OTL logfile created on: 2011-07-07 09:34:25 - Run 2
OTL by OldTimer - Version 3.2.26.0     Folder = C:\Users\Operator\Downloads
Windows Vista Business Edition  (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16609)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
893,71 Mb Total Physical Memory | 349,77 Mb Available Physical Memory | 39,14% Memory free
2,00 Gb Paging File | 1,43 Gb Available in Paging File | 71,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 72,42 Gb Total Space | 45,67 Gb Free Space | 63,07% Space Free | Partition Type: NTFS
Drive D: | 2,00 Gb Total Space | 0,76 Gb Free Space | 38,00% Space Free | Partition Type: NTFS
Drive F: | 3,78 Gb Total Space | 3,49 Gb Free Space | 92,24% Space Free | Partition Type: FAT32
 
Computer Name: LAPTOP | User Name: Operator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-07-06 13:01:49 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Operator\Downloads\OTL.exe
PRC - [2010-03-26 10:35:42 | 001,286,144 | ---- | M] (Luidia, Inc.) -- C:\Program Files\Luidia\eBeam Device Service\eBeamDeviceServiceUI.exe
PRC - [2010-03-26 10:35:10 | 000,180,224 | ---- | M] (Luidia, Inc.) -- C:\Program Files\Luidia\eBeam Device Service\eBeamDeviceServiceMain.exe
PRC - [2008-05-09 22:52:03 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-07-06 13:01:49 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Operator\Downloads\OTL.exe
MOD - [2006-11-02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-07-07 09:25:27 | 000,490,368 | ---- | M] (Sysinternals - www.sysinternals.com) [On_Demand | Stopped] -- C:\Users\Operator\AppData\Local\Temp\FWAT.exe -- (FWAT)
SRV - [2011-07-05 16:46:11 | 000,289,360 | ---- | M] () [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe -- (ArcaRemoteService)
SRV - [2011-07-05 16:45:49 | 000,117,328 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaUpdate\update.exe -- (AVUpdate)
SRV - [2010-05-19 18:06:02 | 000,122,152 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe -- (ABMainSV)
SRV - [2010-04-27 20:31:56 | 000,096,848 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaTasksService.exe -- (AVTasks2)
SRV - [2010-03-26 10:35:10 | 000,180,224 | ---- | M] (Luidia, Inc.) [Auto | Running] -- C:\Program Files\Luidia\eBeam Device Service\eBeamDeviceServiceMain.exe -- (eBeam Device Service)
SRV - [2010-02-05 18:36:40 | 000,207,440 | ---- | M] (ArcaBit) [On_Demand | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaBit.Core.Configurator2.exe -- (ArcaBit.Core.Configurator)
SRV - [2009-09-11 16:44:38 | 000,248,400 | ---- | M] (ArcaBit) [On_Demand | Stopped] -- C:\Program Files\ArcaBit\Common\ArcaBit.Core.LoggingService.exe -- (ArcaBit.Core.LoggingService)
SRV - [2009-09-11 16:37:48 | 000,178,768 | ---- | M] (ArcaBit) [Auto | Stopped] -- C:\Program Files\ArcaBit\ArcaTools\arcabackup\ArcaBackupService.exe -- (AVBackup)
SRV - [2008-05-09 22:54:36 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008-01-03 20:05:32 | 000,102,400 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\System32\stacsv.exe -- (STacSV)
SRV - [2007-11-08 23:50:10 | 001,552,384 | ---- | M] () [Auto | Stopped] -- C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe -- (tcsd_win32.exe)
SRV - [2007-09-13 15:31:44 | 000,192,512 | ---- | M] (Wave Systems Corp.) [On_Demand | Stopped] -- C:\Program Files\Wave Systems Corp\Authentication Manager\WaveEnrollmentService.exe -- (WaveEnrollmentService)
SRV - [2007-08-31 18:39:18 | 000,486,400 | ---- | M] (Wave Systems Corp.) [On_Demand | Stopped] -- C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe -- (SecureStorageService)
SRV - [2007-04-27 09:32:06 | 000,386,592 | ---- | M] (Dell Inc.) [Auto | Stopped] -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe -- (nicconfigsvc)
SRV - [2006-12-19 15:21:48 | 000,079,432 | ---- | M] (Broadcom Corporation) [Auto | Stopped] -- C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe -- (ASFIPmon)
SRV - [2006-12-09 20:04:10 | 000,128,832 | ---- | M] (Microsoft (R) Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft Firewall Client 2004\FwcAgent.exe -- (FwcAgent)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2010-09-08 16:35:44 | 000,051,792 | ---- | M] (ArcaBit) [File_System | On_Demand | Running] -- C:\Program Files\ArcaBit\ArcaVir\ABFLT.sys -- (ABFLT)
DRV - [2009-12-01 20:14:36 | 000,034,384 | ---- | M] (ArcaBit) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\abndis.sys -- (ABndisMP)
DRV - [2009-12-01 20:14:36 | 000,034,384 | ---- | M] (ArcaBit) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\abndis.sys -- (ABndis)
DRV - [2008-02-26 16:45:12 | 000,051,208 | ---- | M] (ArcaBit) [Kernel | System | Running] -- C:\Program Files\ArcaBit\ArcaVir\ABTDI.sys -- (ABTDI)
DRV - [2008-01-03 20:05:40 | 000,330,240 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2007-09-24 11:27:26 | 000,155,136 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007-09-10 10:54:48 | 000,156,160 | ---- | M] (Wave Systems Corp.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\WavxDMgr.sys -- (WavxDMgr)
DRV - [2007-09-07 10:57:14 | 000,026,608 | ---- | M] (Dell Inc) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\PBADRV.sys -- (PBADRV)
DRV - [2007-04-25 11:15:26 | 002,387,456 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007-02-01 11:22:44 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006-12-19 15:21:52 | 000,010,480 | ---- | M] (Broadcom Corporation) [Kernel | Auto | Running] -- C:\Program Files\Broadcom\ASFIPMon\BASFND.sys -- (BASFND)
DRV - [2006-11-02 09:30:55 | 000,200,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Sterownik połączenia sieciowego Intel(R)
DRV - [2006-10-30 11:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = sbs2008:8080
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = sbs2008:8080
 
 
 
IE - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = sbs2008:8080
 
[color=#E56717]========== FireFox ==========[/color]
 
 
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
 
FF - HKLM\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-05 15:40:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKCU\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-07-05 15:40:04 | 000,000,000 | ---D | M]
FF - HKCU\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2011-07-05 15:41:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Operator\AppData\Roaming\mozilla\Extensions
[2011-07-05 15:40:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- 
[2011-06-16 06:51:12 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [ABRegmon] C:\Program Files\ArcaBit\ArcaVir\ABregmon.exe (ArcaBit)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AvMenu] C:\Program Files\ArcaBit\ArcaVir\AVMenu.exe (ArcaBit)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SecureUpgrade] C:\Program Files\Wave Systems Corp\SecureUpgrade.exe (Wave Systems Corp.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] c:\Program Files\Java\jre1.6.0\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WavXMgr] C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\WavXDocMgr.exe (Wave Systems Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000..\Run: []  File not found
O4 - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKLM..\RunOnce: []  File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMSAppLogo5ChannelNotify = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disablecad = 0
O7 - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O7 - HKU\S-1-5-21-1541029781-3915748188-2601880419-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll (Sun Microsystems, Inc.)
O9 - Extra Button: ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - C:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o)
O9 - Extra 'Tools' menuitem : ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - C:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Microsoft Firewall Client 2004\FwcWsp.dll (Microsoft (R) Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.10 194.204.159.1 194.204.152.34
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = sbsmen.edu.pl
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\gemsafe: DllName - C:\Program Files\Gemplus\GemSafe Libraries\BIN\WLEventNotify.dll - C:\Program Files\Gemplus\GemSafe Libraries\BIN\WLEventNotify.dll (Gemplus)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\dellwall1.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\dellwall1.jpg
O30 - LSA: Authentication Packages - (wvauth) - C:\Windows\System32\wvauth.dll (Wave Systems Corp.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-07-07 09:32:23 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-07-07 09:32:23 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-07-07 09:32:23 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2011-07-06 13:50:08 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011-07-05 16:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcaBit
[2011-07-05 16:42:03 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Local\GHISLER
[2011-07-05 16:03:34 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011-07-05 15:41:12 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Local\Mozilla
[2011-07-05 15:41:11 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Roaming\Mozilla
[2011-07-05 15:39:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011-06-28 20:28:51 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Roaming\Temp
[2011-06-28 20:28:51 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Roaming\Configuration
[2011-06-08 09:50:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Czcionki
[2011-06-08 09:33:43 | 000,000,000 | ---D | C] -- C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avalon
[2011-06-08 09:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avalon
[2011-06-08 09:32:27 | 000,000,000 | ---D | C] -- C:\Program Files\Avalon
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-07-07 09:35:00 | 000,000,434 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{CACF39C1-5AA6-4F68-B3BA-511571F3A86D}.job
[2011-07-07 09:32:23 | 000,019,762 | ---- | M] () -- C:\UsbFix_Upload_Me_LAPTOP.zip
[2011-07-07 09:31:49 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011-07-07 09:31:49 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011-07-07 09:07:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-07-06 15:07:38 | 000,000,000 | ---- | M] () -- C:\Users\Operator\AppData\Local\WavXMapDrive.bat
[2011-07-06 13:55:20 | 937,771,008 | -HS- | M] () -- C:\hiberfil.sys
[2011-07-06 13:55:17 | 109,646,507 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011-07-05 16:44:30 | 000,000,480 | ---- | M] () -- C:\Users\Operator\Desktop\fix.bat
[2011-07-05 15:40:09 | 000,000,848 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-06-28 19:56:34 | 000,017,920 | ---- | M] () -- C:\Users\Operator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-06-15 09:55:10 | 000,001,768 | ---- | M] () -- C:\Users\Operator\Desktop\Windows Movie Maker.lnk
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-07-06 13:55:19 | 937,771,008 | -HS- | C] () -- C:\hiberfil.sys
[2011-07-06 13:49:52 | 109,646,507 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011-07-05 16:25:30 | 000,000,480 | ---- | C] () -- C:\Users\Operator\Desktop\fix.bat
[2011-07-05 16:09:41 | 000,019,762 | ---- | C] () -- C:\UsbFix_Upload_Me_LAPTOP.zip
[2011-07-05 15:40:09 | 000,000,860 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011-07-05 15:40:09 | 000,000,848 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-06-15 09:55:10 | 000,001,768 | ---- | C] () -- C:\Users\Operator\Desktop\Windows Movie Maker.lnk
[2011-04-11 09:15:06 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BuEResNT.dll
[2010-10-22 12:58:37 | 000,017,920 | ---- | C] () -- C:\Users\Operator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-07-06 16:41:49 | 000,000,680 | ---- | C] () -- C:\Users\Operator\AppData\Local\d3d9caps.dat
[2010-04-30 12:22:39 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009-02-27 13:44:52 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2009-02-05 11:59:44 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2009-02-05 11:59:44 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2009-02-05 11:59:44 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2009-02-05 11:52:51 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2009-01-23 14:16:27 | 000,001,033 | ---- | C] () -- C:\Windows\VPlayer.INI
[2008-12-18 10:13:28 | 000,283,648 | ---- | C] () -- C:\Windows\unin0415.exe
[2008-06-21 13:25:25 | 000,000,000 | ---- | C] () -- C:\Users\Operator\AppData\Local\WavXMapDrive.bat
[2008-05-09 23:09:13 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2008-05-09 23:09:13 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008-05-09 23:09:13 | 000,128,813 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2008-05-09 15:50:11 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2008-05-09 15:50:09 | 000,024,064 | ---- | C] () -- C:\Windows\System32\WLTRYSVC.EXE
[2008-05-09 15:39:00 | 000,080,368 | ---- | C] () -- C:\Windows\System32\pbadrvdll.dll
[2008-05-09 15:38:53 | 000,143,360 | ---- | C] () -- C:\Windows\System32\bioapi_mds300.dll
[2008-05-09 15:38:53 | 000,106,496 | ---- | C] () -- C:\Windows\System32\bioapi100.dll
[2008-05-01 12:49:01 | 000,025,076 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2007-09-13 15:42:30 | 000,499,712 | ---- | C] () -- C:\Windows\System32\AmRes_ru.dll
[2007-09-13 15:42:30 | 000,471,040 | ---- | C] () -- C:\Windows\System32\AmRes_pt-BR.dll
[2007-09-13 15:42:28 | 000,487,424 | ---- | C] () -- C:\Windows\System32\AmRes_it.dll
[2007-09-13 15:42:28 | 000,487,424 | ---- | C] () -- C:\Windows\System32\AmRes_fr.dll
[2007-09-13 15:42:28 | 000,462,848 | ---- | C] () -- C:\Windows\System32\AmRes_ko.dll
[2007-09-13 15:42:28 | 000,458,752 | ---- | C] () -- C:\Windows\System32\AmRes_ja.dll
[2007-09-13 15:42:26 | 000,487,424 | ---- | C] () -- C:\Windows\System32\AmRes_es.dll
[2007-09-13 15:42:26 | 000,487,424 | ---- | C] () -- C:\Windows\System32\AmRes_de.dll
[2007-09-13 15:42:26 | 000,466,944 | ---- | C] () -- C:\Windows\System32\AmRes_en.dll
[2007-09-13 15:42:26 | 000,434,176 | ---- | C] () -- C:\Windows\System32\AmRes_zh-CHT.dll
[2007-09-13 15:36:24 | 000,438,272 | ---- | C] () -- C:\Windows\System32\AmRes_zh-CHS.dll
[2007-09-13 15:32:36 | 000,176,128 | ---- | C] () -- C:\Windows\System32\CacheFP.exe
[2007-09-12 16:05:08 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_pt.dll
[2007-09-12 16:04:46 | 000,086,016 | ---- | C] () -- C:\Windows\System32\Internationalization_zh-CHT.dll
[2007-09-12 16:04:26 | 000,090,112 | ---- | C] () -- C:\Windows\System32\Internationalization_ko.dll
[2007-09-12 16:04:06 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_es.dll
[2007-09-12 16:03:44 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_ru.dll
[2007-09-12 16:03:24 | 000,090,112 | ---- | C] () -- C:\Windows\System32\Internationalization_ja.dll
[2007-09-12 16:03:04 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_it.dll
[2007-09-12 16:02:44 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_de.dll
[2007-09-12 16:02:22 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_fr.dll
[2007-09-12 16:02:02 | 000,086,016 | ---- | C] () -- C:\Windows\System32\Internationalization_zh-CHS.dll
[2007-09-10 10:53:26 | 000,262,144 | ---- | C] () -- C:\Windows\System32\wxvault.dll
[2007-06-15 11:19:20 | 000,835,584 | ---- | C] () -- C:\Windows\System32\DemoLicense.dll
[2006-12-05 07:23:05 | 000,332,832 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2006-12-05 07:23:05 | 000,081,798 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2006-12-05 07:23:05 | 000,037,468 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2006-12-05 07:23:05 | 000,000,000 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2006-11-07 21:25:58 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006-11-02 14:56:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006-11-02 14:47:43 | 000,373,208 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006-11-02 14:36:36 | 000,063,488 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2006-11-02 12:33:01 | 000,605,448 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006-11-02 12:33:01 | 000,099,422 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006-11-02 09:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006-11-02 09:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2006-09-17 00:36:50 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006-09-17 00:36:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006-08-14 12:02:10 | 000,072,192 | ---- | C] () -- C:\Windows\System32\xltZlib.dll
[2004-09-10 14:34:00 | 000,917,504 | ---- | C] () -- C:\Windows\System32\lmgr10.dll
[2004-09-10 14:34:00 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ADsSecurity.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-02-26 17:18:50 | 000,000,000 | ---D | M] -- C:\Users\Operator\AppData\Roaming\ArcaBit
[2011-06-28 16:33:32 | 000,000,000 | ---D | M] -- C:\Users\Operator\AppData\Roaming\ArcaVirMicroScan
[2011-05-31 13:51:10 | 000,000,000 | ---D | M] -- C:\Users\Operator\AppData\Roaming\BESTplayer
[2011-06-28 20:28:51 | 000,000,000 | ---D | M] -- C:\Users\Operator\AppData\Roaming\Configuration
[2011-06-28 20:28:51 | 000,000,000 | ---D | M] -- C:\Users\Operator\AppData\Roaming\Temp
[2011-07-06 09:09:01 | 000,032,560 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-07-07 09:35:00 | 000,000,434 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{CACF39C1-5AA6-4F68-B3BA-511571F3A86D}.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >