OTL logfile created on: 2011-06-04 09:15:05 - Run 2 OTL by OldTimer - Version 3.2.23.0 Folder = E:\Users\Darek\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,68 Gb Available Physical Memory | 67,02% Memory free 8,00 Gb Paging File | 6,60 Gb Available in Paging File | 82,50% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files (x86) Drive C: | 58,59 Gb Total Space | 12,42 Gb Free Space | 21,20% Space Free | Partition Type: NTFS Drive D: | 292,97 Gb Total Space | 165,32 Gb Free Space | 56,43% Space Free | Partition Type: NTFS Drive E: | 114,19 Gb Total Space | 63,19 Gb Free Space | 55,34% Space Free | Partition Type: NTFS Drive H: | 58,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: DAREK-KOMPUTER | User Name: Darek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-06-03 16:11:41 | 000,580,096 | ---- | M] (OldTimer Tools) -- E:\Users\Darek\Desktop\OTL.exe PRC - [2011-05-25 09:25:28 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- E:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011-05-22 12:31:02 | 000,536,576 | ---- | M] () -- E:\Program Files (x86)\Internet w Cyfrowym Polsacief\Internet w Cyfrowym Polsacie.exe PRC - [2011-05-20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- E:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2011-05-03 02:44:35 | 000,924,632 | ---- | M] (Mozilla Corporation) -- E:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- E:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe PRC - [2010-09-29 03:33:40 | 000,249,856 | ---- | M] () -- E:\ProgramData\DataCardService\DCService.exe PRC - [2010-09-29 03:33:34 | 000,228,352 | ---- | M] (Huawei Technologies Co., Ltd.) -- E:\ProgramData\DataCardService\DCSHelper.exe PRC - [2009-09-06 13:38:06 | 000,071,096 | ---- | M] () -- E:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe PRC - [2009-08-22 20:25:00 | 002,781,184 | ---- | M] () -- E:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe PRC - [2006-09-13 01:00:00 | 000,045,056 | ---- | M] (brother Industries Ltd) -- E:\Windows\SysWOW64\brss01a.exe PRC - [2004-06-14 01:00:00 | 000,057,344 | ---- | M] (brother Industries Ltd) -- E:\Windows\SysWOW64\brsvc01a.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-06-03 16:11:41 | 000,580,096 | ---- | M] (OldTimer Tools) -- E:\Users\Darek\Desktop\OTL.exe MOD - [2010-08-21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- E:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2011-01-12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- E:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV:[b]64bit:[/b] - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- E:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn) SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- E:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2011-05-25 09:25:28 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- E:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011-05-20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- E:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2010-09-29 03:33:40 | 000,249,856 | ---- | M] () [Auto | Running] -- E:\ProgramData\DataCardService\DCService.exe -- (DCService.exe) SRV - [2009-09-06 13:38:06 | 000,071,096 | ---- | M] () [Auto | Running] -- E:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- E:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2004-06-14 01:00:00 | 000,057,344 | ---- | M] (brother Industries Ltd) [Auto | Running] -- E:\Windows\SysWOW64\brsvc01a.exe -- (Brother XP spl Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-02-19 10:55:03 | 000,146,704 | ---- | M] (Eset ) [Kernel | Auto | Running] -- E:\Windows\SysNative\drivers\amon.sys -- (AMON) DRV:[b]64bit:[/b] - [2010-12-21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- E:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:[b]64bit:[/b] - [2010-12-21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- E:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:[b]64bit:[/b] - [2010-12-21 13:47:38 | 000,125,296 | ---- | M] (ESET) [Kernel | Auto | Running] -- E:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr) DRV:[b]64bit:[/b] - [2010-08-31 18:09:00 | 000,256,000 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- E:\Windows\SysNative\drivers\ewusbnet.sys -- (ewusbnet) DRV:[b]64bit:[/b] - [2010-08-07 17:49:04 | 000,121,600 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- E:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard) DRV:[b]64bit:[/b] - [2010-07-27 15:26:34 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- E:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV:[b]64bit:[/b] - [2010-07-27 09:52:16 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV:[b]64bit:[/b] - [2010-06-25 16:57:40 | 001,118,048 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux) DRV:[b]64bit:[/b] - [2010-03-20 12:06:58 | 000,013,952 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- E:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV:[b]64bit:[/b] - [2010-01-24 09:30:43 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- E:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2009-11-15 22:11:17 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- E:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:[b]64bit:[/b] - [2009-11-15 22:11:17 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- E:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- E:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- E:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:[b]64bit:[/b] - [2009-06-10 22:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- E:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- E:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2010-01-23 09:47:18 | 000,019,952 | ---- | M] () [Kernel | On_Demand | Running] -- E:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys -- (RivaTuner64) DRV - [2009-09-28 21:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- E:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen) DRV - [2007-02-07 20:27:46 | 000,014,104 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | Boot | Running] -- E:\Windows\SysWOW64\speedfan.sys -- (speedfan) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.qooqlle.com/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: cssreloader@kenneth.io:1.0.2 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1" FF - prefs.js..network.proxy.backup.ftp_port: 9666 FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1" FF - prefs.js..network.proxy.backup.gopher_port: 9666 FF - prefs.js..network.proxy.backup.socks: "127.0.0.1" FF - prefs.js..network.proxy.backup.socks_port: 9666 FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1" FF - prefs.js..network.proxy.backup.ssl_port: 9666 FF - prefs.js..network.proxy.ftp: "127.0.0.1" FF - prefs.js..network.proxy.ftp_port: 9666 FF - prefs.js..network.proxy.gopher: "127.0.0.1" FF - prefs.js..network.proxy.gopher_port: 9666 FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 9666 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "127.0.0.1" FF - prefs.js..network.proxy.socks_port: 9666 FF - prefs.js..network.proxy.ssl: "127.0.0.1" FF - prefs.js..network.proxy.ssl_port: 9666 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: E:\Program Files (x86)\Mozilla Firefox\components [2011-06-02 18:24:02 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: E:\Program Files (x86)\Mozilla Firefox\plugins [2011-05-15 12:51:43 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: E:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-06-02 19:51:29 | 000,000,000 | ---D | M] [2009-11-09 19:44:48 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Darek\AppData\Roaming\mozilla\Extensions [2011-06-02 17:24:58 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Darek\AppData\Roaming\mozilla\Firefox\Profiles\exh2zeii.default\extensions [2010-11-06 23:17:29 | 000,000,000 | ---D | M] (Alienware Invader v1.2) -- E:\Users\Darek\AppData\Roaming\mozilla\Firefox\Profiles\exh2zeii.default\extensions\{5476e6b0-3de0-11dd-ae16-0800200c9a66} [2009-11-26 23:33:26 | 000,000,000 | ---D | M] (Torbutton) -- E:\Users\Darek\AppData\Roaming\mozilla\Firefox\Profiles\exh2zeii.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca} [2011-06-02 17:24:58 | 000,000,000 | ---D | M] (Iplex to ALLPlayer) -- E:\Users\Darek\AppData\Roaming\mozilla\Firefox\Profiles\exh2zeii.default\extensions\IplextoALL@ALLPlayer.org [2011-05-14 23:45:32 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files (x86)\Mozilla Firefox\extensions [2010-08-31 10:40:44 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2011-05-14 23:45:32 | 000,000,000 | ---D | M] (Java Console) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} File not found (No name found) -- () (No name found) -- E:\USERS\DAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EXH2ZEII.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- E:\USERS\DAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EXH2ZEII.DEFAULT\EXTENSIONS\PERSONAS@CHRISTOPHER.BEARD.XPI [2011-05-03 02:44:35 | 000,142,296 | ---- | M] (Mozilla Foundation) -- E:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll [2011-04-14 05:08:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- E:\Program Files (x86)\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - E:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.) O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - E:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [CanonMyPrinter] E:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.) O4:[b]64bit:[/b] - HKLM..\Run: [CanonSolutionMenu] E:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.) O4:[b]64bit:[/b] - HKLM..\Run: [egui] E:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4:[b]64bit:[/b] - HKLM..\Run: [NvCplDaemon] E:\Windows\SysNative\NvCpl.dll (NVIDIA Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [RivaTuner] E:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O4:[b]64bit:[/b] - HKLM..\Run: [RivaTunerStartupDaemon] E:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000004 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000005 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000006 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000007 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000008 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000009 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000010 - E:\Windows\SysNative\imon.dll (Eset ) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000021 - E:\Windows\SysNative\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - E:\Windows\SysWow64\imon.dll (Eset ) O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - E:\Windows\SysWow64\imon.dll (Eset ) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos-beta/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-10-29 18:57:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () - H:\AutoRun.exe -- [ CDFS ] O32 - AutoRun File - [2008-09-20 03:12:34 | 000,000,045 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{09101811-6458-11e0-9876-74ea3a8a1883}\Shell - "" = AutoRun O33 - MountPoints2\{09101811-6458-11e0-9876-74ea3a8a1883}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{18bec26f-1eb6-11df-8a8d-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{18bec26f-1eb6-11df-8a8d-00221553bbfe}\Shell\AutoRun\command - "" = M:\AutoRun.exe O33 - MountPoints2\{18bec275-1eb6-11df-8a8d-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{18bec275-1eb6-11df-8a8d-00221553bbfe}\Shell\AutoRun\command - "" = M:\AutoRun.exe O33 - MountPoints2\{27a19d0a-845b-11e0-8e5d-001e101f21c1}\Shell - "" = AutoRun O33 - MountPoints2\{27a19d0a-845b-11e0-8e5d-001e101f21c1}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{27a19d14-845b-11e0-8e5d-001e101f21c1}\Shell - "" = AutoRun O33 - MountPoints2\{27a19d14-845b-11e0-8e5d-001e101f21c1}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{393f0a3b-13f5-11df-8bb9-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{393f0a3b-13f5-11df-8bb9-00221553bbfe}\Shell\AutoRun\command - "" = Q:\SETUP.EXE O33 - MountPoints2\{6812a2b2-34ef-11df-86f3-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{6812a2b2-34ef-11df-86f3-806e6f6e6963}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{884ea1b5-aebb-11df-b78b-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{884ea1b5-aebb-11df-b78b-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{8c752004-4b02-11df-8405-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{8c752004-4b02-11df-8405-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{8c75200a-4b02-11df-8405-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{8c75200a-4b02-11df-8405-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{92b42309-cd53-11de-91b7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{92b42309-cd53-11de-91b7-00221553bbfe}\Shell\AutoRun\command - "" = L:\AutoRun.exe O33 - MountPoints2\{92b42321-cd53-11de-91b7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{92b42321-cd53-11de-91b7-00221553bbfe}\Shell\AutoRun\command - "" = L:\AutoRun.exe O33 - MountPoints2\{92b42365-cd53-11de-91b7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{92b42365-cd53-11de-91b7-00221553bbfe}\Shell\AutoRun\command - "" = L:\AutoRun.exe O33 - MountPoints2\{92b4236a-cd53-11de-91b7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{92b4236a-cd53-11de-91b7-00221553bbfe}\Shell\AutoRun\command - "" = M:\AutoRun.exe O33 - MountPoints2\{a9e3c5aa-682a-11df-89a7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{a9e3c5aa-682a-11df-89a7-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{a9e3c5ae-682a-11df-89a7-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{a9e3c5ae-682a-11df-89a7-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{ecb0b7b6-6fff-11df-85ac-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{ecb0b7b6-6fff-11df-85ac-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{ecb0b7bc-6fff-11df-85ac-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{ecb0b7bc-6fff-11df-85ac-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{f9c94740-5487-11df-86cd-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{f9c94740-5487-11df-86cd-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\{f9c9475a-5487-11df-86cd-00221553bbfe}\Shell - "" = AutoRun O33 - MountPoints2\{f9c9475a-5487-11df-86cd-00221553bbfe}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- [2010-09-30 19:33:42 | 000,140,288 | R--- | M] () O33 - MountPoints2\I\Shell - "" = AutoRun O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\AutoRun.exe O33 - MountPoints2\M\Shell - "" = AutoRun O33 - MountPoints2\M\Shell\AutoRun\command - "" = M:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-06-04 08:59:29 | 000,000,000 | ---D | C] -- E:\_OTL [2011-06-03 17:01:16 | 000,739,432 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\easyupdatusapiu64.dll [2011-06-03 17:00:37 | 022,286,952 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvoglv64.dll [2011-06-03 17:00:37 | 018,583,144 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcompiler.dll [2011-06-03 17:00:37 | 016,456,296 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvoglv32.dll [2011-06-03 17:00:37 | 015,223,912 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvd3dumx.dll [2011-06-03 17:00:37 | 013,011,560 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcompiler.dll [2011-06-03 17:00:37 | 011,992,680 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvd3dum.dll [2011-06-03 17:00:37 | 007,123,560 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuda.dll [2011-06-03 17:00:37 | 006,555,240 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvwgf2um.dll [2011-06-03 17:00:37 | 005,301,352 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuda.dll [2011-06-03 17:00:37 | 002,943,592 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuvid.dll [2011-06-03 17:00:37 | 002,804,328 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuvid.dll [2011-06-03 17:00:37 | 002,335,848 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvapi.dll [2011-06-03 17:00:37 | 002,212,968 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuvenc.dll [2011-06-03 17:00:37 | 002,082,408 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuvenc.dll [2011-06-03 17:00:37 | 001,496,168 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvdispco6420150.dll [2011-06-03 17:00:37 | 001,427,048 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\nvgenco642090.dll [2011-06-03 17:00:37 | 000,067,176 | ---- | C] (Khronos Group) -- E:\Windows\SysNative\OpenCL.dll [2011-06-03 17:00:37 | 000,057,960 | ---- | C] (Khronos Group) -- E:\Windows\SysWow64\OpenCL.dll [2011-06-03 17:00:37 | 000,012,392 | ---- | C] (NVIDIA Corporation) -- E:\Windows\SysNative\drivers\nvBridge.kmd [2011-06-03 16:11:38 | 000,580,096 | ---- | C] (OldTimer Tools) -- E:\Users\Darek\Desktop\OTL.exe [2011-06-02 19:58:49 | 000,000,000 | ---D | C] -- E:\Windows\ehome [2011-06-02 19:51:27 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2011-06-02 19:51:27 | 000,000,000 | ---D | C] -- E:\ProgramData\ESET [2011-06-02 19:51:27 | 000,000,000 | ---D | C] -- E:\Program Files\ESET [2011-06-02 18:07:48 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Windows Media Player [2011-06-02 18:02:43 | 000,000,000 | ---D | C] -- E:\Users\Darek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Theorica Divx ;-) Codecs [2011-06-02 17:57:58 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubEdit-Player [2011-06-02 17:25:10 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Kulki [2011-06-02 17:25:10 | 000,000,000 | ---D | C] -- E:\Users\Darek\AppData\Local\Balls [2011-06-02 17:25:01 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer [2011-06-02 17:24:59 | 000,000,000 | ---D | C] -- E:\Users\Darek\AppData\Local\ALLPlayer [2011-06-02 08:16:33 | 000,000,000 | ---D | C] -- E:\ProgramData\Solidshield [2011-06-02 08:16:08 | 000,000,000 | ---D | C] -- E:\ProgramData\EA Core [2011-06-02 08:07:37 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theorica Divx ;-) Codecs [2011-06-02 00:16:22 | 000,000,000 | ---D | C] -- E:\Users\Darek\Documents\Witcher 2 [2011-06-02 00:10:31 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 2 Assassins of Kings [2011-06-01 23:51:58 | 000,000,000 | ---D | C] -- E:\Users\Darek\Desktop\savy [2011-05-31 13:25:07 | 000,000,000 | ---D | C] -- E:\Users\Darek\AppData\Local\The Witcher 2 [2011-05-22 16:34:55 | 000,000,000 | ---D | C] -- E:\Users\Darek\Gadu-Gadu [2011-05-22 16:34:54 | 000,000,000 | ---D | C] -- E:\Users\Darek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gadu-Gadu [2011-05-22 16:34:54 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gadu-Gadu [2011-05-22 16:34:54 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Gadu-Gadu [2011-05-22 12:31:32 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet w Cyfrowym Polsacie [2011-05-22 12:31:17 | 000,196,608 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_juwwanecm.sys [2011-05-22 12:31:17 | 000,091,648 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_jucdcacm.sys [2011-05-22 12:31:17 | 000,086,016 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_jubusenum.sys [2011-05-22 12:31:17 | 000,054,784 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_jucdcecm.sys [2011-05-22 12:31:17 | 000,030,208 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_juextctrl.sys [2011-05-22 12:31:17 | 000,022,528 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_hwupgrade.sys [2011-05-22 12:31:13 | 000,999,936 | ---- | C] (DiBcom SA) -- E:\Windows\SysNative\drivers\mod7700.sys [2011-05-22 12:31:13 | 000,256,000 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ewusbnet.sys [2011-05-22 12:31:13 | 000,121,600 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ewusbmdm.sys [2011-05-22 12:31:13 | 000,032,768 | ---- | C] (Huawei Tech. Co., Ltd.) -- E:\Windows\SysNative\drivers\ewdcsc.sys [2011-05-22 12:31:13 | 000,013,952 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_usbenumfilter.sys [2011-05-22 12:31:08 | 000,117,248 | ---- | C] (Huawei Technologies Co., Ltd.) -- E:\Windows\SysNative\drivers\ew_hwusbdev.sys [2011-05-22 12:30:58 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Internet w Cyfrowym Polsacief [2011-05-20 11:44:15 | 000,000,000 | ---D | C] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth [2011-05-17 19:20:38 | 000,000,000 | ---D | C] -- E:\Users\Darek\Desktop\Nowy folder [2011-05-14 23:45:41 | 000,000,000 | ---D | C] -- E:\Program Files (x86)\Common Files\Java [2011-05-14 23:45:31 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\SysWow64\javaws.exe [2011-05-14 23:45:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\SysWow64\javaw.exe [2011-05-14 23:45:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- E:\Windows\SysWow64\java.exe [2011-05-14 11:09:48 | 005,509,504 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysNative\ntoskrnl.exe [2011-05-14 11:09:48 | 003,957,632 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\ntkrnlpa.exe [2011-05-14 11:09:48 | 003,901,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\ntoskrnl.exe [3 E:\Users\Darek\AppData\Local\*.tmp files -> E:\Users\Darek\AppData\Local\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-06-04 09:14:12 | 000,001,046 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011-06-04 09:14:00 | 000,001,042 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011-06-04 09:08:37 | 000,010,016 | -H-- | M] () -- E:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-06-04 09:08:37 | 000,010,016 | -H-- | M] () -- E:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-06-04 09:03:32 | 000,000,984 | ---- | M] () -- E:\Windows\tasks\Google Software Updater.job [2011-06-04 09:01:10 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat [2011-06-04 09:01:05 | 3220,480,000 | -HS- | M] () -- E:\hiberfil.sys [2011-06-03 16:11:41 | 000,580,096 | ---- | M] (OldTimer Tools) -- E:\Users\Darek\Desktop\OTL.exe [2011-06-03 15:54:06 | 000,879,092 | ---- | M] () -- E:\Users\Darek\Desktop\SecurityCheck.exe [2011-06-02 19:50:21 | 047,571,456 | ---- | M] () -- E:\Users\Darek\Desktop\eav_nt64_plk.msi [2011-06-02 08:29:03 | 000,001,770 | ---- | M] () -- E:\Users\Darek\Desktop\Crysis2.lnk [2011-05-31 00:08:21 | 000,346,392 | ---- | M] () -- E:\Windows\SysNative\FNTCACHE.DAT [2011-05-29 14:49:18 | 000,327,866 | ---- | M] () -- E:\Windows\System\latest.dat [2011-05-29 14:49:16 | 000,000,124 | ---- | M] () -- E:\Windows\System\update.dat [2011-05-27 20:06:55 | 000,000,000 | ---- | M] () -- E:\Users\Darek\AppData\Local\{DCE025DC-E249-4FE6-95AF-03A9AE31E988} [2011-05-27 12:09:36 | 000,326,284 | ---- | M] () -- E:\Windows\System\tubelist.dat [2011-05-25 09:25:40 | 002,560,616 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvsvcr.dll [2011-05-25 09:25:39 | 003,040,872 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvsvc64.dll [2011-05-25 09:25:39 | 000,061,544 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvshext.dll [2011-05-25 09:25:36 | 000,117,864 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvmctray.dll [2011-05-25 09:25:30 | 006,300,776 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcpl.dll [2011-05-25 09:25:28 | 000,739,432 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\easyupdatusapiu64.dll [2011-05-25 09:25:27 | 008,863,336 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvwgf2umx.dll [2011-05-25 09:25:27 | 000,067,176 | ---- | M] (Khronos Group) -- E:\Windows\SysNative\OpenCL.dll [2011-05-25 09:25:27 | 000,057,960 | ---- | M] (Khronos Group) -- E:\Windows\SysWow64\OpenCL.dll [2011-05-25 09:25:26 | 022,286,952 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvoglv64.dll [2011-05-25 09:25:26 | 006,555,240 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvwgf2um.dll [2011-05-25 09:25:25 | 016,456,296 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvoglv32.dll [2011-05-25 09:25:23 | 015,223,912 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvd3dumx.dll [2011-05-25 09:25:23 | 001,496,168 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvdispco6420150.dll [2011-05-25 09:25:23 | 001,427,048 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvgenco642090.dll [2011-05-25 09:25:23 | 000,007,384 | ---- | M] () -- E:\Windows\SysNative\nvinfo.pb [2011-05-25 09:25:22 | 011,992,680 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvd3dum.dll [2011-05-25 09:25:20 | 018,583,144 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcompiler.dll [2011-05-25 09:25:20 | 013,011,560 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcompiler.dll [2011-05-25 09:25:20 | 007,123,560 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuda.dll [2011-05-25 09:25:20 | 005,301,352 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuda.dll [2011-05-25 09:25:20 | 002,943,592 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuvid.dll [2011-05-25 09:25:20 | 002,804,328 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuvid.dll [2011-05-25 09:25:20 | 002,212,968 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvcuvenc.dll [2011-05-25 09:25:20 | 002,082,408 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvcuvenc.dll [2011-05-25 09:25:17 | 002,644,584 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\nvapi64.dll [2011-05-25 09:25:17 | 002,335,848 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysWow64\nvapi.dll [2011-05-25 09:25:17 | 000,012,392 | ---- | M] (NVIDIA Corporation) -- E:\Windows\SysNative\drivers\nvBridge.kmd [2011-05-22 17:38:11 | 000,000,773 | ---- | M] () -- E:\Users\Darek\Desktop\Nowy folder — skrót.lnk [2011-05-22 12:35:02 | 002,203,300 | ---- | M] () -- E:\Windows\SysNative\perfh015.dat [2011-05-22 12:35:02 | 001,356,218 | ---- | M] () -- E:\Windows\SysNative\perfh009.dat [2011-05-22 12:35:02 | 000,818,612 | ---- | M] () -- E:\Windows\SysNative\perfc009.dat [2011-05-22 12:35:02 | 000,744,412 | ---- | M] () -- E:\Windows\SysNative\perfc015.dat [2011-05-22 12:35:01 | 000,004,568 | ---- | M] () -- E:\Windows\SysNative\PerfStringBackup.INI [2011-05-20 22:35:28 | 000,304,744 | ---- | M] () -- E:\Windows\SysWow64\nvStreaming.exe [2011-05-20 11:49:17 | 000,178,453 | ---- | M] () -- E:\Users\Darek\Documents\c.jpg [2011-05-20 11:44:15 | 000,002,178 | ---- | M] () -- E:\Users\Public\Desktop\Google Earth.lnk [2011-05-19 17:35:29 | 003,026,474 | ---- | M] () -- E:\Users\Darek\Desktop\Get Far feat. H-Boogie - The Radio pobrano z ulub_pl.mp3 [2011-05-16 23:32:11 | 023,664,128 | ---- | M] () -- E:\Users\Darek\Desktop\witcher2.exe [2011-05-16 21:56:48 | 001,501,176 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0472.jpg [2011-05-16 18:22:53 | 001,725,384 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0473.jpg [2011-05-16 18:22:46 | 001,580,033 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0474.jpg [2011-05-16 18:22:45 | 001,211,795 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0471.jpg [2011-05-16 18:22:24 | 001,275,418 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0467.jpg [2011-05-16 18:21:07 | 000,000,000 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0469.jpg [2011-05-16 18:21:06 | 001,233,771 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0468.jpg [2011-05-16 18:21:00 | 000,000,000 | ---- | M] () -- E:\Users\Darek\Documents\IMAG0470.jpg [2011-05-13 14:32:22 | 003,749,125 | ---- | M] () -- E:\Users\Darek\Desktop\uszer- more remix.mp3 [2011-05-09 16:50:58 | 000,000,000 | ---- | M] () -- E:\Users\Darek\AppData\Local\{C0E1CB47-CCFB-4B7F-AF98-924D3F0FC8DB} [2011-05-08 02:58:23 | 002,984,260 | ---- | M] () -- E:\Users\Darek\Desktop\hejhejhej.mp3 [2011-05-07 17:52:03 | 000,000,000 | ---- | M] () -- E:\Users\Darek\AppData\Local\{76E235B2-9047-4BF3-B530-8406562C126D} [2011-05-07 17:51:17 | 000,000,000 | ---- | M] () -- E:\Users\Darek\AppData\Local\{8D21502F-93D6-4BDB-B9BC-47F84EC0C636} [3 E:\Users\Darek\AppData\Local\*.tmp files -> E:\Users\Darek\AppData\Local\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-06-03 15:54:03 | 000,879,092 | ---- | C] () -- E:\Users\Darek\Desktop\SecurityCheck.exe [2011-06-02 19:59:59 | 000,001,345 | ---- | C] () -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2011-06-02 19:59:44 | 000,001,547 | ---- | C] () -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2011-06-02 19:49:36 | 047,571,456 | ---- | C] () -- E:\Users\Darek\Desktop\eav_nt64_plk.msi [2011-06-02 17:38:10 | 000,175,616 | ---- | C] () -- E:\Windows\SysWow64\unrar.dll [2011-06-02 17:24:59 | 000,258,048 | ---- | C] () -- E:\Windows\SysWow64\libFLAC.dll [2011-06-02 08:29:03 | 000,001,770 | ---- | C] () -- E:\Users\Darek\Desktop\Crysis2.lnk [2011-06-02 00:15:54 | 023,664,128 | ---- | C] () -- E:\Users\Darek\Desktop\witcher2.exe [2011-05-27 20:06:55 | 000,000,000 | ---- | C] () -- E:\Users\Darek\AppData\Local\{DCE025DC-E249-4FE6-95AF-03A9AE31E988} [2011-05-22 17:38:11 | 000,000,773 | ---- | C] () -- E:\Users\Darek\Desktop\Nowy folder — skrót.lnk [2011-05-20 22:35:28 | 000,304,744 | ---- | C] () -- E:\Windows\SysWow64\nvStreaming.exe [2011-05-20 11:49:16 | 000,178,453 | ---- | C] () -- E:\Users\Darek\Documents\c.jpg [2011-05-20 11:44:15 | 000,002,178 | ---- | C] () -- E:\Users\Public\Desktop\Google Earth.lnk [2011-05-19 17:35:27 | 003,026,474 | ---- | C] () -- E:\Users\Darek\Desktop\Get Far feat. H-Boogie - The Radio pobrano z ulub_pl.mp3 [2011-05-16 18:21:07 | 000,000,000 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0469.jpg [2011-05-16 18:21:00 | 000,000,000 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0470.jpg [2011-05-16 18:20:54 | 001,211,795 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0471.jpg [2011-05-16 18:20:46 | 001,501,176 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0472.jpg [2011-05-16 18:20:41 | 001,725,384 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0473.jpg [2011-05-16 18:20:35 | 001,580,033 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0474.jpg [2011-05-16 18:20:31 | 001,275,418 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0467.jpg [2011-05-16 18:20:26 | 001,233,771 | ---- | C] () -- E:\Users\Darek\Documents\IMAG0468.jpg [2011-05-14 20:04:44 | 000,326,284 | ---- | C] () -- E:\Windows\System\tubelist.dat [2011-05-13 14:29:46 | 003,749,125 | ---- | C] () -- E:\Users\Darek\Desktop\uszer- more remix.mp3 [2011-05-09 16:50:58 | 000,000,000 | ---- | C] () -- E:\Users\Darek\AppData\Local\{C0E1CB47-CCFB-4B7F-AF98-924D3F0FC8DB} [2011-05-08 02:56:06 | 002,984,260 | ---- | C] () -- E:\Users\Darek\Desktop\hejhejhej.mp3 [2011-05-07 17:52:03 | 000,000,000 | ---- | C] () -- E:\Users\Darek\AppData\Local\{76E235B2-9047-4BF3-B530-8406562C126D} [2011-05-07 17:50:37 | 000,000,000 | ---- | C] () -- E:\Users\Darek\AppData\Local\{8D21502F-93D6-4BDB-B9BC-47F84EC0C636} [2011-03-25 14:52:29 | 000,013,931 | ---- | C] () -- E:\Windows\SysWow64\RaCoInst.dat [2010-05-20 16:59:50 | 000,000,023 | ---- | C] () -- E:\Windows\BlendSettings.ini [2010-02-07 17:03:10 | 000,043,520 | ---- | C] () -- E:\Windows\SysWow64\CmdLineExt03.dll [2010-02-06 20:43:12 | 000,000,056 | -H-- | C] () -- E:\Windows\SysWow64\ezsidmv.dat [2009-11-24 23:40:05 | 000,007,598 | ---- | C] () -- E:\Users\Darek\AppData\Local\Resmon.ResmonCfg [2009-11-22 13:50:52 | 000,007,168 | ---- | C] () -- E:\Windows\SysWow64\drivers\StarOpen.sys [2009-11-13 23:06:30 | 000,000,030 | ---- | C] () -- E:\Windows\SysWow64\brss01a.ini [2009-11-13 23:06:29 | 000,000,462 | ---- | C] () -- E:\Windows\BRWMARK.INI [2009-11-13 23:06:29 | 000,000,027 | ---- | C] () -- E:\Windows\BRPP2KA.INI [2009-11-13 23:04:55 | 000,106,496 | ---- | C] () -- E:\Windows\SysWow64\BrMuSNMP.dll [2009-11-09 21:56:05 | 000,066,872 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrA.exe [2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- E:\Windows\bootstat.dat [2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- E:\Windows\SysWow64\NOISE.DAT [2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- E:\Windows\SysWow64\dssec.dat [2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- E:\Windows\mib.bin [2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- E:\Windows\SysWow64\msjetoledb40.dll [2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- E:\Windows\SysWow64\mlang.dat [2008-10-28 18:40:48 | 000,173,552 | ---- | C] () -- E:\Windows\SysWow64\xlive.dll.cat [2007-12-28 09:22:02 | 000,010,296 | ---- | C] () -- E:\Windows\SysWow64\drivers\ASUSHWIO.SYS [2006-07-27 17:18:28 | 003,596,288 | ---- | C] () -- E:\Windows\SysWow64\qt-dx331.dll [2002-11-18 18:02:58 | 000,040,960 | ---- | C] () -- E:\Windows\SysWow64\MMAVILNG.exe [2002-11-15 15:11:28 | 000,077,824 | ---- | C] () -- E:\Windows\SysWow64\MMSwitch.dll [2002-10-06 21:42:58 | 000,237,568 | ---- | C] () -- E:\Windows\SysWow64\OggDS.dll [2002-10-05 02:04:26 | 000,921,600 | ---- | C] () -- E:\Windows\SysWow64\vorbisenc.dll [2002-10-05 02:04:26 | 000,188,416 | ---- | C] () -- E:\Windows\SysWow64\VORBIS.DLL [2002-10-05 02:04:18 | 000,045,056 | ---- | C] () -- E:\Windows\SysWow64\OGG.DLL [color=#E56717]========== LOP Check ==========[/color] [2011-04-29 03:46:13 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\.minecraft [2011-04-08 18:32:56 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\BlackBean [2009-11-22 14:18:30 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\Canneverbe_Limited [2010-02-11 23:17:16 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\Canon [2010-01-31 11:20:09 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\CityInteractive [2010-01-24 09:43:15 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\DAEMON Tools Lite [2011-03-10 21:10:56 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\foobar2000 [2011-05-22 16:31:10 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\Gadu-Gadu 10 [2009-11-11 11:30:36 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\GetRightToGo [2011-02-18 17:59:39 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\Hardcore [2010-01-29 21:35:41 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\OpenFM [2010-12-10 21:35:55 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\runic games [2011-04-10 13:08:50 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\SPORE [2010-03-09 17:33:27 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\Ubisoft [2011-06-02 17:52:56 | 000,000,000 | ---D | M] -- E:\Users\Darek\AppData\Roaming\uTorrent [2011-05-19 15:09:34 | 000,032,604 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] < End of report >