\Users\jarex\raw32.lc [2011/01/28 20:31:32 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2011/01/14 11:55:12 | 000,001,496 | ---- | C] () -- C:\Users\jarex\AppData\Local\Adobe Zapisz dla Internetu 12.0 Prefs [2011/01/08 22:37:09 | 000,005,120 | ---- | C] () -- C:\Users\jarex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/01/07 20:27:28 | 000,045,866 | ---- | C] () -- C:\windows\php_old.ini [2011/01/07 20:27:28 | 000,000,430 | ---- | C] () -- C:\windows\my.ini [2010/12/23 22:20:15 | 000,084,616 | ---- | C] () -- C:\windows\StkUnist.exe [2010/12/19 10:35:16 | 000,000,094 | ---- | C] () -- C:\ProgramData\CameraRecorder.ini [2010/12/19 01:10:53 | 000,000,000 | ---- | C] () -- C:\Users\jarex\AppData\Roaming\wklnhst.dat [2010/08/19 01:09:10 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin [2010/08/19 00:05:10 | 000,002,110 | ---- | C] () -- C:\windows\SysWow64\atipblup.dat [2010/08/18 09:03:41 | 000,870,560 | ---- | C] () -- C:\windows\SysWow64\igkrng575.bin [2010/08/18 09:03:41 | 000,208,896 | ---- | C] () -- C:\windows\SysWow64\iglhsip32.dll [2010/08/18 09:03:41 | 000,143,360 | ---- | C] () -- C:\windows\SysWow64\iglhcp32.dll [2010/08/18 09:03:35 | 000,104,636 | ---- | C] () -- C:\windows\SysWow64\igfcg575m.bin [2010/08/18 09:03:34 | 000,127,868 | ---- | C] () -- C:\windows\SysWow64\igcompkrng575.bin [2010/08/18 09:03:25 | 000,002,110 | ---- | C] () -- C:\windows\SysWow64\atipblag.dat [color=#E56717]========== LOP Check ==========[/color] [2012/01/30 11:58:12 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\.wtw [2011/01/29 11:28:55 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Ashampoo [2010/12/22 22:06:15 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Autodesk [2012/04/02 20:36:56 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Blender Foundation [2010/12/20 11:56:08 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Command & Conquer 3 Wojny o tyberium [2011/04/13 13:42:34 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\DAEMON Tools Lite [2012/07/21 12:43:29 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\FileZilla [2011/11/22 18:27:29 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\foobar2000 [2011/03/14 22:17:40 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\GardenGnomeSoftware [2011/07/04 13:44:49 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\GARMIN [2011/02/27 15:35:18 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\GHISLER [2011/01/13 23:46:52 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\HD Tune Pro [2011/02/06 18:32:11 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\HDRsoft [2012/07/21 20:18:10 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\IrfanView [2012/05/17 12:33:25 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Mipony [2011/06/04 17:39:49 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\MySQL [2012/07/21 20:18:10 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Notepad++ [2011/04/01 10:25:59 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\OpenOffice.org [2011/09/05 16:37:54 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Opera [2011/10/12 12:38:24 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\SendBlaster2 [2010/12/19 01:59:05 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Silver Style Entertainment [2011/09/06 11:57:00 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\SWiSH Max4 [2011/04/09 20:30:56 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\SWiSH Max4 PLK [2012/01/16 12:45:57 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\TeamViewer [2010/12/19 01:10:56 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Template [2011/10/07 11:35:12 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Thinstall [2010/12/19 10:18:43 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Tlen.pl [2011/09/20 02:08:27 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Tropico 3 [2010/12/23 22:38:12 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Ulead Systems [2012/07/21 12:42:30 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\uTorrent [2011/12/07 19:51:02 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\VitySoft [2011/12/13 01:16:02 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Wacom [2011/12/13 01:20:53 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1 [2012/05/01 15:10:47 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\wargaming.net [2010/12/27 15:13:56 | 000,000,000 | ---D | M] -- C:\Users\jarex\AppData\Roaming\Windows Live Writer [2012/07/01 08:35:24 | 000,032,608 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:8CE646EE < End of report >