OTL logfile created on: 2012-07-29 10:40:56 - Run 1 OTL by OldTimer - Version 3.2.54.1 Folder = H:\ Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,99 Gb Total Physical Memory | 1,77 Gb Available Physical Memory | 88,77% Memory free 3,84 Gb Paging File | 3,79 Gb Available in Paging File | 98,75% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 24,67 Gb Free Space | 63,15% Space Free | Partition Type: NTFS Drive E: | 97,65 Gb Total Space | 32,57 Gb Free Space | 33,36% Space Free | Partition Type: NTFS Drive F: | 96,16 Gb Total Space | 96,08 Gb Free Space | 99,92% Space Free | Partition Type: NTFS Drive G: | 19,12 Gb Total Space | 6,64 Gb Free Space | 34,72% Space Free | Partition Type: FAT32 Drive H: | 983,72 Mb Total Space | 521,02 Mb Free Space | 52,96% Space Free | Partition Type: FAT Computer Name: DOM-B5EFD83F503 | User Name: Dom | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-26 09:49:06 | 000,596,480 | ---- | M] (OldTimer Tools) -- H:\OTL.exe PRC - [2008-04-14 18:51:10 | 000,396,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-07-28 11:26:18 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-07-04 14:49:40 | 000,161,776 | ---- | M] (Oracle Corporation) [Auto | Stopped] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-06-15 00:17:46 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2011-12-30 07:39:10 | 004,889,032 | ---- | M] (SafeNet Inc.) [Auto | Stopped] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms) SRV - [2009-10-07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2009-03-20 15:56:57 | 000,357,182 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\reset.exe -- (.EsetTrialReset) SRV - [2009-02-06 11:57:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- E:\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-02-06 11:53:36 | 000,727,720 | ---- | M] (ESET) [Auto | Stopped] -- E:\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2004-08-23 13:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Stopped] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2011-10-04 13:03:48 | 000,367,560 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge) DRV - [2011-08-10 14:05:24 | 000,596,424 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock) DRV - [2009-10-07 10:49:50 | 000,023,832 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService) DRV - [2009-10-07 10:49:38 | 006,756,632 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) DRV - [2009-10-07 10:47:55 | 000,266,008 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS) DRV - [2009-10-07 10:46:12 | 000,114,712 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt) DRV - [2009-10-07 02:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-02-06 11:54:22 | 000,056,280 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi) DRV - [2009-02-06 11:54:22 | 000,033,096 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis) DRV - [2009-02-06 11:54:18 | 000,130,952 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw) DRV - [2009-02-06 11:53:18 | 000,106,208 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-02-06 11:49:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2009-01-22 10:25:26 | 000,120,064 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008-10-31 05:38:08 | 004,942,336 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2006-05-25 19:28:44 | 000,684,265 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\torususb.sys -- (TaurusUsb) DRV - [2005-02-11 10:24:24 | 000,079,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750obex.sys -- (k750obex) DRV - [2005-02-11 10:22:48 | 000,081,728 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mgmt.sys -- (k750mgmt) DRV - [2005-02-11 10:21:10 | 000,089,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdm.sys -- (k750mdm) DRV - [2005-02-11 10:21:02 | 000,006,576 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdfl.sys -- (k750mdfl) DRV - [2005-02-11 10:19:20 | 000,055,216 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750bus.sys -- (k750bus) DRV - [2003-08-12 18:51:00 | 000,060,255 | R--- | M] (STMicroelectronics ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\stmatm.sys -- (Stmatm) DRV - [2003-08-04 10:52:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://pl.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D4 CC E7 0A 76 25 CA 01 [binary data] IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll () IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/" FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.5.7 FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.4 FF - prefs.js..extensions.enabledItems: {9c51bd27-6ed8-4000-a2bf-36cb95c0c947}:11.0.1 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.10 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_268.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\electronicarts.com/GameFacePlugin: C:\Documents and Settings\Dom\Dane aplikacji\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2012-07-05 18:34:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2012-07-04 14:44:33 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: E:\ESET\ESET Smart Security\Mozilla Thunderbird [2009-08-28 13:00:29 | 000,000,000 | ---D | M] [2009-08-25 15:20:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Extensions [2012-07-16 21:22:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\y8bmravd.default\extensions [2010-10-16 11:06:07 | 000,001,728 | ---- | M] () -- C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\y8bmravd.default\searchplugins\google-pl.xml [2012-03-23 09:29:40 | 000,049,303 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y8BMRAVD.DEFAULT\EXTENSIONS\{4C7097F7-08F2-4EF2-9B9F-F95FA4CBB064}.XPI [2012-07-14 12:55:41 | 000,080,872 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y8BMRAVD.DEFAULT\EXTENSIONS\{9C51BD27-6ED8-4000-A2BF-36CB95C0C947}.XPI [2012-04-06 12:23:15 | 000,140,964 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y8BMRAVD.DEFAULT\EXTENSIONS\FIREGESTURES@XULDEV.ORG.XPI [2002-11-01 17:45:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPJava11.dll [2002-11-01 17:45:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPJava12.dll [2002-11-01 17:45:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPJava13.dll [2002-11-01 17:45:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPJava32.dll [2002-11-01 17:45:54 | 000,086,122 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPJPI140_03.dll [2002-11-01 17:45:54 | 000,086,126 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\NPOJI610.dll [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.onet.pl/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: http://www.onet.pl/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\20.0.1132.57\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.170.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll CHR - plugin: Java(TM) Platform SE 6 U17 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: 2007 Microsoft Office system (Enabled) = E:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL CHR - plugin: Game Face Plugin (Enabled) = C:\Documents and Settings\Dom\Dane aplikacji\Electronic Arts\Game Face\npGameFacePlugin.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll O1 HOSTS File: ([2001-10-26 13:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (STMicroelectronics ) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [egui] E:\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () O4 - HKLM..\Run: [wlokicrhesptpsh] C:\Documents and Settings\All Users\Dane aplikacji\wlokicrh.exe () O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\neostrada tp\Watch.exe (France Télécom R&D) O4 - HKCU..\Run: [wlokicrhesptpsh] C:\Documents and Settings\All Users\Dane aplikacji\wlokicrh.exe () O4 - HKCU..\Run: [Xvid] E:\Xvid\CheckUpdate.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Java Plug-in 1.7.0_05) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Java Plug-in 1.7.0_05) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Java Plug-in 1.7.0_05) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D041A5EE-0F55-467B-8638-7A4A641412B2}: NameServer = 194.204.152.34 194.204.159.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O31 - SafeBoot: UseAlternatShell - 1 O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-08-25 19:10:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-02-15 15:02:12 | 000,000,050 | ---- | M] () - G:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-09-02 10:19:19 | 000,000,000 | ---D | C] -- C:\ProgramData [2012-09-02 10:19:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Lightworks [2012-09-02 10:19:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\SafeNet Sentinel [2012-09-02 10:19:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SafeNet Sentinel [2012-09-02 10:18:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Aladdin Shared [2012-09-02 10:18:50 | 004,889,032 | ---- | C] (SafeNet Inc.) -- C:\WINDOWS\System32\hasplms.exe [2012-09-02 10:18:49 | 000,367,560 | ---- | C] (SafeNet Inc.) -- C:\WINDOWS\System32\drivers\aksfridge.sys [2012-09-02 10:18:47 | 000,596,424 | ---- | C] (SafeNet Inc.) -- C:\WINDOWS\System32\drivers\hardlock.sys [2012-09-02 10:18:47 | 000,198,088 | ---- | C] (Aladdin Knowledge Systems Ltd.) -- C:\WINDOWS\System32\hlvdd.dll [2012-07-28 19:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\vyisqpdlenisaoc [2012-07-27 20:20:37 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dom\Moje dokumenty\Moje wideo [2012-07-27 20:20:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dom\Moje dokumenty\Moje obrazy [2012-07-27 17:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Moje dokumenty\My Downloaded Video [2012-07-27 17:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\Nuclear Coffee [2012-07-27 12:49:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoGet [2012-07-26 11:49:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC [2012-07-22 08:48:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Menu Start\Programy\The KMPlayer [2012-07-22 08:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask [2012-07-20 16:51:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\Subtitle Edit [2012-07-20 16:51:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Subtitle Edit [2012-07-20 14:46:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\AVI ReComp [2012-07-20 14:45:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VobSub [2012-07-20 14:35:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Xvid [2012-07-20 14:34:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Menu Start\Programy\AviSynth 2.5 [2012-07-20 14:34:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AviSynth 2.5 [2012-07-20 14:14:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\K-Lite Codec Pack [2012-07-16 21:16:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\NapiProjekt [2012-07-13 20:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\Sony [2012-07-13 19:49:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2012-07-05 18:34:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-07-04 14:50:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2012-07-04 14:50:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012-07-04 14:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle [2012-07-04 14:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Dane aplikacji\Oracle [2012-07-04 14:49:54 | 000,227,824 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2012-07-04 14:46:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Sun [2012-07-04 14:44:33 | 000,772,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2012-07-04 14:44:33 | 000,687,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2012-07-04 14:44:26 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2012-07-04 14:44:26 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-29 10:40:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-07-29 10:39:48 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\logiflt.iad [2012-07-28 19:35:34 | 000,000,051 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\yqejjubqwenxvpk [2012-07-28 19:35:22 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\wlokicrh.exe [2012-07-28 19:35:22 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\Dom\ms.exe [2012-07-28 19:30:00 | 000,001,124 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1409082233-1844823847-1801674531-1003UA.job [2012-07-28 19:26:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-07-28 18:44:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012-07-28 17:49:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012-07-28 17:48:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2012-07-28 15:30:00 | 000,001,072 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1409082233-1844823847-1801674531-1003Core.job [2012-07-28 11:26:17 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-07-28 11:26:17 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-07-27 10:35:10 | 000,290,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-07-20 17:39:23 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-07-19 09:46:13 | 000,043,008 | ---- | M] () -- C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-16 16:57:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-07-12 14:29:51 | 000,002,286 | ---- | M] () -- C:\Documents and Settings\Dom\Pulpit\Google Chrome.lnk [2012-07-09 20:43:25 | 000,000,339 | ---- | M] () -- C:\Documents and Settings\Dom\Pulpit\Folder.lnk [2012-07-09 20:19:22 | 000,000,374 | ---- | M] () -- C:\Documents and Settings\Dom\Pulpit\Dokumenty.lnk [2012-07-08 20:21:04 | 000,000,859 | ---- | M] () -- C:\Documents and Settings\Dom\.recently-used.xbel [2012-07-05 18:34:51 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-07-04 14:49:40 | 000,227,824 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2012-07-04 14:49:40 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2012-07-04 14:49:40 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2012-07-04 14:49:40 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-28 19:37:44 | 000,052,605 | ---- | C] () -- C:\Documents and Settings\Dom\Pulpit\KillinThemSoftly-Spanish-Vozidar.srt [2012-07-28 19:35:34 | 000,061,440 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\wlokicrh.exe [2012-07-28 19:35:24 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\yqejjubqwenxvpk [2012-07-28 19:35:22 | 000,061,440 | ---- | C] () -- C:\Documents and Settings\Dom\ms.exe [2012-07-20 14:35:31 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2012-07-20 14:35:31 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2012-07-20 14:35:31 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\xvid.ax [2012-07-09 20:42:59 | 000,000,339 | ---- | C] () -- C:\Documents and Settings\Dom\Pulpit\Folder.lnk [2012-07-09 20:19:22 | 000,000,374 | ---- | C] () -- C:\Documents and Settings\Dom\Pulpit\Dokumenty.lnk [2012-07-08 20:21:04 | 000,000,859 | ---- | C] () -- C:\Documents and Settings\Dom\.recently-used.xbel [2012-07-05 18:34:50 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2011-02-04 19:52:07 | 000,043,008 | ---- | C] () -- C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-01-14 15:40:05 | 000,082,289 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2010-08-02 14:24:03 | 000,000,538 | ---- | C] () -- C:\Documents and Settings\Dom\Dane aplikacji\artresize.ini [2009-09-05 18:09:20 | 000,000,737 | ---- | C] () -- C:\Documents and Settings\Dom\.plugin140_03.trace < End of report >