OTL logfile created on: 2012-08-09 08:34:49 - Run 2 OTL by OldTimer - Version 3.2.56.0 Folder = C:\Documents and Settings\Marcin\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,93 Gb Total Physical Memory | 1,29 Gb Available Physical Memory | 67,06% Memory free 3,78 Gb Paging File | 3,25 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 30,03 Gb Free Space | 61,51% Space Free | Partition Type: NTFS Drive D: | 184,05 Gb Total Space | 118,16 Gb Free Space | 64,20% Space Free | Partition Type: NTFS Computer Name: HPMARCIN | User Name: Marcin | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-08-08 14:06:02 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Pulpit\OTL.exe PRC - [2012-07-18 07:48:24 | 000,374,184 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe PRC - [2012-04-12 09:34:20 | 000,512,000 | ---- | M] () -- C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe PRC - [2011-08-23 09:24:54 | 000,249,856 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Program Files\blueconnect\DataCardMonitor.exe PRC - [2011-03-28 14:57:32 | 000,051,832 | ---- | M] (Schneider Electric GmbH) -- C:\Program Files\Schneider Electric\Schneider Electric Software Update\SUSchedl.exe PRC - [2011-01-11 19:04:04 | 000,063,048 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe PRC - [2010-11-04 18:15:50 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2010-11-04 18:15:32 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2010-10-22 02:42:36 | 000,090,112 | ---- | M] (Schneider Electric Inc.) -- C:\Program Files\Schneider Electric\Vijeo-Designer\Vijeo-Frame\XBTZG935\XBTZG935svr.exe PRC - [2010-10-15 16:13:42 | 000,110,681 | ---- | M] (GE Intelligent Platforms, Inc.) -- C:\Program Files\Proficy\Proficy Machine Edition\fxControl\Runtime\NT\FxControlWin.exe PRC - [2010-10-15 16:13:36 | 000,651,264 | ---- | M] (GE Intelligent Platforms, Inc.) -- C:\Program Files\Proficy\Proficy Machine Edition\fxControl\Runtime\NT\FxControl.exe PRC - [2010-10-15 15:10:48 | 000,131,174 | ---- | M] (GE Intelligent Platforms, Inc.) -- C:\Program Files\Proficy\Proficy Machine Edition\Common\Components\NT\TrapiServer.exe PRC - [2010-10-15 14:29:24 | 000,151,552 | ---- | M] () -- C:\Program Files\Proficy\Proficy Machine Edition\Proficy Event Logger\LoggingService.exe PRC - [2010-08-01 12:38:46 | 000,399,920 | ---- | M] (VMware, Inc.) -- C:\WINDOWS\system32\vmnat.exe PRC - [2010-08-01 12:38:32 | 000,334,384 | ---- | M] (VMware, Inc.) -- C:\WINDOWS\system32\vmnetdhcp.exe PRC - [2010-08-01 12:38:28 | 000,113,200 | ---- | M] (VMware, Inc.) -- C:\Program Files\VMware\VMware Player\vmware-authd.exe PRC - [2010-08-01 12:38:06 | 000,064,048 | ---- | M] (VMware, Inc.) -- C:\Program Files\VMware\VMware Player\hqtray.exe PRC - [2010-08-01 11:39:16 | 000,539,184 | ---- | M] (VMware, Inc.) -- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe PRC - [2010-07-19 17:29:08 | 000,105,248 | ---- | M] (Kepware Technologies) -- C:\Program Files\Proficy\Proficy View Integrated OPC Driver 5\server_eventlog.exe PRC - [2010-07-19 17:28:42 | 000,108,320 | ---- | M] (Kepware Technologies) -- C:\Program Files\Proficy\Proficy View Integrated OPC Driver 5\server_admin.exe PRC - [2010-07-12 17:24:00 | 000,020,480 | ---- | M] (GE Intelligent Platforms Inc.) -- C:\Program Files\Proficy\Proficy Alarm Viewer 2.0\AEClientHostService.exe PRC - [2010-05-14 16:20:50 | 000,058,744 | ---- | M] (GE Intelligent Platforms) -- C:\Program Files\Proficy\Proficy Common\M4 Common Licensing\CCFLIC0.exe PRC - [2010-05-14 16:16:56 | 000,675,840 | ---- | M] (GE Intelligent Platforms) -- C:\Program Files\M1 Licensing\iLicenseSvc.exe PRC - [2010-03-21 19:24:33 | 000,013,312 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\agrsmsvc.exe PRC - [2009-11-27 17:33:54 | 000,053,248 | ---- | M] (Schneider Automation) -- C:\WINDOWS\system32\UsbConsole.exe PRC - [2009-11-04 17:24:56 | 000,192,512 | ---- | M] () -- C:\Program Files\Danfoss Drives\VLT Motion Control Tool\MCT 10 Set-up Software\MCTServ.exe PRC - [2009-09-10 15:54:40 | 000,049,152 | ---- | M] (Schneider Automation SAS) -- C:\WINDOWS\system32\NA_Service.exe PRC - [2009-04-21 13:59:02 | 002,869,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) -- C:\WINDOWS\system32\hasplms.exe PRC - [2009-04-07 15:11:58 | 000,241,664 | ---- | M] () -- C:\Program Files\blueconnect\AssistantServices.exe PRC - [2009-04-07 15:11:16 | 000,132,608 | ---- | M] () -- C:\Program Files\blueconnect\UIExec.exe PRC - [2008-12-11 11:23:42 | 000,073,728 | ---- | M] (Schneider Automation) -- C:\WINDOWS\system32\UsbConnect.exe PRC - [2008-06-18 11:21:16 | 000,010,752 | ---- | M] (Adroit Technologies) -- C:\Adroit\elservice.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-03-13 16:03:34 | 000,225,280 | ---- | M] (Schneider Automation) -- C:\WINDOWS\system32\ModbusDrv.exe PRC - [2007-12-19 20:50:26 | 000,364,544 | ---- | M] (Hilscher GmbH) -- C:\Program Files\Common Files\Hilscher\ODMV3\ODMV3.exe PRC - [2007-12-19 20:48:50 | 000,073,728 | ---- | M] (Hilscher GmbH) -- C:\Program Files\Common Files\Hilscher\ODMV3\ODMTray.exe PRC - [2007-03-30 15:48:32 | 000,102,472 | ---- | M] (Schneider Electric) -- C:\WINDOWS\system32\NA_XWAY.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-04-12 09:34:20 | 000,512,000 | ---- | M] () -- C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe MOD - [2011-04-15 14:32:20 | 001,711,104 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\5b3d048d8c003d743ea5e72caf07773a\Microsoft.VisualBasic.ni.dll MOD - [2011-04-15 14:31:36 | 000,093,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Reporting#\3d1789b3b37f5c310fc470c8dc5b7c4a\Microsoft.ReportingServices.Interfaces.ni.dll MOD - [2011-04-15 14:30:18 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a9e71dda6389403be4db7b567592e3b8\System.ServiceProcess.ni.dll MOD - [2011-04-15 14:30:09 | 011,791,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\50ea744ffc3cb7f09b027fd6c5c93b2b\System.Web.ni.dll MOD - [2011-04-15 14:30:00 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\3736ba3ecac186f9c5d85f01bda2be98\System.Runtime.Remoting.ni.dll MOD - [2011-04-15 14:29:58 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5f9cd5bfebcb94175d440ebab3aa412f\System.EnterpriseServices.ni.dll MOD - [2011-04-15 14:29:57 | 000,627,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\12903c3843fe923d1977801ffa3cf26c\System.Transactions.ni.dll MOD - [2011-04-15 14:29:56 | 001,116,672 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\6bcc481030a56c24d5990d199812c594\System.DirectoryServices.ni.dll MOD - [2011-04-15 14:29:40 | 000,970,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb4cb21d14767292e079366a5d3d76cd\System.Configuration.ni.dll MOD - [2011-04-15 13:48:16 | 005,449,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\36f3953f24d4f0b767bf172331ad6f3e\System.Xml.ni.dll MOD - [2011-04-15 13:48:11 | 012,428,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9a254c455892c02355ab0ab0f0727c5b\System.Windows.Forms.ni.dll MOD - [2011-04-15 13:47:56 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\6978f2e90f13bc720d57fa6895c911e2\System.Drawing.ni.dll MOD - [2011-04-15 13:46:16 | 006,614,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\0b40341027c01716cec1dd97592698e0\System.Data.ni.dll MOD - [2011-04-15 13:45:17 | 007,867,392 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aa7926460a336408c8041330ad90929d\System.ni.dll MOD - [2011-04-15 13:45:11 | 011,485,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll MOD - [2011-04-15 13:44:02 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_pl_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll MOD - [2011-04-15 13:44:00 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2011-04-15 13:43:59 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_pl_b03f5f7f11d50a3a\System.DirectoryServices.resources.dll MOD - [2011-04-15 13:41:16 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll MOD - [2011-04-15 13:41:09 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll MOD - [2010-10-15 14:29:24 | 000,151,552 | ---- | M] () -- C:\Program Files\Proficy\Proficy Machine Edition\Proficy Event Logger\LoggingService.exe MOD - [2010-08-01 12:38:42 | 000,970,288 | ---- | M] () -- C:\Program Files\VMware\VMware Player\libxml2.dll MOD - [2010-08-01 12:37:54 | 000,068,656 | ---- | M] () -- C:\Program Files\VMware\VMware Player\zlib1.dll MOD - [2010-03-15 12:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll MOD - [2009-11-04 17:24:56 | 000,192,512 | ---- | M] () -- C:\Program Files\Danfoss Drives\VLT Motion Control Tool\MCT 10 Set-up Software\MCTServ.exe MOD - [2009-04-07 15:11:58 | 000,241,664 | ---- | M] () -- C:\Program Files\blueconnect\AssistantServices.exe MOD - [2009-04-07 15:11:16 | 000,132,608 | ---- | M] () -- C:\Program Files\blueconnect\UIExec.exe MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2008-03-23 08:01:42 | 000,026,576 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vshell32.dll MOD - [2008-03-23 08:01:40 | 000,040,400 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vuser32.dll MOD - [2008-03-23 08:01:40 | 000,011,216 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vuxtheme.dll MOD - [2008-03-23 08:01:36 | 000,082,384 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vntdll.dll MOD - [2008-03-23 08:01:36 | 000,058,320 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vkernel32.dll MOD - [2008-03-23 08:01:34 | 000,019,920 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vmsvcrt.dll MOD - [2008-03-23 08:01:32 | 000,046,032 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vadvapi32.dll MOD - [2008-03-23 08:01:30 | 000,047,056 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vgdiplus.dll MOD - [2008-03-23 08:01:30 | 000,008,144 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vdwmapi.dll MOD - [2008-03-23 08:00:36 | 000,096,208 | ---- | M] () -- C:\Program Files\Alky for Applications\Libraries\vcomctl32.dll MOD - [2001-08-21 16:32:26 | 000,774,210 | ---- | M] () -- C:\Adroit\vc6-re300l.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-07-19 07:45:22 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-07-18 07:48:41 | 000,136,616 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files\LogMeIn\x86\ramaint.exe -- (LMIMaint) SRV - [2012-07-18 07:48:24 | 000,374,184 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe -- (LMIGuardianSvc) SRV - [2012-04-12 09:34:20 | 000,512,000 | ---- | M] () [Auto | Running] -- C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe -- (UDisk Monitor) SRV - [2012-03-30 14:35:35 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2011-01-11 19:04:04 | 000,390,528 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files\LogMeIn\x86\LogMeIn.exe -- (LogMeIn) SRV - [2010-11-04 18:18:10 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2010-11-04 18:15:50 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2010-10-22 02:42:36 | 000,090,112 | ---- | M] (Schneider Electric Inc.) [Auto | Running] -- C:\Program Files\Schneider Electric\Vijeo-Designer\Vijeo-Frame\XBTZG935\XBTZG935svr.exe -- (XBTZG935 USB Link Cable) SRV - [2010-10-15 16:13:36 | 000,651,264 | ---- | M] (GE Intelligent Platforms, Inc.) [Auto | Running] -- C:\Program Files\Proficy\Proficy Machine Edition\fxControl\Runtime\NT\FxControl.exe -- (FxControlRuntime) SRV - [2010-10-15 15:10:48 | 000,131,174 | ---- | M] (GE Intelligent Platforms, Inc.) [Auto | Running] -- C:\Program Files\Proficy\Proficy Machine Edition\Common\Components\NT\TrapiServer.exe -- (TrapiServer) SRV - [2010-10-15 14:29:24 | 000,151,552 | ---- | M] () [Auto | Running] -- C:\Program Files\Proficy\Proficy Machine Edition\Proficy Event Logger\LoggingService.exe -- (LoggingService) SRV - [2010-08-01 12:38:46 | 000,399,920 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\WINDOWS\system32\vmnat.exe -- (VMware NAT Service) SRV - [2010-08-01 12:38:32 | 000,334,384 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\WINDOWS\system32\vmnetdhcp.exe -- (VMnetDHCP) SRV - [2010-08-01 12:38:28 | 000,113,200 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files\VMware\VMware Player\vmware-authd.exe -- (VMAuthdService) SRV - [2010-08-01 11:39:16 | 000,539,184 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe -- (VMUSBArbService) SRV - [2010-07-19 17:29:08 | 000,105,248 | ---- | M] (Kepware Technologies) [Auto | Running] -- C:\Program Files\Proficy\Proficy View Integrated OPC Driver 5\server_eventlog.exe -- (ProficyViewIntegratedOPCDriverLoggerV5) SRV - [2010-07-12 17:24:00 | 000,020,480 | ---- | M] (GE Intelligent Platforms Inc.) [Auto | Running] -- C:\Program Files\Proficy\Proficy Alarm Viewer 2.0\AEClientHostService.exe -- (AEClientHostService2) SRV - [2010-05-14 16:20:50 | 000,058,744 | ---- | M] (GE Intelligent Platforms) [Auto | Running] -- C:\Program Files\Proficy\Proficy Common\M4 Common Licensing\CCFLIC0.exe -- (CCFLIC0) SRV - [2010-05-14 16:16:56 | 000,675,840 | ---- | M] (GE Intelligent Platforms) [Auto | Running] -- C:\Program Files\M1 Licensing\iLicenseSvc.exe -- (iLicenseSvc) SRV - [2010-04-27 16:42:04 | 000,191,024 | ---- | M] (VMware, Inc.) [On_Demand | Stopped] -- C:\Program Files\VMware\VMware Player\vmware-ufad.exe -- (ufad-ws60) SRV - [2010-03-21 19:24:33 | 000,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio) SRV - [2009-11-04 17:24:56 | 000,192,512 | ---- | M] () [Auto | Running] -- C:\Program Files\Danfoss Drives\VLT Motion Control Tool\MCT 10 Set-up Software\MCTServ.exe -- (MCT10 Service) SRV - [2009-09-10 15:54:40 | 000,049,152 | ---- | M] (Schneider Automation SAS) [Auto | Running] -- C:\WINDOWS\system32\NA_Service.exe -- (NA_Service) SRV - [2009-04-21 13:59:02 | 002,869,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Auto | Running] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms) SRV - [2009-04-07 15:11:58 | 000,241,664 | ---- | M] () [Auto | Running] -- C:\Program Files\blueconnect\AssistantServices.exe -- (UI Assistant Service) SRV - [2009-02-05 04:04:08 | 000,139,488 | ---- | M] (OPC Foundation) [On_Demand | Stopped] -- C:\WINDOWS\system32\OpcEnum.exe -- (OpcEnum) SRV - [2008-12-11 11:23:42 | 000,073,728 | ---- | M] (Schneider Automation) [Auto | Running] -- C:\WINDOWS\system32\UsbConnect.exe -- (UsbConnect) SRV - [2008-07-29 13:10:46 | 003,201,024 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon90) SRV - [2008-06-18 11:21:16 | 000,010,752 | ---- | M] (Adroit Technologies) [Auto | Running] -- C:\Adroit\elservice.exe -- (ELService) SRV - [2007-12-19 20:50:26 | 000,364,544 | ---- | M] (Hilscher GmbH) [Auto | Running] -- C:\Program Files\Common Files\Hilscher\ODMV3\ODMV3.exe -- (ODMV3) SRV - [2006-11-24 05:57:12 | 000,192,512 | ---- | M] (Total Control Products (Canada) Inc.) [On_Demand | Stopped] -- C:\Program Files\Proficy\Proficy Machine Edition\fxView\Runtime\ProficyDrivers\WIN32\GefPdfOpc.exe -- (Proficy Driver Runtime) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-07-27 12:43:56 | 000,007,168 | ---- | M] (Schneider Electric Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VdWinIo.sys -- (VDWINIO) DRV - [2012-07-18 07:48:25 | 000,083,392 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP) DRV - [2012-04-12 09:12:50 | 000,105,472 | ---- | M] (ZTEMT Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CT_ZTEMT_U_USBSER.sys -- (ztemtusbser) DRV - [2011-12-15 16:38:39 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2011-11-04 01:24:52 | 000,641,280 | ---- | M] (SIEMENS AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s7ousbu32x.sys -- (s7ousbu32x) DRV - [2011-11-04 01:22:42 | 000,171,008 | ---- | M] (SIEMENS AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s7otsadx.sys -- (s7otsadx) DRV - [2011-11-04 01:22:14 | 000,508,416 | ---- | M] (SIEMENS AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s7otranx.sys -- (s7otranx) DRV - [2011-10-11 19:13:20 | 000,343,888 | ---- | M] (SIEMENS AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\SNTIE.SYS -- (SNTIE) DRV - [2011-06-16 19:10:22 | 000,063,104 | ---- | M] (SIEMENS AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s7sn2srtx.sys -- (s7sn2srtx) DRV - [2011-01-28 10:19:44 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt) DRV - [2011-01-11 19:04:04 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver) DRV - [2011-01-11 19:04:04 | 000,012,856 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files\LogMeIn\x86\rainfo.sys -- (LMIInfo) DRV - [2010-08-11 11:36:16 | 000,017,664 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\KDTUsbDrv.sys -- (KDTUsbDrv) DRV - [2010-08-04 11:50:36 | 000,140,752 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2010-08-03 13:28:36 | 000,095,896 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2010-08-01 12:39:02 | 000,854,064 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmx86.sys -- (vmx86) DRV - [2010-08-01 12:39:02 | 000,070,704 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmci.sys -- (vmci) DRV - [2010-08-01 12:38:18 | 000,014,896 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmparport.sys -- (VMparport) DRV - [2010-08-01 12:37:24 | 000,024,624 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMkbd.sys -- (vmkbd) DRV - [2010-08-01 12:36:26 | 000,032,688 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetbridge.sys -- (VMnetBridge) DRV - [2010-08-01 12:36:20 | 000,026,288 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\vmnetuserif.sys -- (VMnetuserif) DRV - [2010-08-01 11:39:06 | 000,032,304 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hcmon.sys -- (hcmon) DRV - [2010-08-01 09:18:26 | 000,031,280 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vmusb.sys -- (vmusb) DRV - [2010-08-01 09:18:24 | 000,016,560 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vmnetadapter.sys -- (VMnetAdapter) DRV - [2010-07-29 13:31:26 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2010-04-27 16:41:40 | 000,022,448 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Program Files\VMware\VMware Player\vstor2-ws60.sys -- (vstor2-ws60) DRV - [2010-04-03 11:02:54 | 000,240,608 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0150.sys -- (RsFx0150) DRV - [2010-03-21 22:17:22 | 000,044,800 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM) DRV - [2010-03-21 22:17:17 | 004,221,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) DRV - [2010-03-21 22:15:54 | 000,024,064 | ---- | M] (Sonic Focus, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfaudio.sys -- (SFAUDIO) DRV - [2010-03-21 22:15:41 | 001,804,160 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) DRV - [2010-03-21 19:24:33 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2009-12-14 18:03:20 | 000,040,992 | --S- | M] (Kepware) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Driverx.sys -- (DriverX) DRV - [2009-10-22 16:11:14 | 000,057,800 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - [2009-10-22 16:09:34 | 000,072,520 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2009-07-09 15:18:56 | 000,587,776 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock) DRV - [2009-06-22 11:06:32 | 000,016,384 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb) DRV - [2009-04-14 16:52:24 | 000,055,242 | ---- | M] (Moxa Inc. ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mgdrv.sys -- (mgdrv) DRV - [2009-04-07 18:04:38 | 000,060,720 | ---- | M] (Moxa Inc. ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npdrv.sys -- (npdrv) DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-03-13 12:55:26 | 000,238,208 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp) DRV - [2009-03-02 11:11:52 | 000,048,128 | ---- | M] (Weintek Labs., Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial) DRV - [2009-01-12 10:12:56 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea) DRV - [2009-01-05 10:59:54 | 000,022,528 | ---- | M] (Bytemobile, Inc.) [Kernel | Boot | Unknown] -- C:\WINDOWS\system32\drivers\BMLoad.sys -- (BMLoad) DRV - [2009-01-05 10:59:54 | 000,018,816 | ---- | M] (Bytemobile, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\tcpipBM.sys -- (tcpipBM) DRV - [2009-01-04 18:29:50 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k) DRV - [2009-01-04 18:29:50 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k) DRV - [2008-10-29 17:35:32 | 000,007,680 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\massfilter.sys -- (massfilter) DRV - [2008-07-24 12:02:36 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2008-03-31 18:04:30 | 000,023,040 | R--- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Accelerometer.sys -- (Accelerometer) DRV - [2008-03-31 18:04:30 | 000,017,664 | R--- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hpdskflt.sys -- (hpdskflt) DRV - [2007-11-29 20:35:44 | 000,163,328 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2007-07-23 16:12:44 | 000,046,336 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshhl.sys -- (akshhl) DRV - [2006-11-02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB) DRV - [2006-02-24 17:42:54 | 000,053,568 | ---- | M] (Schneider Automation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DuntlwNT.sys -- (Duntlw) DRV - [2004-05-05 21:48:40 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..network.proxy.type: 0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_228.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\ff-bmboc@bytemobile.com: C:\Program Files\blueconnect\addon [2011-11-15 12:28:51 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-07-19 07:45:23 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 14.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012-06-21 07:02:44 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 14.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-01-27 19:24:25 | 000,000,000 | ---D | M] [2012-03-08 11:28:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Extensions [2012-05-23 10:45:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Profiles\frcz0v0j.default\extensions [2012-05-23 10:45:02 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Documents and Settings\Marcin\Dane aplikacji\Mozilla\Firefox\Profiles\frcz0v0j.default\extensions\LogMeInClient@logmein.com [2012-08-05 11:21:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-07-19 07:45:23 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-06-14 14:50:43 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-06-14 14:50:43 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-06-14 14:50:43 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-06-14 14:50:43 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-06-14 14:50:43 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-06-14 14:50:43 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-03-02 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [DataCardMonitor] C:\Program Files\blueconnect\DataCardMonitor.exe (Huawei Technologies Co., Ltd.) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [LogMeIn GUI] C:\Program Files\LogMeIn\x86\LogMeInSystray.exe (LogMeIn, Inc.) O4 - HKLM..\Run: [ODMV3Tray] C:\Program Files\Common Files\Hilscher\ODMV3\ODMTray.exe (Hilscher GmbH) O4 - HKLM..\Run: [Proficy View Integrated OPC Driver 5.3] C:\Program Files\Proficy\Proficy View Integrated OPC Driver 5\server_admin.exe (Kepware Technologies) O4 - HKLM..\Run: [SESoftwareUpdateScheduler] C:\Program Files\Schneider Electric\Schneider Electric Software Update\SUSchedl.exe (Schneider Electric GmbH) O4 - HKLM..\Run: [UIExec] C:\Program Files\blueconnect\UIExec.exe () O4 - HKLM..\Run: [VMware hqtray] C:\Program Files\VMware\VMware Player\hqtray.exe (VMware, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Mozilla Thunderbird.lnk = C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0 O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\VMware\VMware Player\vsocklib.dll (VMware, Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\VMware\VMware Player\vsocklib.dll (VMware, Inc.) O13 - gopher Prefix: missing O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com/activex/ractrl.cab?lmi=724 (Performance Viewer Activex Control) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: TaskMan - (C:\Documents and Settings\Marcin\Dane aplikacji\tqsgfb.exe) - File not found O20 - Winlogon\Notify\LMIinit: DllName - (LMIinit.dll) - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-01-25 21:42:12 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{16118924-708d-11e0-9cbc-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{16118924-708d-11e0-9cbc-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{16118925-708d-11e0-9cbc-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{16118925-708d-11e0-9cbc-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{18691dc8-6108-11e1-a138-001f29a8003a}\Shell - "" = AutoRun O33 - MountPoints2\{18691dc8-6108-11e1-a138-001f29a8003a}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a O33 - MountPoints2\{1bd77840-1f0c-11e1-9dc0-0016ea9efab2}\Shell - "" = AutoRun O33 - MountPoints2\{1bd77840-1f0c-11e1-9dc0-0016ea9efab2}\Shell\AutoRun\command - "" = E:\Launcher.exe O33 - MountPoints2\{1bd77843-1f0c-11e1-9dc0-0016ea9efab2}\Shell - "" = AutoRun O33 - MountPoints2\{1bd77843-1f0c-11e1-9dc0-0016ea9efab2}\Shell\AutoRun\command - "" = E:\Launcher.exe O33 - MountPoints2\{1bfae022-34eb-11e0-9c62-0016ea9efab2}\Shell - "" = AutoRun O33 - MountPoints2\{1bfae022-34eb-11e0-9c62-0016ea9efab2}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{1bfae024-34eb-11e0-9c62-0016ea9efab2}\Shell - "" = AutoRun O33 - MountPoints2\{1bfae024-34eb-11e0-9c62-0016ea9efab2}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{4326a8f0-7159-11e0-9cbf-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{4326a8f0-7159-11e0-9cbf-005056c00008}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{4326a8f1-7159-11e0-9cbf-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{4326a8f1-7159-11e0-9cbf-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{4fa6e91c-e451-11e0-9d72-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{4fa6e91c-e451-11e0-9d72-005056c00008}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{608964b9-cd4e-11e0-9d5b-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{608964b9-cd4e-11e0-9d5b-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{608964ba-cd4e-11e0-9d5b-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{608964ba-cd4e-11e0-9d5b-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{608964be-cd4e-11e0-9d5b-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{608964be-cd4e-11e0-9d5b-005056c00008}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{7cfee2e0-f886-11e0-9d87-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{7cfee2e0-f886-11e0-9d87-005056c00008}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a O33 - MountPoints2\{bafb8a9a-c7d4-11e0-9d51-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bafb8a9a-c7d4-11e0-9d51-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bafb8a9b-c7d4-11e0-9d51-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bafb8a9b-c7d4-11e0-9d51-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bd49a3a0-6c9d-11e0-9cba-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bd49a3a0-6c9d-11e0-9cba-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bd49a3a1-6c9d-11e0-9cba-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bd49a3a1-6c9d-11e0-9cba-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bd49a3a2-6c9d-11e0-9cba-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bd49a3a2-6c9d-11e0-9cba-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bd49a3a3-6c9d-11e0-9cba-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bd49a3a3-6c9d-11e0-9cba-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{bd49a3a4-6c9d-11e0-9cba-005056c00008}\Shell - "" = AutoRun O33 - MountPoints2\{bd49a3a4-6c9d-11e0-9cba-005056c00008}\Shell\AutoRun\command - "" = E:\AutoRun.exe O33 - MountPoints2\{c9f5f7c1-6775-11e1-a6e8-001f29a8003a}\Shell - "" = AutoRun O33 - MountPoints2\{c9f5f7c1-6775-11e1-a6e8-001f29a8003a}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{e69fe258-fba3-11e0-9d8e-001f29a8003a}\Shell - "" = AutoRun O33 - MountPoints2\{e69fe258-fba3-11e0-9d8e-001f29a8003a}\Shell\AutoRun\command - "" = E:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-08-09 08:22:45 | 000,000,000 | ---D | C] -- C:\_OTL [2012-08-08 14:05:54 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Pulpit\OTL.exe [2012-08-05 11:23:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Dane aplikacji\skypePM [2012-08-05 11:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Dane aplikacji\Skype [2012-08-05 11:21:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2012-08-05 11:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2012-08-05 11:21:37 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2012-08-05 11:12:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2012-07-31 11:09:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\L_Gniewino [2012-07-30 14:38:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ZTEMT [2012-07-30 14:38:33 | 000,105,472 | ---- | C] (ZTEMT Incorporated) -- C:\WINDOWS\System32\drivers\CT_ZTEMT_U_USBSER.sys [2012-07-30 14:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\ZTEMT UI [2012-07-30 12:23:01 | 000,245,760 | ---- | C] (Schneider Electric) -- C:\WINDOWS\System32\CnfUFDll.dll [2012-07-30 12:23:01 | 000,225,280 | ---- | C] (Schneider Electric Industries) -- C:\WINDOWS\System32\CnfUFExe.exe [2012-07-30 12:23:01 | 000,113,664 | ---- | C] (Schneider Electric) -- C:\WINDOWS\System32\drivers\CUSBFIP.sys [2012-07-30 12:23:01 | 000,049,152 | ---- | C] (Schneider Automation) -- C:\WINDOWS\System32\Usbfipu.dll [2012-07-29 16:28:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\miedzyrzecz_wersja_ostateczna_16_12_2011 [2012-07-28 14:57:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Dane aplikacji\ZTEEVDO [2012-07-27 12:43:56 | 000,007,168 | ---- | C] (Schneider Electric Inc.) -- C:\WINDOWS\System32\drivers\VdWinIo.sys [2012-07-27 12:43:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Dane aplikacji\Schneider Electric [2012-07-27 12:40:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Vijeo-Designer [2012-07-27 12:31:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\24.11.2011_zasuwa_ON_OFF [2012-07-27 12:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Schneider Electric [2012-07-27 11:59:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Schneider Electric Shared [2012-07-25 12:41:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\OŚ_SZYMKIENT [2012-07-16 13:46:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marcin\Pulpit\nastawy poziomów [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-08-09 08:33:23 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-08-09 08:33:21 | 2073,346,048 | -HS- | M] () -- C:\hiberfil.sys [2012-08-09 07:40:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-08-09 04:35:09 | 000,139,264 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\SystemLook.exe [2012-08-08 14:06:02 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marcin\Pulpit\OTL.exe [2012-08-07 15:23:46 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-08-07 08:30:24 | 001,246,251 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-07_08-30-23_825.jpg [2012-08-07 08:30:00 | 001,205,404 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-07_08-30-00_296.jpg [2012-08-06 08:41:20 | 000,000,834 | ---- | M] () -- C:\WINDOWS\MODSCAN.INI [2012-08-05 17:49:38 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-05 11:23:53 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2012-08-03 20:40:20 | 001,401,866 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-03_20-40-20_421.jpg [2012-08-03 20:29:30 | 001,328,066 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-03_20-29-31_30.jpg [2012-08-02 19:42:34 | 000,673,440 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\instrukcja DelosSI_pl.PDF [2012-08-01 08:58:29 | 000,002,661 | ---- | M] () -- C:\WINDOWS\adroit.INI [2012-07-30 14:38:37 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ZTEMT UI.lnk [2012-07-30 12:32:39 | 000,000,100 | ---- | M] () -- C:\WINDOWS\System32\CnfUTW3.dat [2012-07-30 12:11:40 | 000,000,308 | ---- | M] () -- C:\WINDOWS\System32\MODBUS01.ini [2012-07-28 13:30:46 | 007,400,064 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\plan oczyszczalni Szymkent 30.11.2011.dwg [2012-07-28 13:08:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-07-27 12:43:56 | 000,007,168 | ---- | M] (Schneider Electric Inc.) -- C:\WINDOWS\System32\drivers\VdWinIo.sys [2012-07-27 12:42:59 | 000,003,120 | ---- | M] () -- C:\WINDOWS\4W5TWSDH.ocx [2012-07-27 12:42:46 | 000,000,970 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Vijeo Designer.lnk [2012-07-27 12:09:50 | 000,003,120 | ---- | M] () -- C:\WINDOWS\162333 [2012-07-27 12:06:06 | 000,001,772 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Unity Pro XL.lnk [2012-07-27 11:59:23 | 000,002,073 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Schneider Electric Software Update.lnk [2012-07-25 14:10:15 | 003,610,811 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\OŚ_SZYMKIENT.rar [2012-07-25 11:02:55 | 000,002,198 | ---- | M] () -- C:\WINDOWS\CBreeze.INI [2012-07-24 06:57:36 | 000,165,888 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\bilety AT CONTROL.shs [2012-07-18 13:18:57 | 010,368,054 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\Nowy Obraz - mapa bitowa.bmp [2012-07-18 07:48:25 | 000,087,456 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIinit.dll [2012-07-18 07:48:25 | 000,083,392 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIRfsClientNP.dll [2012-07-18 07:48:25 | 000,030,624 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIport.dll [2012-07-11 08:05:26 | 000,011,049 | ---- | M] () -- C:\Documents and Settings\Marcin\Pulpit\0_1.jpg [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-08-09 04:35:07 | 000,139,264 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\SystemLook.exe [2012-08-07 08:30:24 | 001,246,251 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-07_08-30-23_825.jpg [2012-08-07 08:30:00 | 001,205,404 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-07_08-30-00_296.jpg [2012-08-05 12:59:20 | 001,401,866 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-03_20-40-20_421.jpg [2012-08-05 12:59:20 | 001,328,066 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\2012-08-03_20-29-31_30.jpg [2012-08-05 11:23:53 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2012-08-05 11:21:40 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-08-03 05:29:41 | 000,673,440 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\instrukcja DelosSI_pl.PDF [2012-07-30 14:38:37 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ZTEMT UI.lnk [2012-07-30 12:32:39 | 000,000,100 | ---- | C] () -- C:\WINDOWS\System32\CnfUTW3.dat [2012-07-30 12:10:55 | 000,000,308 | ---- | C] () -- C:\WINDOWS\System32\MODBUS01.ini [2012-07-28 13:36:32 | 007,400,064 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\plan oczyszczalni Szymkent 30.11.2011.dwg [2012-07-27 12:42:59 | 000,003,120 | ---- | C] () -- C:\WINDOWS\4W5TWSDH.ocx [2012-07-27 12:42:46 | 000,000,970 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Vijeo Designer.lnk [2012-07-27 12:09:50 | 000,003,120 | ---- | C] () -- C:\WINDOWS\162333 [2012-07-27 12:06:06 | 000,001,772 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Unity Pro XL.lnk [2012-07-27 11:59:23 | 000,002,073 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Schneider Electric Software Update.lnk [2012-07-25 14:10:14 | 003,610,811 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\OŚ_SZYMKIENT.rar [2012-07-24 06:57:34 | 000,165,888 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\bilety AT CONTROL.shs [2012-07-18 13:18:42 | 010,368,054 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\Nowy Obraz - mapa bitowa.bmp [2012-07-11 08:05:23 | 000,011,049 | ---- | C] () -- C:\Documents and Settings\Marcin\Pulpit\0_1.jpg [2012-04-11 10:29:41 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\dsci.dll [2012-01-12 09:13:47 | 000,002,198 | ---- | C] () -- C:\WINDOWS\CBreeze.INI [2012-01-12 09:06:38 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\CBREEZE.INI [2012-01-12 09:06:38 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\PROTOCOL.INI [2011-12-23 12:35:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\fxVPhdrvsnp.INI [2011-12-23 12:30:24 | 000,000,068 | ---- | C] () -- C:\WINDOWS\System32\iHistorian.dat [2011-11-19 20:51:24 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\usbcnx2.dll [2011-10-17 14:54:45 | 000,006,656 | ---- | C] () -- C:\WINDOWS\WNETWAY.DLL [2011-10-17 14:54:45 | 000,004,064 | ---- | C] () -- C:\WINDOWS\WNETWT16.DLL [2011-10-17 14:54:45 | 000,000,128 | ---- | C] () -- C:\WINDOWS\System32\FTDIUN2K.INI [2011-10-17 14:54:44 | 000,013,888 | ---- | C] () -- C:\WINDOWS\WDTGR.DLL [2011-10-17 14:54:44 | 000,008,096 | ---- | C] () -- C:\WINDOWS\WCDTGR.DLL [2011-09-21 15:04:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Aposs.INI [2011-08-29 14:36:13 | 000,000,488 | ---- | C] () -- C:\WINDOWS\EasyBuilder8000.INI [2011-06-02 11:19:46 | 000,002,661 | ---- | C] () -- C:\WINDOWS\adroit.INI [2011-05-25 09:47:06 | 000,000,625 | ---- | C] () -- C:\WINDOWS\ModScan32.INI [2011-05-08 11:49:26 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-04-15 13:42:59 | 000,113,792 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2011-03-24 09:45:49 | 000,000,098 | ---- | C] () -- C:\WINDOWS\FP_Web.INI [2011-02-17 12:02:32 | 003,907,640 | ---- | C] () -- C:\WINDOWS\System32\gsdll32.dll [2011-02-01 08:02:47 | 000,000,834 | ---- | C] () -- C:\WINDOWS\MODSCAN.INI [2011-01-28 11:44:26 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\Marcin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-01-28 10:19:44 | 000,000,383 | ---- | C] () -- C:\WINDOWS\System32\haspdos.sys [2011-01-28 08:55:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MISSRVR.INI [2011-01-27 15:56:54 | 000,102,400 | R--- | C] () -- C:\WINDOWS\System32\dtmMANAGERSatellite_01.dll [2011-01-25 22:22:38 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-01-25 22:21:27 | 000,162,728 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-01-25 21:44:58 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-01-25 21:38:56 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-10-15 17:53:30 | 000,082,009 | ---- | C] () -- C:\WINDOWS\mp_enu.dll [2010-10-15 17:53:30 | 000,082,009 | ---- | C] () -- C:\WINDOWS\ll_enu.dll [2010-10-15 17:53:18 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\CP30FW.DLL [2010-10-15 17:53:18 | 000,176,128 | ---- | C] () -- C:\WINDOWS\System32\Al21fw.dll [2010-10-15 13:50:34 | 000,016,104 | ---- | C] () -- C:\WINDOWS\System32\WOWGLUEM.DLL [2010-10-15 13:48:36 | 000,110,592 | ---- | C] () -- C:\WINDOWS\llp.exe [2010-10-15 13:48:36 | 000,090,112 | ---- | C] () -- C:\WINDOWS\mp.exe [2010-10-15 13:48:36 | 000,081,920 | ---- | C] () -- C:\WINDOWS\lld.exe [2010-10-15 13:48:36 | 000,065,536 | ---- | C] () -- C:\WINDOWS\mpd.exe [2010-10-15 13:48:34 | 000,124,348 | ---- | C] () -- C:\WINDOWS\System32\drivers\SST_DRVR.SYS [2010-10-15 13:46:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\EmailSender.exe < End of report >