OTL logfile created on: 2012-11-23 18:58:56 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Janusz Warczak\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1014,36 Mb Total Physical Memory | 470,86 Mb Available Physical Memory | 46,42% Memory free 2,38 Gb Paging File | 1,83 Gb Available in Paging File | 76,81% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 50,78 Gb Total Space | 13,09 Gb Free Space | 25,77% Space Free | Partition Type: NTFS Drive D: | 50,78 Gb Total Space | 8,48 Gb Free Space | 16,69% Space Free | Partition Type: NTFS Computer Name: JOLA | User Name: Janusz Warczak | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-11-22 21:21:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Janusz Warczak\Pulpit\OTL.exe PRC - [2012-11-17 10:26:04 | 000,997,320 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe PRC - [2012-11-08 11:29:59 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe PRC - [2012-10-02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe PRC - [2012-09-24 23:12:59 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2012-03-23 16:38:58 | 001,553,392 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe PRC - [2012-03-22 14:32:12 | 001,183,616 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe PRC - [2012-03-13 18:24:14 | 000,053,224 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe PRC - [2011-12-23 19:46:57 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Temp\RtkBtMnt.exe PRC - [2011-12-09 19:47:42 | 000,213,888 | ---- | M] (FileOpen Systems Inc.) -- C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe PRC - [2011-12-09 19:47:36 | 000,726,912 | ---- | M] (FileOpen Systems Inc.) -- C:\Program Files\FileOpen\Services\FileOpenBroker32.exe PRC - [2009-07-13 01:07:48 | 000,021,096 | ---- | M] (The Within Network, LLC) -- C:\WINDOWS\UnsignedThemesSvc.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-09-02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe PRC - [2007-06-28 19:44:34 | 002,816,512 | ---- | M] (Jerzy Znamirowski) -- D:\KALKULATOR\HEXelonMAX6\hexelon.exe PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-11-17 10:26:04 | 000,997,320 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe MOD - [2012-11-08 11:30:01 | 000,566,728 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll MOD - [2012-11-08 11:30:01 | 000,134,600 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll MOD - [2012-11-08 11:29:59 | 000,711,112 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe MOD - [2012-07-27 21:51:56 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL MOD - [2012-04-21 16:35:08 | 000,108,032 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\UI\popup.ui MOD - [2012-04-21 16:35:08 | 000,005,120 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\UI\imsecurityal.ui MOD - [2012-04-21 16:35:06 | 000,003,072 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\UI\accessl.ui MOD - [2012-03-29 19:58:34 | 000,573,904 | ---- | M] () -- C:\Program Files\Common Files\Bitdefender\Bitdefender Threat Scanner\bdsmartdb.dll MOD - [2012-03-22 12:30:52 | 002,063,872 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\ashttpf.mdl MOD - [2012-03-22 12:30:52 | 001,917,952 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\ashttpph.mdl MOD - [2012-03-22 12:30:52 | 001,867,776 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\asimf.mdl MOD - [2012-03-22 12:30:52 | 000,956,928 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\ashttprbl.mdl MOD - [2012-03-22 12:30:52 | 000,634,880 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\ashttpbr.mdl MOD - [2012-03-22 12:30:52 | 000,513,536 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\ashttpdsp.mdl MOD - [2012-03-22 12:30:52 | 000,446,464 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\asimdsp.mdl MOD - [2012-03-22 12:30:52 | 000,391,168 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\as2core\asimbr.mdl MOD - [2012-03-12 15:14:58 | 000,270,536 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\avc3al.dll MOD - [2012-02-09 13:49:02 | 000,092,328 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\bdmetrics.dll MOD - [2012-01-23 20:27:20 | 000,035,208 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\procinfo.dll MOD - [2012-01-23 20:20:54 | 000,139,208 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\popup.dll MOD - [2012-01-23 20:15:40 | 000,059,392 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\bdmltusrsrv.dll MOD - [2012-01-23 20:14:56 | 000,110,880 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\connector.dll MOD - [2012-01-23 20:14:00 | 000,061,440 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\excludemgr.dll MOD - [2012-01-23 20:13:40 | 000,154,152 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\framework.dll MOD - [2012-01-06 16:27:34 | 000,035,720 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\strdecoder.dll MOD - [2012-01-06 16:27:28 | 000,202,032 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2012\txmlutil.dll MOD - [2011-10-27 15:07:06 | 000,362,736 | ---- | M] () -- \\?\C:\Program Files\Common Files\Bitdefender\Bitdefender Threat Scanner\trufos.dll MOD - [2010-07-04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll MOD - [2007-12-24 01:08:44 | 000,391,680 | ---- | M] () -- C:\Program Files\RocketDock\Docklets\StackDocklet\StackDocklet.dll MOD - [2007-09-02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe MOD - [2007-09-02 13:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-11-08 11:29:59 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0) SRV - [2012-10-26 22:33:08 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-10-08 22:28:37 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-10-02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012-09-24 23:12:59 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-07-13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-04-22 12:51:04 | 000,720,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2012-03-23 16:38:58 | 001,553,392 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe -- (VSSERV) SRV - [2012-03-13 18:24:14 | 000,053,224 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe -- (UPDATESRV) SRV - [2012-01-18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion) SRV - [2011-12-09 19:47:42 | 000,213,888 | ---- | M] (FileOpen Systems Inc.) [Auto | Running] -- C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe -- (FileOpenManagerSvc) SRV - [2011-10-14 23:57:36 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe -- (Update Server) SRV - [2011-03-16 09:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2009-07-13 01:07:48 | 000,021,096 | ---- | M] (The Within Network, LLC) [Auto | Running] -- C:\WINDOWS\UnsignedThemesSvc.exe -- (UnsignedThemes) SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\UIUSYS.SYS -- (UIUSys) DRV - File not found [Kernel | On_Demand | Stopped] -- D:\TuneUpPortable\App\TuneUp\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwhid.sys -- (btwhid) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwdndis.sys -- (BTWDNDIS) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btport.sys -- (BTDriver) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\btaudio.sys -- (btaudio) DRV - File not found [Kernel | Disabled | Stopped] -- system32\DRIVERS\avgtdix.sys -- (Avgtdix) DRV - File not found [File_System | Boot | Stopped] -- system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - File not found [Kernel | Disabled | Stopped] -- system32\DRIVERS\AVGIDSShim.Sys -- (AVGIDSShim) DRV - File not found [Kernel | Disabled | Stopped] -- system32\DRIVERS\AVGIDSFilter.Sys -- (AVGIDSFilter) DRV - File not found [Kernel | Disabled | Stopped] -- system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - File not found [Kernel | Disabled | Stopped] -- system32\DRIVERS\AVGIDSDriver.Sys -- (AVGIDSDriver) DRV - [2012-11-08 11:30:02 | 000,026,984 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp) DRV - [2012-04-22 12:51:38 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2012-03-20 20:22:08 | 000,611,520 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avc3.sys -- (avc3) DRV - [2012-03-01 16:30:37 | 000,130,664 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys -- (bdselfpr) DRV - [2012-02-17 16:45:12 | 000,447,208 | ---- | M] (BitDefender) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avckf.sys -- (avckf) DRV - [2012-01-09 16:28:20 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu) DRV - [2012-01-09 16:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2012-01-09 16:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2012-01-09 16:28:20 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc) DRV - [2012-01-09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2012-01-09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2011-11-25 14:59:40 | 000,240,184 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avchv.sys -- (avchv) DRV - [2011-11-17 17:38:34 | 000,063,056 | ---- | M] (BitDefender SRL) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bdsandbox.sys -- (bdsandbox) DRV - [2011-11-14 20:16:28 | 000,130,640 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys -- (bdftdif) DRV - [2011-10-27 15:07:06 | 000,340,624 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\trufos.sys -- (trufos) DRV - [2011-08-16 14:59:34 | 000,360,976 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr) DRV - [2011-03-01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-01-07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-11-15 11:52:08 | 000,102,784 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2010-11-15 11:52:08 | 000,082,816 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - [2010-11-15 11:52:08 | 000,072,576 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2010-08-31 11:28:56 | 000,147,040 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CtClsFlt.sys -- (CtClsFlt) DRV - [2010-07-04 20:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5) DRV - [2010-01-19 19:32:40 | 000,085,128 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\bdvedisk.sys -- (BDVEDISK) DRV - [2009-08-31 15:23:00 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2009-08-31 15:23:00 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2009-07-13 01:07:46 | 000,025,448 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\uxpatch.sys -- (uxpatch) DRV - [2009-03-25 16:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm) DRV - [2009-03-25 16:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) DRV - [2009-03-25 16:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) DRV - [2009-03-25 16:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex) DRV - [2009-03-25 16:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) DRV - [2009-03-25 16:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) DRV - [2009-03-25 16:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl) DRV - [2007-07-15 02:37:04 | 000,027,992 | ---- | M] (EnTech Taiwan) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pstrip.sys -- (PStrip) DRV - [2007-05-30 19:04:56 | 004,424,192 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007-05-02 02:52:00 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21) DRV - [2007-02-16 14:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2006-12-22 10:56:44 | 000,988,800 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2006-12-22 10:56:00 | 000,209,664 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2006-12-22 10:55:56 | 000,730,112 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2006-10-12 16:28:42 | 000,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-436374069-796845957-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=idg&from=idg&uid=ST9120822AS_5LZ73PF1____5LZ73PF1&ts=1350027334 IE - HKU\S-1-5-21-436374069-796845957-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={6AD7C3DF-47BE-4436-B69F-54B88DA98C93}&mid=Unknown&lang=pl&ds=xn011&pr=sa&d=2012-10-05 20:03:30&v=13.0.0.7&sap=hp IE - HKU\S-1-5-21-436374069-796845957-725345543-1003\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-436374069-796845957-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)" FF - prefs.js..browser.search.order.1: "Search the web (Babylon)" FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)" FF - prefs.js..browser.startup.homepage: "www.google.pl" FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.2.0 FF - prefs.js..extensions.enabledAddons: IplextoALL@ALLPlayer.org:0.7.0 FF - prefs.js..extensions.enabledAddons: netvideohunter@netvideohunter.com:1.9.5 FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00 FF - prefs.js..extensions.enabledAddons: translator@zoli.bod:2.1.0.3 FF - prefs.js..extensions.enabledAddons: avg@toolbar:13.2.0.5 FF - prefs.js..extensions.enabledItems: netvideohunter@netvideohunter.com:1.8 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.4.0 FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p=" FF - prefs.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..user_pref(: 0 FF - user.js...user_pref(: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - user.js..network.proxy.type: 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\crossriderapp498@crossrider.com: C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\RewardsArcade\498\Firefox [2011-12-05 19:53:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\13.2.0.5 [2012-11-17 10:36:17 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-10-26 22:33:12 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-10-26 22:32:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\ [2011-08-05 00:02:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Extensions [2012-11-19 13:30:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions [2011-08-18 23:30:17 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2011-12-05 19:53:49 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\ffxtlbr@babylon.com [2012-10-24 22:46:36 | 000,000,000 | ---D | M] ("NetVideoHunter") -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\netvideohunter@netvideohunter.com [2012-10-24 22:45:25 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\plugin@yontoo.com [2012-11-19 13:30:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\trash [2011-12-09 16:31:46 | 000,010,043 | ---- | M] () (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\IplextoALL@ALLPlayer.org.xpi [2012-11-19 13:30:20 | 000,215,985 | ---- | M] () (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\onlinehdtv@onlinehd.tv.xpi [2012-10-26 23:18:24 | 000,060,290 | ---- | M] () (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\translator@zoli.bod.xpi [2012-02-06 11:13:31 | 000,020,591 | ---- | M] () (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi [2012-10-24 22:45:03 | 000,214,909 | ---- | M] () (No name found) -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Mozilla\Firefox\Profiles\vp1md4rg.default\extensions\trash\onlinehdtv@onlinehd.tv.xpi [2012-10-26 22:32:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-11-02 21:10:59 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-10-26 22:32:34 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de [2012-11-17 10:36:17 | 000,000,000 | ---D | M] (AVG Security Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\AVG SECURE SEARCH\FIREFOXEXT\13.2.0.5 [2012-10-26 22:33:11 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-04-14 14:08:02 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\mozilla firefox\components\Scriptff.dll [2011-12-09 18:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-06-24 11:38:57 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-11-17 10:33:04 | 000,003,464 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2012-02-08 19:11:40 | 000,002,310 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2012-06-24 11:38:57 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-12-05 19:36:48 | 000,002,034 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml [2012-06-24 11:38:57 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-06-24 11:38:57 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-06-24 11:38:57 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-06-24 11:38:57 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: http://www.windowsxlive.net/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\pdf.dll CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\McChPlg.dll CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: SiteAdvisor = C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\ O1 HOSTS File: ([2012-04-17 20:40:17 | 000,000,000 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll () O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll (Google Inc.) O2 - BHO: (Free Download Manager) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll () O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC) O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll () O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found. O3 - HKU\S-1-5-21-436374069-796845957-725345543-1003\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [BDAgent] C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe (Bitdefender) O4 - HKLM..\Run: [FileOpenBroker] C:\Program Files\FileOpen\Services\FileOpenBroker32.exe (FileOpen Systems Inc.) O4 - HKLM..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.) O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe () O4 - HKU\S-1-5-21-436374069-796845957-725345543-1003..\Run: [] File not found O4 - HKU\S-1-5-21-436374069-796845957-725345543-1003..\Run: [HEXelon MAX] D:\KALKULATOR\HEXelonMAX6\hexelon.exe (Jerzy Znamirowski) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\RocketDock.lnk = C:\Program Files\RocketDock\RocketDock.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-436374069-796845957-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Pobierz plik wideo w FDM - C:\Program Files\Free Download Manager\dlfvideo.htm () O8 - Extra context menu item: Pobierz w FDM - C:\Program Files\Free Download Manager\dllink.htm () O8 - Extra context menu item: Pobierz wszystkie pliki w FDM - C:\Program Files\Free Download Manager\dlall.htm () O8 - Extra context menu item: Pobierz zaznaczone pliki w FDM - C:\Program Files\Free Download Manager\dlselected.htm () O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31) O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2) O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2) O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab (Creative Software AutoUpdate Support Package) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7FFC8E15-8B4E-4640-AA1E-9C74223E916E}: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7FFC8E15-8B4E-4640-AA1E-9C74223E916E}: NameServer = 194.204.152.34,194.204.159.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{97F66901-D0CE-4C4C-9F47-4ABF2D33B127}: NameServer = 194.204.152.34,194.204.159.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll () O18 - Protocol\Filter\application/x-mfe-ipt - No CLSID value found O20 - AppInit_DLLs: (wbsys.dll) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-11-12 21:32:41 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2011-08-04 18:01:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012-11-12 17:48:37 | 000,000,000 | ---D | M] - D:\Autodesk Inventor 2012 -- [ NTFS ] O32 - Unable to obtain root file information for disk D:\ O33 - MountPoints2\{83166632-1ebf-11e2-b15f-001e4c6118e8}\Shell - "" = AutoRun O33 - MountPoints2\{83166632-1ebf-11e2-b15f-001e4c6118e8}\Shell\AutoRun\command - "" = F:\Startme.exe O33 - MountPoints2\{d2c9e3fe-bee9-11e0-8deb-001e4c6118e8}\Shell - "" = AutoRun O33 - MountPoints2\{d2c9e3fe-bee9-11e0-8deb-001e4c6118e8}\Shell\AutoRun\command - "" = F:\MicroLauncher.exe O33 - MountPoints2\{e1b82246-f2c2-11e1-85d0-001e4c6118e8}\Shell - "" = AutoRun O33 - MountPoints2\{e1b82246-f2c2-11e1-85d0-001e4c6118e8}\Shell\AutoRun\command - "" = F:\MicroLauncher.exe O33 - MountPoints2\{fdfba39b-f2ec-11e1-85d5-001e4c6118e8}\Shell - "" = AutoRun O33 - MountPoints2\{fdfba39b-f2ec-11e1-85d5-001e4c6118e8}\Shell\AutoRun\command - "" = F:\MicroLauncher.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-11-22 21:21:04 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Janusz Warczak\Pulpit\OTL.exe [2012-11-22 11:40:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant [2012-11-22 11:15:55 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Janusz Warczak\Recent [2012-11-19 22:33:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\HpUpdate [2012-11-19 22:32:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard [2012-11-19 08:29:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2 [2012-11-17 16:05:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2012-11-17 16:05:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2012-11-17 16:05:44 | 000,093,672 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2012-11-17 10:37:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\AVG Secure Search [2012-11-17 10:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search [2012-11-17 10:33:11 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search [2012-11-16 20:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\BDLogging [2012-11-16 20:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Bitdefender 2012 [2012-11-16 20:38:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Bitdefender [2012-11-16 20:37:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Bitdefender [2012-11-16 20:15:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\QuickScan [2012-11-16 20:15:36 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender [2012-11-16 20:14:20 | 000,360,976 | ---- | C] (BitDefender) -- C:\WINDOWS\System32\drivers\bdfsfltr.sys [2012-11-16 20:14:16 | 000,340,624 | ---- | C] (BitDefender S.R.L.) -- C:\WINDOWS\System32\drivers\trufos.sys [2012-11-16 20:10:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender [2012-11-16 16:18:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Martau [2012-11-16 16:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 6 [2012-11-14 21:52:26 | 004,011,968 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\ccsetup324.exe [2012-11-14 21:28:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\Avg2013 [2012-11-14 21:28:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\MFAData [2012-11-12 21:32:41 | 000,000,000 | ---D | C] -- C:\Autodesk [2012-11-08 11:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cache [2012-11-06 17:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Nowy folder [2012-11-05 23:44:34 | 010,669,952 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\mbam-setup-1.65.1.1000.exe [2012-11-05 19:02:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Menu Start\Programy\Lotto Plus XP wersja 7.00 shareware [2012-11-05 19:02:05 | 000,000,000 | ---D | C] -- C:\REMIDA [2012-11-05 19:01:43 | 000,000,000 | ---D | C] -- C:\Temp [2012-11-05 15:12:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Moje albumy [2012-11-02 21:09:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Janusz Warczak\PrivacIE [2012-10-28 19:37:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Autodesk [2012-10-28 19:37:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk [2012-10-27 19:11:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Worm HVGA [2012-10-26 22:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-10-25 17:59:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\STUDIA DOMINIKA PŁATNOŚCI [2012-10-24 22:45:21 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo [2012-10-24 22:45:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer [2012-10-24 22:45:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Janusz Warczak\Menu Start\Programy\OnlineHD.TV [2012-10-24 22:44:58 | 000,000,000 | ---D | C] -- C:\Program Files\OnlineHD.TV [2012-10-05 19:02:34 | 006,118,990 | ---- | C] (LIGHTNING UK!) -- C:\Program Files\SetupImgBurn_2.5.7.0(dobreprogramy.pl).exe [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-11-23 18:28:16 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-11-23 18:19:00 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012-11-23 18:15:34 | 000,001,048 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012-11-23 18:14:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-11-23 15:24:30 | 000,000,240 | ---- | M] () -- C:\WINDOWS\System32\checkdnsid.xml [2012-11-23 13:03:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-11-22 21:21:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Janusz Warczak\Pulpit\OTL.exe [2012-11-19 23:19:34 | 000,000,221 | ---- | M] () -- C:\WINDOWS\NCLogConfig.ini [2012-11-19 22:41:40 | 000,000,214 | ---- | M] () -- C:\WINDOWS\HP_InstantSHareJPG.ini [2012-11-19 22:41:34 | 000,000,217 | ---- | M] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini [2012-11-19 22:39:16 | 000,000,227 | ---- | M] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini [2012-11-19 22:39:01 | 000,000,214 | ---- | M] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini [2012-11-19 22:34:52 | 000,000,221 | ---- | M] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini [2012-11-19 08:47:33 | 000,606,284 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-11-19 08:47:33 | 000,539,512 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-11-19 08:47:33 | 000,130,760 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-11-19 08:47:33 | 000,103,234 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-11-17 10:53:58 | 000,283,720 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-11-16 20:54:24 | 000,000,385 | ---- | M] () -- C:\WINDOWS\System32\user_gensett.xml [2012-11-16 20:49:03 | 001,437,883 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\1353093248.bdinstall.bin [2012-11-16 20:38:29 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_avchv_01009.Wdf [2012-11-14 21:52:32 | 004,011,968 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\ccsetup324.exe [2012-11-14 21:51:27 | 000,546,696 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\CCleaner(13061).exe [2012-11-14 14:03:25 | 100,217,157 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2012-11-14 14:02:35 | 000,346,499 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm [2012-11-08 11:30:02 | 000,026,984 | ---- | M] (AVG Technologies) -- C:\WINDOWS\System32\drivers\avgtpx86.sys [2012-11-05 23:45:10 | 010,669,952 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\mbam-setup-1.65.1.1000.exe [2012-11-05 19:02:13 | 000,000,008 | ---- | M] () -- C:\WINDOWS\Grejto.mrd [2012-11-02 23:15:04 | 323,869,922 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\PutLocker - 3FF92664403D3F13flv.flv [2012-11-02 22:25:00 | 002,506,232 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\PutLocker - YNCNW5ED9CFFVflv.flv [2012-11-02 20:57:41 | 163,936,044 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Call of Duty Black Ops Zombies v1.0 (Apk SD Data).rar [2012-11-02 20:37:40 | 1014,765,581 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Asphalt 7 v1.0.0 HD (Apk SD Data).rar [2012-11-02 19:11:07 | 007,646,120 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Asphalt 6 Adrenaline HD v3.1.6.apk [2012-11-02 18:02:33 | 000,629,730 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm [2012-11-01 23:41:08 | 309,871,432 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\VideoSlasher - sodkich-snw-2011-pldvdripxvidbidaavi.flv [2012-10-30 20:10:18 | 005,778,506 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Podrecznik LOGO wersja 9-1.pdf [2012-10-30 19:54:44 | 047,740,255 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\POPC v1.0 apkmania.com.apk [2012-10-30 11:41:51 | 000,480,652 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Sound.mp3 [2012-10-28 14:02:07 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-10-27 18:51:22 | 182,915,469 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\org.ubisoft.premium.POPClassic apkmania.com.rar [2012-10-27 18:42:14 | 048,254,192 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\POPC v2.1 apkmania.com.apk [2012-10-26 22:11:38 | 000,480,652 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Sound.htm [2012-10-25 18:40:27 | 000,022,120 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Tomorrowland1.JPG [2012-10-25 18:38:27 | 000,062,071 | ---- | M] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Tomorrowland.JPG [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-11-19 23:19:34 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini [2012-11-19 22:41:40 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_InstantSHareJPG.ini [2012-11-19 22:41:34 | 000,000,217 | ---- | C] () -- C:\WINDOWS\HP_IZClosingDiscErrorPatch.ini [2012-11-19 22:39:16 | 000,000,227 | ---- | C] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini [2012-11-19 22:39:01 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini [2012-11-19 22:34:52 | 000,000,221 | ---- | C] () -- C:\WINDOWS\HP_RedboxHprblog_HPSU.ini [2012-11-16 21:09:55 | 000,000,240 | ---- | C] () -- C:\WINDOWS\System32\checkdnsid.xml [2012-11-16 20:54:24 | 000,000,385 | ---- | C] () -- C:\WINDOWS\System32\user_gensett.xml [2012-11-16 20:49:03 | 001,437,883 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\1353093248.bdinstall.bin [2012-11-16 20:38:29 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_avchv_01009.Wdf [2012-11-16 16:18:21 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Total Uninstall 6.lnk [2012-11-14 21:51:26 | 000,546,696 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\CCleaner(13061).exe [2012-11-05 19:02:13 | 000,000,008 | ---- | C] () -- C:\WINDOWS\Grejto.mrd [2012-11-02 22:59:37 | 323,869,922 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\PutLocker - 3FF92664403D3F13flv.flv [2012-11-02 22:23:30 | 002,506,232 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\PutLocker - YNCNW5ED9CFFVflv.flv [2012-11-02 20:51:49 | 163,936,044 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Call of Duty Black Ops Zombies v1.0 (Apk SD Data).rar [2012-11-02 19:12:49 | 1014,765,581 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Asphalt 7 v1.0.0 HD (Apk SD Data).rar [2012-11-02 19:11:03 | 007,646,120 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Asphalt 6 Adrenaline HD v3.1.6.apk [2012-11-01 22:45:55 | 309,871,432 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\VideoSlasher - sodkich-snw-2011-pldvdripxvidbidaavi.flv [2012-10-30 20:10:18 | 005,778,506 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Podrecznik LOGO wersja 9-1.pdf [2012-10-30 19:53:08 | 047,740,255 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\POPC v1.0 apkmania.com.apk [2012-10-27 18:42:56 | 182,915,469 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\org.ubisoft.premium.POPClassic apkmania.com.rar [2012-10-27 18:41:20 | 048,254,192 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\POPC v2.1 apkmania.com.apk [2012-10-26 22:11:36 | 000,480,652 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Sound.htm [2012-10-26 21:56:47 | 000,480,652 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Sound.mp3 [2012-10-25 18:40:27 | 000,022,120 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Tomorrowland1.JPG [2012-10-25 18:38:27 | 000,062,071 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Moje dokumenty\Tomorrowland.JPG [2012-10-14 21:40:17 | 000,000,139 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-10-14 21:11:35 | 000,113,047 | ---- | C] () -- C:\WINDOWS\hpoins07.dat [2012-10-14 21:11:35 | 000,021,124 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat [2012-09-02 17:53:54 | 000,000,063 | ---- | C] () -- C:\WINDOWS\wininit.ini [2012-08-28 15:01:36 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-07-27 11:15:42 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\kttlnknrdlkmfra [2012-02-18 18:13:16 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-02-13 00:53:17 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE [2012-02-13 00:33:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini [2012-02-01 13:49:29 | 000,000,076 | RHS- | C] () -- C:\WINDOWS\CT4CET.bin [2012-01-23 13:32:30 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2011-12-05 22:25:55 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\Janusz Warczak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-12-05 22:06:13 | 000,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll [2011-12-05 22:04:51 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2011-12-05 22:04:43 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [2011-12-05 21:52:58 | 000,644,608 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-12-05 21:52:58 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-09-04 14:45:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-08-04 23:51:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-08-04 22:20:36 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4837.dll [2011-08-04 22:20:35 | 000,910,464 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll [2011-08-04 22:10:38 | 000,000,008 | RHS- | C] () -- C:\WINDOWS\System32\Desktop_.ini [2011-08-04 21:56:09 | 001,769,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2011-08-04 21:56:09 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2011-08-04 21:56:07 | 001,769,984 | ---- | C] () -- C:\WINDOWS\System32\snp2uvc.sys [2011-08-04 21:56:07 | 000,172,032 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [2011-08-04 21:56:07 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2011-08-04 21:56:07 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\sncduvc.sys [2011-08-04 21:56:07 | 000,000,131 | ---- | C] () -- C:\WINDOWS\System32\PidList.ini [2011-08-04 19:35:48 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-08-04 19:34:24 | 000,283,720 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-08-04 18:48:10 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2011-08-04 18:07:10 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-08-04 17:57:55 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2011-08-04 22:05:55 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2011-12-19 09:53:27 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2012-05-20 21:01:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AlawarWrapper [2011-10-20 14:41:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2012-10-28 19:37:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk [2012-10-16 17:57:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Avanquest [2011-09-04 01:14:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2012-11-17 10:36:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search [2012-11-16 16:24:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10 [2011-12-05 19:53:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2012-11-16 20:39:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BDLogging [2012-09-13 21:51:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Big Fish Games [2012-11-16 20:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bitdefender [2011-08-04 22:10:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Broadcom [2012-10-16 17:56:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software [2012-01-28 22:13:16 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-09-10 14:55:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\dbxuyfpmhuflgqs [2012-02-20 22:47:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\FileOpen [2011-08-16 14:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2012-07-27 13:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2011-12-05 20:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\install_clap [2012-10-26 19:05:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2012-05-23 18:44:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iWin [2012-11-16 16:18:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Martau [2012-11-14 21:54:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2012-06-27 20:31:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\n7-89-o9-3r-4t-r9 [2012-07-28 21:25:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia [2012-04-01 09:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache [2012-01-14 10:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2011-12-05 20:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDVD [2012-05-23 16:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Playrix Entertainment [2012-10-10 14:19:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2012-10-16 18:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony [2012-10-24 22:45:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer [2012-09-13 21:48:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Temp [2012-05-23 19:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TERMINAL Studio [2012-02-05 23:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software [2012-02-05 23:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software-BackupByTuneUpPortable [2012-02-05 23:16:10 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936} [2012-10-28 19:37:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Autodesk [2011-12-03 22:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Babylon [2012-11-16 20:38:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Bitdefender [2012-02-20 22:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\FileOpen [2012-11-17 19:07:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Free Download Manager [2012-01-19 22:18:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Gadu-Gadu 10 [2012-06-27 20:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\GameHouse [2012-03-16 12:04:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\HEXelon [2012-10-06 13:42:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\ImgBurn [2012-10-31 19:17:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\ipla [2012-06-27 20:32:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\iWin [2012-07-28 18:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Nokia [2012-04-01 09:21:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Nokia Suite [2012-04-03 20:57:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\PC Suite [2012-10-06 13:17:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\PowerISO [2012-11-16 20:15:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\QuickScan [2012-02-10 23:42:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Rainmeter [2012-11-15 10:52:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\TS3Client [2012-02-05 23:43:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\TuneUp Software [2012-02-05 23:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\TuneUp Software-BackupByTuneUpPortable [2012-07-29 13:22:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\Unity [2012-02-08 19:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Janusz Warczak\Dane aplikacji\URSoft [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\Temp:E41267F2 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\Temp:1CE11B51 < End of report >