OTL logfile created on: 2011-06-09 14:26:52 - Run 1 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\bartuś\Desktop 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 54,66% Memory free 7,99 Gb Paging File | 5,91 Gb Available in Paging File | 73,99% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 451,91 Gb Total Space | 74,43 Gb Free Space | 16,47% Space Free | Partition Type: NTFS Drive D: | 13,55 Gb Total Space | 2,25 Gb Free Space | 16,59% Space Free | Partition Type: NTFS Drive E: | 99,02 Mb Total Space | 92,43 Mb Free Space | 93,34% Space Free | Partition Type: FAT32 Unable to calculate disk information. Computer Name: BARTUŚ-KOMPUTER | User Name: bartuś | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-06-09 14:25:13 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\bartuś\Desktop\OTL.exe PRC - [2011-05-25 23:30:14 | 000,063,912 | ---- | M] (Raptr, Inc) -- C:\PROGRA~2\Raptr\raptr.exe PRC - [2011-05-25 23:30:14 | 000,043,944 | ---- | M] (Raptr, Inc) -- C:\PROGRA~2\Raptr\raptr_im.exe PRC - [2011-05-18 18:36:00 | 000,941,936 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe PRC - [2011-05-05 14:44:38 | 013,345,376 | ---- | M] (GG Network S.A.) -- C:\Program Files (x86)\Gadu-Gadu 10\gg.exe PRC - [2011-03-22 20:37:06 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Winamp\winampa.exe PRC - [2010-12-24 15:21:19 | 000,395,640 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe PRC - [2010-10-27 20:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010-10-14 18:27:38 | 000,092,216 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe PRC - [2010-03-18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2009-10-06 00:08:42 | 000,210,216 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe PRC - [2009-09-04 14:35:14 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe PRC - [2009-07-17 16:25:20 | 000,842,816 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe PRC - [2009-07-17 16:25:20 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe PRC - [2009-07-14 03:14:28 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\PING.EXE PRC - [2009-01-19 18:14:00 | 000,042,687 | ---- | M] () -- C:\Users\bartuś\AppData\Local\winlogon.exe PRC - [2009-01-19 18:14:00 | 000,042,687 | ---- | M] () -- C:\Users\bartuś\AppData\Local\services.exe PRC - [2009-01-19 18:14:00 | 000,042,687 | ---- | M] () -- C:\Users\bartuś\AppData\Local\lsass.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-06-09 14:25:13 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\bartuś\Desktop\OTL.exe MOD - [2011-05-18 03:53:06 | 000,074,664 | ---- | M] (Raptr Inc.) -- C:\PROGRA~2\Raptr\ltc_help32-51289.dll MOD - [2010-08-21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll MOD - [2009-12-29 08:55:34 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2010-09-22 19:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV:[b]64bit:[/b] - [2009-09-04 14:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins) SRV:[b]64bit:[/b] - [2009-08-05 06:44:56 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:[b]64bit:[/b] - [2009-07-22 03:33:32 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe -- (STacSV) SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-12 23:18:24 | 001,924,400 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\SysNative\vcsFPService.exe -- (vcsFPService) SRV:[b]64bit:[/b] - [2009-07-08 14:49:02 | 000,030,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv) SRV:[b]64bit:[/b] - [2009-03-02 23:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe -- (AESTFilters) SRV - [2010-10-26 17:05:24 | 000,155,344 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony Ericsson PCCompanion) SRV - [2010-10-14 18:27:38 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-03-18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009-07-17 16:25:20 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe -- (DpHost) SRV - [2009-07-14 03:15:31 | 000,396,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS) SRV - [2009-07-14 03:15:31 | 000,396,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC) SRV - [2009-07-14 03:14:53 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc) SRV - [2009-07-12 23:04:26 | 001,656,112 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vcsFPService.exe -- (vcsFPService) SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2009-06-06 02:07:28 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService) SRV - [2009-02-22 13:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-03-20 20:29:43 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc) DRV:[b]64bit:[/b] - [2011-03-20 20:29:43 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt) DRV:[b]64bit:[/b] - [2010-09-23 01:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:[b]64bit:[/b] - [2010-06-23 16:20:44 | 000,189,952 | ---- | M] (Hauppauge, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcwhdpvr.sys -- (hcwhdpvr) DRV:[b]64bit:[/b] - [2010-06-21 13:20:14 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2010-02-26 14:33:40 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt) DRV:[b]64bit:[/b] - [2010-02-26 14:33:24 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:[b]64bit:[/b] - [2010-02-26 14:33:22 | 000,025,088 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64) DRV:[b]64bit:[/b] - [2010-02-26 14:33:22 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64) DRV:[b]64bit:[/b] - [2009-09-21 20:47:14 | 001,484,800 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:[b]64bit:[/b] - [2009-09-17 22:56:24 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid) DRV:[b]64bit:[/b] - [2009-09-17 22:56:16 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap) DRV:[b]64bit:[/b] - [2009-09-17 22:56:14 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt) DRV:[b]64bit:[/b] - [2009-09-17 22:56:10 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio) DRV:[b]64bit:[/b] - [2009-08-05 07:23:00 | 006,038,016 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag) DRV:[b]64bit:[/b] - [2009-07-24 09:49:00 | 000,119,312 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV:[b]64bit:[/b] - [2009-07-22 03:33:32 | 000,487,936 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA) DRV:[b]64bit:[/b] - [2009-07-15 01:16:34 | 000,273,456 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:[b]64bit:[/b] - [2009-07-14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:[b]64bit:[/b] - [2009-07-08 14:49:08 | 000,030,008 | ---- | M] (Hewlett-Packard) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt) DRV:[b]64bit:[/b] - [2009-07-08 14:48:50 | 000,041,272 | ---- | M] (Hewlett-Packard) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer) DRV:[b]64bit:[/b] - [2009-06-29 20:17:00 | 000,070,656 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\enecir.sys -- (enecir) DRV:[b]64bit:[/b] - [2009-06-10 23:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92) DRV:[b]64bit:[/b] - [2009-06-10 23:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac) DRV:[b]64bit:[/b] - [2009-06-10 23:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA) DRV:[b]64bit:[/b] - [2009-06-10 23:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem) DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:[b]64bit:[/b] - [2009-06-10 22:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:[b]64bit:[/b] - [2009-06-10 22:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:[b]64bit:[/b] - [2009-06-10 22:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R) DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009-05-23 08:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2009-05-22 08:32:52 | 000,311,424 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVerAF15.sys -- (AVerAF15) DRV:[b]64bit:[/b] - [2009-05-05 07:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO) DRV:[b]64bit:[/b] - [2009-04-29 09:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) DRV:[b]64bit:[/b] - [2009-03-09 07:49:08 | 000,036,408 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter) DRV:[b]64bit:[/b] - [2008-08-28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com IE - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df IE - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ [2010-02-24 02:44:05 | 000,000,000 | ---D | M] O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (DigitalPersona Personal Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.) O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll () O2 - BHO: (DigitalPersona Personal Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll () O3 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\..\Toolbar\WebBrowser: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll () O4:[b]64bit:[/b] - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe () O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [DpAgent] C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe (DigitalPersona, Inc.) O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS) O4 - HKLM..\Run: [HPCam_Menu] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe (Nullsoft, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000..\Run: [Gadu-Gadu 10] C:\Program Files (x86)\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000..\Run: [Raptr] File not found O4 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000..\Run: [Tok-Cirrhatus] C:\Users\bartuś\AppData\Local\smss.exe () O4 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found O4 - Startup: C:\Users\bartuś\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Empty.pif () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0 O7 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0 O7 - HKU\S-1-5-21-1312970488-2484046678-3195451813-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0 O8:[b]64bit:[/b] - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8:[b]64bit:[/b] - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll () O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-11-27 13:09:55 | 000,000,000 | ---D | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-11-27 13:09:53 | 000,000,000 | ---D | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-11-27 12:09:48 | 000,000,000 | ---D | M] - E:\autorun.inf -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-06-09 14:25:08 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\bartuś\Desktop\OTL.exe [2011-06-09 13:57:00 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{BAA20D8D-9B19-42AC-BAB2-10700C0C9B1E} [2011-06-09 07:20:37 | 002,959,376 | ---- | C] (Microsoft Corporation) -- C:\Users\bartuś\Desktop\dotNetFx35setup.exe [2011-06-08 22:59:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\BestPractices [2011-06-08 22:59:14 | 000,000,000 | ---D | C] -- C:\inetpub [2011-06-08 22:59:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\BestPractices [2011-06-08 22:43:36 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011-06-08 22:19:50 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{0F032668-2137-4863-AD61-C3B58F47ACAF} [2011-06-08 16:55:29 | 000,000,000 | ---D | C] -- C:\Users\bartuś\Desktop\Nowy folder [2011-06-08 07:20:25 | 000,000,000 | ---D | C] -- C:\Windows\XSxS [2011-06-08 07:20:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode [2011-06-08 07:14:17 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{AAF86EE4-5B1E-485C-8640-1920C8D9BD00} [2011-06-07 15:14:07 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{0F4225EC-9CAB-44A8-B9E2-34C083BECD8B} [2011-06-06 19:55:53 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{51DC1FC9-E0D3-400D-9820-BDA0E71134CD} [2011-06-05 22:12:19 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{3CE1DE9D-F740-41D5-8145-51502D34169F} [2011-06-05 11:43:27 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Xenocode [2011-06-05 10:11:48 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{34CF8136-0F24-4D7E-85F7-30C42F1F4217} [2011-06-04 17:23:18 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{00F7294F-EBD3-4C3E-8F52-964733957E24} [2011-06-03 14:31:17 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{334671E3-47D9-4962-8363-0D607B02DD7E} [2011-06-02 19:49:29 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{B52E23CA-4489-4A5D-AF33-050E81D593F0} [2011-06-02 17:01:13 | 000,000,000 | ---D | C] -- C:\Users\bartuś\Desktop\gow 2 [2011-06-02 07:49:03 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{C15820B8-DDE3-4CF6-B997-D0DA2BFC4BBB} [2011-06-01 14:46:38 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{7D15AB21-9998-408D-83A5-6B5ADC146EBB} [2011-05-31 20:05:18 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{D41E48FA-A8E3-42B1-95FD-86C0B91BF6DE} [2011-05-31 07:12:52 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{13C6A1A5-BA9B-4C44-A7D4-F5F58A138002} [2011-05-31 07:11:28 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-31 [2011-05-30 06:13:37 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{05268D0C-A9BF-49B9-B59E-668293FB0161} [2011-05-29 11:19:40 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{E0998AE3-5B2B-4AC3-8F19-5A41A85DF489} [2011-05-28 12:40:51 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{374CB82C-B28E-439C-87F2-874E93B734FC} [2011-05-28 00:40:25 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{1256F2CB-5E74-49FB-A2DC-35DDE1409F21} [2011-05-28 00:40:10 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-28 [2011-05-27 09:54:25 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{C756FDDC-7EB6-4B84-BBD4-7BA661E4D459} [2011-05-26 13:08:19 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{8369DC76-9BF9-4AA2-826D-26641D68138C} [2011-05-25 15:02:36 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{2B073F51-BFBC-49C4-96FB-51CE3BD36186} [2011-05-24 19:15:26 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{CECEF0C6-9E51-40CA-A777-414D6BD8AF56} [2011-05-24 07:14:59 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{7A5A9BB0-E543-4374-8B3C-A5A07669541E} [2011-05-23 13:57:07 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{C1AE518F-6078-4841-A1A0-B8FC96CD0076} [2011-05-22 21:40:01 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{D9DA94A8-73A9-449F-9F61-A6685D6DD56E} [2011-05-22 09:39:35 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{74A3FFFF-BCA4-48BC-93F7-DC599D258006} [2011-05-21 11:18:04 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{4C3BB4A2-4015-4C66-A509-EE60E1B9E7A7} [2011-05-20 13:51:26 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{96AC445A-BB99-40F3-9CCA-C7FF093E1EF9} [2011-05-20 13:51:03 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-20 [2011-05-19 13:55:26 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe [2011-05-19 13:55:26 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe [2011-05-19 13:49:14 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{507DA609-E1E4-4220-A9F2-3644B349E1F0} [2011-05-19 00:00:01 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-19 [2011-05-18 18:49:09 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Roaming\GanymedeNet [2011-05-18 18:47:35 | 000,000,000 | ---D | C] -- C:\Plugins [2011-05-18 18:47:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ganymede [2011-05-18 14:40:21 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{18937BA7-888F-4152-B462-DDA1BA6D876E} [2011-05-18 07:01:06 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-18 [2011-05-17 20:16:26 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{28D6837B-20BC-45EF-BC81-64ED80E83699} [2011-05-17 07:10:31 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{6670A5EA-7BC2-437D-B91A-0324085FA768} [2011-05-17 07:09:48 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-17 [2011-05-16 15:00:04 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{5E882CE9-AB6A-4195-97B4-14F4DD89AF4D} [2011-05-16 00:00:00 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-16 [2011-05-15 11:02:40 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{B9F61620-94B4-4529-AC74-82B9A66CC614} [2011-05-15 11:01:58 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-15 [2011-05-14 13:27:53 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{7ABDB1E0-4010-4FD4-B81E-9ED3A4068BA2} [2011-05-14 01:27:28 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{714F302F-9540-4470-901A-70561C5810F4} [2011-05-14 01:27:14 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-14 [2011-05-13 08:20:32 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{4EF2935A-F49A-463F-9155-4518240371F3} [2011-05-13 08:20:06 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-13 [2011-05-12 12:11:52 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{EA3289CE-13E6-41E8-97A7-0F66EAE77355} [2011-05-12 07:26:38 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-12 [2011-05-11 21:48:24 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{96BC8C70-5548-4493-82DA-9EED6470E316} [2011-05-11 14:47:15 | 005,509,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2011-05-11 14:47:13 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2011-05-11 14:47:13 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2011-05-11 06:18:15 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{A0939011-9B9D-4269-B5B3-567519B2AA06} [2011-05-11 06:17:56 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-11 [2011-05-10 15:46:11 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\{090AA9B9-6AED-49D3-AF4C-90F6E58E35FC} [2011-05-10 15:45:49 | 000,000,000 | ---D | C] -- C:\Users\bartuś\AppData\Local\Bron.tok-12-10 [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-06-09 14:25:13 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\bartuś\Desktop\OTL.exe [2011-06-09 14:12:05 | 000,012,393 | ---- | M] () -- C:\Users\bartuś\AppData\Local\Bron.tok.A12.em.bin [2011-06-09 14:07:38 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-06-09 14:07:38 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-06-09 13:59:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-06-09 13:59:46 | 3218,235,392 | -HS- | M] () -- C:\hiberfil.sys [2011-06-09 07:58:58 | 000,747,598 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2011-06-09 07:58:58 | 000,657,888 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011-06-09 07:58:58 | 000,166,258 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2011-06-09 07:58:58 | 000,126,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011-06-09 07:51:48 | 002,959,376 | ---- | M] (Microsoft Corporation) -- C:\Users\bartuś\Desktop\dotNetFx35setup.exe [2011-06-08 23:02:40 | 001,762,916 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011-06-08 23:01:44 | 001,669,034 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-06-07 21:32:41 | 000,057,344 | ---- | M] () -- C:\Users\bartuś\Desktop\3FABF3CCF2A01A8A331C64F74A450F2A0E47CF194D [2011-06-02 16:56:54 | 000,100,890 | ---- | M] () -- C:\Users\bartuś\Desktop\gow 2.rar [2011-06-01 23:12:49 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForbartuś.job [2011-05-23 21:12:29 | 000,107,501 | ---- | M] () -- C:\Users\bartuś\Desktop\jesus-condom-32417-1265223565-40.jpg [2011-05-12 18:42:47 | 005,997,481 | ---- | M] () -- C:\Users\bartuś\Documents\po.rar [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-06-09 14:12:05 | 000,012,393 | ---- | C] () -- C:\Users\bartuś\AppData\Local\Bron.tok.A12.em.bin [2011-06-08 15:39:09 | 001,669,034 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-06-07 21:32:41 | 000,057,344 | ---- | C] () -- C:\Users\bartuś\Desktop\3FABF3CCF2A01A8A331C64F74A450F2A0E47CF194D [2011-06-02 16:56:54 | 000,100,890 | ---- | C] () -- C:\Users\bartuś\Desktop\gow 2.rar [2011-05-23 21:12:29 | 000,107,501 | ---- | C] () -- C:\Users\bartuś\Desktop\jesus-condom-32417-1265223565-40.jpg [2011-05-12 18:39:30 | 005,997,481 | ---- | C] () -- C:\Users\bartuś\Documents\po.rar [2011-05-05 15:37:01 | 000,000,000 | ---- | C] () -- C:\Windows\iSnooker.INI [2011-04-24 18:59:08 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2011-04-24 18:59:06 | 000,631,808 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2011-04-24 18:59:06 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2011-04-24 18:59:06 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2011-02-02 16:16:59 | 000,161,792 | ---- | C] () -- C:\Windows\SysWow64\drivers\ArcHlp.sys [2011-02-02 16:09:51 | 000,000,569 | ---- | C] () -- C:\Windows\HCWBlast.ini [2011-02-02 16:08:59 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\dmcrypto.dll [2011-02-02 16:08:43 | 000,002,336 | ---- | C] () -- C:\Windows\HCWPNP.INI [2010-11-13 11:36:40 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\winlogon.exe [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\smss.exe [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\services.exe [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\lsass.exe [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\inetinfo.exe [2010-11-06 14:10:07 | 000,042,687 | ---- | C] () -- C:\Users\bartuś\AppData\Local\csrss.exe [2010-06-14 19:50:28 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat [2010-04-02 18:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat [2010-02-24 02:15:32 | 000,000,283 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini [2010-02-24 02:15:32 | 000,000,224 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini [2010-02-24 02:12:21 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2009-12-11 20:24:37 | 000,009,868 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat [2009-09-29 16:25:16 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL [2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 23:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin [2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [color=#E56717]========== LOP Check ==========[/color] [2010-06-21 13:34:29 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\DAEMON Tools Lite [2010-06-14 19:26:04 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\DigitalPersona [2010-11-13 12:22:36 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Gadu-Gadu 10 [2011-05-18 18:49:09 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\GanymedeNet [2010-11-10 23:54:45 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\MusicBrainz [2010-08-27 01:10:49 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Nokia [2010-11-23 22:44:49 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\OpenFM [2010-06-14 19:31:01 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Opera [2010-08-27 01:11:55 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\PC Suite [2011-06-09 14:01:19 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Raptr [2011-02-09 08:21:22 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Sony [2010-11-10 23:52:15 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\TuneUpMedia [2011-06-09 14:31:29 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\uTorrent [2011-03-13 22:51:24 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\Windows Live Writer [2010-06-14 19:50:19 | 000,000,000 | ---D | M] -- C:\Users\bartuś\AppData\Roaming\_MDLogs [2011-06-07 21:11:11 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] < End of report >