OTL logfile created on: 2011-08-17 12:27:28 - Run 1 OTL by OldTimer - Version 3.2.26.5 Folder = H:\Documents and Settings\user\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,25 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 74,33% Memory free 5,09 Gb Paging File | 4,40 Gb Available in Paging File | 86,51% Paging File free Paging file location(s): H:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = H: | %SystemRoot% = H:\WINDOWS | %ProgramFiles% = H:\Program Files Unable to calculate disk information. Drive H: | 292,97 Gb Total Space | 232,63 Gb Free Space | 79,40% Space Free | Partition Type: NTFS Drive I: | 172,78 Gb Total Space | 165,65 Gb Free Space | 95,88% Space Free | Partition Type: NTFS Computer Name: Q-415FDE6457B64 | User Name: user | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-08-17 12:25:51 | 000,580,096 | ---- | M] (OldTimer Tools) -- H:\Documents and Settings\user\Moje dokumenty\Pobieranie\OTL.exe PRC - [2011-08-05 17:35:28 | 000,535,120 | ---- | M] () -- H:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe PRC - [2011-07-25 18:50:13 | 000,491,912 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\ArcaVir\AVMenu.exe PRC - [2011-07-08 09:50:28 | 000,924,632 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011-06-06 18:39:44 | 000,150,992 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe PRC - [2011-06-06 18:39:43 | 000,186,960 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\ArcaTools\ArcaBackup\ArcaBackupService.exe PRC - [2011-06-06 18:16:39 | 000,137,808 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\Common\ArcaConfSV.exe PRC - [2011-05-21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- H:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe PRC - [2011-01-21 13:42:20 | 000,129,616 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\Common\ArcaTasksService.exe PRC - [2010-12-03 13:47:10 | 000,117,328 | ---- | M] (ArcaBit) -- H:\Program Files\ArcaBit\ArcaUpdate\update.exe PRC - [2009-12-01 13:07:13 | 000,557,056 | ---- | M] (BitLeader) -- H:\Program Files\lg_fwupdate\fwupdate.exe PRC - [2009-04-29 11:02:01 | 000,270,336 | R--- | M] (LG Electronics) -- H:\Documents and Settings\user\Bluebirds\BlueBirds.exe PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\explorer.exe PRC - [2008-01-31 17:29:06 | 000,196,608 | R--- | M] (Brother Industries, Ltd.) -- H:\Program Files\Brother\Brmfcmon\BrMfcMon.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-08-05 17:35:28 | 000,535,120 | ---- | M] () -- H:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe MOD - [2011-07-30 00:17:28 | 000,195,152 | ---- | M] () -- H:\Program Files\ArcaBit\ArcaVir\AVShell.dll MOD - [2011-07-17 20:10:10 | 006,271,136 | ---- | M] () -- H:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2011-07-08 09:50:29 | 001,850,328 | ---- | M] () -- H:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2009-01-27 21:37:20 | 007,331,840 | ---- | M] () -- H:\Program Files\Common Files\LightScribe\QtGui4.dll MOD - [2009-01-27 21:37:20 | 002,023,424 | ---- | M] () -- H:\Program Files\Common Files\LightScribe\QtCore4.dll MOD - [2009-01-27 21:37:10 | 000,135,168 | ---- | M] () -- H:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2011-08-05 17:35:28 | 000,535,120 | ---- | M] () [Auto | Running] -- H:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe -- (ArcaRemoteService) SRV - [2011-06-06 18:39:44 | 000,150,992 | ---- | M] (ArcaBit) [Auto | Running] -- H:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe -- (ABMainSV) SRV - [2011-06-06 18:39:43 | 000,186,960 | ---- | M] (ArcaBit) [Auto | Running] -- H:\Program Files\ArcaBit\ArcaTools\ArcaBackup\ArcaBackupService.exe -- (AVBackup) SRV - [2011-06-06 18:16:39 | 000,137,808 | ---- | M] (ArcaBit) [Auto | Running] -- H:\Program Files\ArcaBit\Common\ArcaConfSV.exe -- (ABConfSV) SRV - [2011-05-21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- H:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011-01-21 13:42:20 | 000,129,616 | ---- | M] (ArcaBit) [Auto | Running] -- H:\Program Files\ArcaBit\Common\ArcaTasksService.exe -- (AVTasks2) SRV - [2010-12-03 13:47:10 | 000,117,328 | ---- | M] (ArcaBit) [Auto | Running] -- H:\Program Files\ArcaBit\ArcaUpdate\update.exe -- (AVUpdate) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- H:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008-12-08 17:15:26 | 000,068,136 | ---- | M] () [Auto | Stopped] -- H:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-08-17 12:00:56 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- H:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2011-06-06 18:39:44 | 000,052,304 | ---- | M] (ArcaBit) [File_System | On_Demand | Stopped] -- H:\Program Files\ArcaBit\ArcaVir\ABFLT.sys -- (ABFLT) DRV - [2011-04-01 05:11:10 | 004,333,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam 300(UVC) DRV - [2011-04-01 05:09:48 | 000,291,424 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS) DRV - [2010-10-26 13:04:30 | 000,051,280 | ---- | M] (ArcaBit) [Kernel | System | Running] -- H:\Program Files\ArcaBit\ArcaVir\ABTDI.sys -- (ABTDI) DRV - [2010-05-07 19:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon) DRV - [2010-04-28 07:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- H:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2010-02-26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-02-26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-02-26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-02-26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2009-10-07 10:49:50 | 000,023,832 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService) DRV - [2009-10-07 10:46:12 | 000,114,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt) DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-01-13 13:10:08 | 005,015,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-11-04 04:52:38 | 000,114,472 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm) DRV - [2008-11-04 04:52:38 | 000,108,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM) DRV - [2008-11-04 04:52:38 | 000,086,696 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM) DRV - [2008-11-04 04:52:38 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS) DRV - [2008-11-04 04:52:38 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl) DRV - [2008-11-04 04:52:36 | 000,109,736 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM) DRV - [2008-11-04 04:52:36 | 000,104,616 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex) DRV - [2008-10-30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-05-08 16:13:16 | 000,060,288 | ---- | M] (VerySoft) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\verysplit.sys -- (VERYSPLIT) DRV - [2008-01-09 13:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2007-09-25 16:46:32 | 000,015,360 | ---- | M] (VerySoft LLC) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\vsaudio.sys -- (VSAudio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-725345543-1580436667-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\S-1-5-21-725345543-1580436667-1801674531-1004\..\URLSearchHook: {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - H:\WINDOWS\system32\dvmurl.dll (DeviceVM Inc.) IE - HKU\S-1-5-21-725345543-1580436667-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: cssreloader@kenneth.io:1.0.2 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1" FF - prefs.js..network.proxy.backup.ftp_port: 9666 FF - prefs.js..network.proxy.backup.gopher: "127.0.0.1" FF - prefs.js..network.proxy.backup.gopher_port: 9666 FF - prefs.js..network.proxy.backup.socks: "127.0.0.1" FF - prefs.js..network.proxy.backup.socks_port: 9666 FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1" FF - prefs.js..network.proxy.backup.ssl_port: 9666 FF - prefs.js..network.proxy.ftp: "127.0.0.1" FF - prefs.js..network.proxy.ftp_port: 9666 FF - prefs.js..network.proxy.gopher: "127.0.0.1" FF - prefs.js..network.proxy.gopher_port: 9666 FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 9666 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "127.0.0.1" FF - prefs.js..network.proxy.socks_port: 9666 FF - prefs.js..network.proxy.ssl: "127.0.0.1" FF - prefs.js..network.proxy.ssl_port: 9666 FF - prefs.js..network.proxy.type: 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: H:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: H:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: H:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: H:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: h:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: h:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: h:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: H:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2011-07-17 16:35:12 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2011-07-17 16:35:44 | 000,000,000 | ---D | M] (No name found) -- H:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions [2011-08-16 14:40:22 | 000,000,000 | ---D | M] (No name found) -- H:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\pam208xz.default\extensions [2011-08-10 23:38:08 | 000,000,000 | ---D | M] (Microsoft Choice Guard) -- H:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\pam208xz.default\extensions\ChoiceGuard@Microsoft [2011-07-17 17:00:48 | 000,000,000 | ---D | M] (Polski slownik poprawnej pisowni) -- H:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\pam208xz.default\extensions\pl@dictionaries.addons.mozilla.org [2011-07-17 16:35:12 | 000,000,000 | ---D | M] (No name found) -- H:\Program Files\Mozilla Firefox\extensions File not found (No name found) -- () (No name found) -- H:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\PAM208XZ.DEFAULT\EXTENSIONS\{28197867-B1EF-4140-8E3B-55C45B9C8460}.XPI [2010-04-28 16:38:29 | 000,000,000 | ---D | M] (Java Quick Starter) -- H:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009-11-09 19:45:26 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- H:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011-07-08 09:50:30 | 000,142,296 | ---- | M] (Mozilla Foundation) -- H:\Program Files\mozilla firefox\components\browsercomps.dll [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - H:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [ABRegmon] H:\Program Files\ArcaBit\ArcaVir\abregmon.exe (ArcaBit) O4 - HKLM..\Run: [Alcmtr] H:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AvMenu] H:\Program Files\ArcaBit\ArcaVir\AVMenu.exe (ArcaBit) O4 - HKLM..\Run: [ControlCenter3] H:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [LanguageShortcut] H:\Program Files\CyberLink\PowerDVD\Language\Language.exe () O4 - HKLM..\Run: [LGODDFU] H:\Program Files\lg_fwupdate\fwupdate.exe (BitLeader) O4 - HKLM..\Run: [LWS] H:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.) O4 - HKLM..\Run: [NeroFilterCheck] H:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] H:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] H:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] H:\Program Files\NVIDIA Corporation\nView\nwiz.exe () O4 - HKLM..\Run: [UpdateLBPShortCut] H:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdatePSTShortCut] H:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKU\S-1-5-21-725345543-1580436667-1801674531-1004..\Run: [bluebirds] H:\Documents and Settings\user\Bluebirds\BlueBirds.exe (LG Electronics) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] H:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-725345543-1580436667-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-725345543-1580436667-1801674531-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - H:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o) O9 - Extra 'Tools' menuitem : ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - H:\Program Files\ArcaBit\WebExtensions\ie\ArcaIEExt.dll (ArcaBit sp. z o.o) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - H:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (H:\WINDOWS\system32\userinit.exe) - H:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - H:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-08-17 12:06:46 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011-08-17 12:06:46 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware [2011-08-17 12:06:46 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2011-08-17 12:06:43 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbam.sys [2011-08-17 12:06:43 | 000,000,000 | ---D | C] -- H:\Program Files\Malwarebytes' Anti-Malware [2011-08-16 13:43:54 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\ApplicationHistory [2011-08-12 13:14:09 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Pulpit\Nowy folder [2011-08-12 13:11:26 | 000,000,000 | ---D | C] -- H:\Program Files\Ad-Remover [2011-08-11 16:33:26 | 000,000,000 | -HSD | C] -- H:\Config.Msi [2011-08-10 23:42:55 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Games for Windows Marketplace [2011-08-10 23:42:34 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Dane aplikacji\Windows Search [2011-08-10 23:38:58 | 000,000,000 | ---D | C] -- H:\Program Files\Microsoft.NET [2011-08-10 23:38:12 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Tracing [2011-08-10 22:58:34 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office Live Add-in [2011-08-10 22:58:24 | 000,054,760 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\fssfltr_tdi.sys [2011-08-10 22:57:55 | 000,000,000 | ---D | C] -- H:\Program Files\Microsoft Sync Framework [2011-08-10 22:57:15 | 000,000,000 | ---D | C] -- H:\Program Files\Microsoft SQL Server Compact Edition [2011-08-10 22:56:27 | 000,000,000 | ---D | C] -- H:\Program Files\Microsoft [2011-08-10 22:56:07 | 000,000,000 | ---D | C] -- H:\Program Files\Windows Live SkyDrive [2011-08-10 22:55:56 | 000,000,000 | ---D | C] -- H:\Program Files\Windows Live [2011-08-10 22:50:06 | 000,000,000 | ---D | C] -- H:\Program Files\Common Files\Windows Live [2011-08-10 22:49:15 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\WindowsPowerShell [2011-08-10 22:49:14 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\winrm [2011-08-10 22:49:11 | 000,000,000 | -H-D | C] -- H:\WINDOWS\$968930Uinstall_KB968930$ [2011-08-10 22:48:52 | 000,014,048 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\spmsg2.dll [2011-08-10 22:47:24 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Dane aplikacji\Windows Desktop Search [2011-08-10 22:47:05 | 000,000,000 | ---D | C] -- H:\Program Files\Windows Desktop Search [2011-08-10 22:47:05 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\GroupPolicy [2011-08-10 22:45:29 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\URTTEMP [2011-08-10 22:14:19 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2011-08-10 22:14:10 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2011-08-10 22:13:53 | 000,543,336 | ---- | C] (NVIDIA Corporation) -- H:\WINDOWS\System32\easyupdatusapiu.dll [2011-08-05 21:17:59 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Pulpit\TOP 40 [2011-07-31 16:15:17 | 000,000,000 | ---D | C] -- H:\Documents and Settings\user\Dane aplikacji\.minecraft [2010-03-22 21:18:36 | 000,148,736 | ---- | C] (Avanquest Software) -- H:\Documents and Settings\All Users\Dane aplikacji\hpeD9.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-08-17 12:06:46 | 000,000,784 | ---- | M] () -- H:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-08-17 12:01:07 | 000,000,382 | ---- | M] () -- H:\WINDOWS\lgfwup.ini [2011-08-17 12:00:56 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- H:\WINDOWS\gdrv.sys [2011-08-17 12:00:47 | 000,000,006 | -H-- | M] () -- H:\WINDOWS\tasks\SA.DAT [2011-08-17 12:00:46 | 000,002,048 | --S- | M] () -- H:\WINDOWS\bootstat.dat [2011-08-17 12:00:43 | 000,000,000 | ---- | M] () -- H:\WINDOWS\System32\drivers\lvuvc.hs [2011-08-17 11:59:32 | 006,815,744 | -H-- | M] () -- H:\Documents and Settings\user\NTUSER.DAT [2011-08-17 11:59:32 | 000,000,292 | -HS- | M] () -- H:\Documents and Settings\user\ntuser.ini [2011-08-17 11:59:28 | 003,779,206 | -H-- | M] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-08-16 21:07:00 | 000,000,284 | ---- | M] () -- H:\WINDOWS\tasks\AppleSoftwareUpdate.job [2011-08-16 20:12:40 | 000,025,712 | ---- | M] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2011-08-16 16:47:30 | 000,149,200 | ---- | M] () -- H:\WINDOWS\System32\FNTCACHE.DAT [2011-08-16 14:15:57 | 000,002,265 | ---- | M] () -- H:\Documents and Settings\user\Pulpit\Skype.lnk [2011-08-16 13:43:59 | 000,000,129 | ---- | M] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-08-16 13:42:38 | 000,013,646 | ---- | M] () -- H:\WINDOWS\System32\wpa.dbl [2011-08-12 12:05:55 | 001,260,900 | ---- | M] () -- H:\WINDOWS\System32\PerfStringBackup.INI [2011-08-12 12:05:55 | 000,568,334 | ---- | M] () -- H:\WINDOWS\System32\perfh015.dat [2011-08-12 12:05:55 | 000,484,738 | ---- | M] () -- H:\WINDOWS\System32\perfh009.dat [2011-08-12 12:05:55 | 000,110,344 | ---- | M] () -- H:\WINDOWS\System32\perfc015.dat [2011-08-12 12:05:55 | 000,081,134 | ---- | M] () -- H:\WINDOWS\System32\perfc009.dat [2011-08-12 11:51:26 | 000,002,596 | ---- | M] () -- H:\WINDOWS\System32\CONFIG.NT [2011-08-11 16:35:05 | 000,001,374 | ---- | M] () -- H:\WINDOWS\imsins.BAK [2011-08-10 23:40:30 | 000,001,624 | ---- | M] () -- H:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2011-08-10 23:40:23 | 000,001,566 | ---- | M] () -- H:\Documents and Settings\All Users\Pulpit\Uruchom Wiedźmin 2.lnk [2011-08-10 22:47:10 | 000,001,783 | ---- | M] () -- H:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Windows Search.lnk [2011-08-10 22:17:11 | 000,001,261 | ---- | M] () -- H:\Documents and Settings\All Users\Pulpit\Logitech Webcam Software .lnk [2011-08-10 22:14:23 | 000,273,344 | ---- | M] () -- H:\WINDOWS\System32\nvdrsdb0.bin [2011-08-10 22:14:23 | 000,000,001 | ---- | M] () -- H:\WINDOWS\System32\nvdrssel.bin [2011-08-10 22:13:24 | 000,273,344 | ---- | M] () -- H:\WINDOWS\System32\nvdrsdb1.bin [2011-08-10 22:13:24 | 000,000,000 | ---- | M] () -- H:\WINDOWS\System32\nvdrswr.lk [2011-08-10 22:02:28 | 000,215,269 | ---- | M] () -- H:\WINDOWS\System32\nvapps.xml [2011-08-05 19:47:43 | 000,039,424 | ---- | M] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-08-17 12:06:46 | 000,000,784 | ---- | C] () -- H:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2011-08-16 13:43:59 | 000,000,129 | ---- | C] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-08-10 23:42:42 | 000,001,077 | ---- | C] () -- H:\Documents and Settings\All Users\Menu Start\Programy\Windows Live ID.lnk [2011-08-10 22:47:10 | 000,001,799 | ---- | C] () -- H:\Documents and Settings\All Users\Menu Start\Programy\Windows Search.lnk [2011-08-10 22:47:10 | 000,001,783 | ---- | C] () -- H:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Windows Search.lnk [2011-08-10 22:13:24 | 000,273,344 | ---- | C] () -- H:\WINDOWS\System32\nvdrsdb1.bin [2011-08-10 22:13:24 | 000,273,344 | ---- | C] () -- H:\WINDOWS\System32\nvdrsdb0.bin [2011-08-10 22:13:24 | 000,000,001 | ---- | C] () -- H:\WINDOWS\System32\nvdrssel.bin [2011-08-10 22:13:24 | 000,000,000 | ---- | C] () -- H:\WINDOWS\System32\nvdrswr.lk [2011-07-17 16:35:16 | 000,000,000 | ---- | C] () -- H:\WINDOWS\nsreg.dat [2011-07-07 18:32:19 | 000,033,019 | ---- | C] () -- H:\WINDOWS\System32\CoreAAC-uninstall.exe [2011-05-21 06:01:00 | 002,123,582 | ---- | C] () -- H:\WINDOWS\System32\nvdata.data [2011-04-09 18:55:28 | 000,179,261 | ---- | C] () -- H:\WINDOWS\System32\xlive.dll.cat [2011-03-22 23:58:22 | 000,014,168 | ---- | C] () -- H:\WINDOWS\System32\drivers\iKeyLFT2.dll [2010-11-10 04:45:32 | 000,102,744 | ---- | C] () -- H:\WINDOWS\System32\LogiDPPApp.exe [2010-11-10 04:45:30 | 010,877,272 | ---- | C] () -- H:\WINDOWS\System32\LogiDPP.dll [2010-11-10 04:45:20 | 000,331,608 | ---- | C] () -- H:\WINDOWS\System32\DevManagerCore.dll [2010-09-18 19:22:33 | 000,003,658 | ---- | C] () -- H:\Documents and Settings\user\Dane aplikacji\NMM-MetaData.db [2010-08-15 19:52:10 | 000,000,001 | ---- | C] () -- H:\WINDOWS\System32\SI.bin [2010-07-24 10:43:19 | 000,137,200 | ---- | C] () -- H:\WINDOWS\System32\drivers\PnkBstrK.sys [2010-07-24 10:42:49 | 000,022,328 | ---- | C] () -- H:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys [2010-07-24 10:42:02 | 000,215,152 | ---- | C] () -- H:\WINDOWS\System32\PnkBstrB.exe [2010-07-24 10:42:01 | 000,682,280 | ---- | C] () -- H:\WINDOWS\System32\pbsvc.exe [2010-07-24 10:42:01 | 000,075,064 | ---- | C] () -- H:\WINDOWS\System32\PnkBstrA.exe [2010-05-07 19:43:30 | 000,025,824 | ---- | C] () -- H:\WINDOWS\System32\drivers\LVPr2Mon.sys [2010-03-13 23:56:51 | 000,021,840 | ---- | C] () -- H:\WINDOWS\System32\SIntfNT.dll [2010-03-13 23:56:51 | 000,017,212 | ---- | C] () -- H:\WINDOWS\System32\SIntf32.dll [2010-03-13 23:56:51 | 000,012,067 | ---- | C] () -- H:\WINDOWS\System32\SIntf16.dll [2010-03-10 22:14:31 | 000,000,206 | ---- | C] () -- H:\WINDOWS\System32\MRT.INI [2010-01-03 02:02:03 | 000,027,872 | ---- | C] () -- H:\WINDOWS\System32\lvcoinst.ini [2009-12-30 21:18:26 | 000,000,056 | -H-- | C] () -- H:\WINDOWS\System32\ezsidmv.dat [2009-12-13 16:26:17 | 000,354,816 | ---- | C] () -- H:\WINDOWS\System32\psisdecd.dll [2009-12-06 20:50:21 | 000,039,424 | ---- | C] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-09-28 16:40:06 | 000,000,421 | ---- | C] () -- H:\WINDOWS\ODBC.INI [2009-09-20 17:28:19 | 000,000,069 | ---- | C] () -- H:\WINDOWS\NeroDigital.ini [2009-09-20 16:52:53 | 000,000,443 | ---- | C] () -- H:\WINDOWS\BRWMARK.INI [2009-09-20 16:52:53 | 000,000,027 | ---- | C] () -- H:\WINDOWS\BRPP2KA.INI [2009-09-20 16:28:01 | 000,000,050 | ---- | C] () -- H:\WINDOWS\System32\bridf08b.dat [2009-09-20 16:22:55 | 000,031,567 | ---- | C] () -- H:\WINDOWS\maxlink.ini [2009-09-18 14:10:27 | 000,025,712 | ---- | C] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2009-09-18 12:41:26 | 000,000,008 | ---- | C] () -- H:\WINDOWS\System32\nvModes.dat [2009-09-17 20:18:44 | 001,260,900 | ---- | C] () -- H:\WINDOWS\System32\PerfStringBackup.INI [2009-09-17 20:18:43 | 000,004,293 | ---- | C] () -- H:\WINDOWS\ODBCINST.INI [2009-09-17 20:16:03 | 000,149,200 | ---- | C] () -- H:\WINDOWS\System32\FNTCACHE.DAT [2009-09-17 12:57:51 | 000,000,382 | ---- | C] () -- H:\WINDOWS\lgfwup.ini [2009-09-17 12:33:58 | 003,779,206 | -H-- | C] () -- H:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\IconCache.db [2009-09-17 12:27:35 | 000,002,048 | --S- | C] () -- H:\WINDOWS\bootstat.dat [2009-09-17 12:26:18 | 000,000,000 | ---- | C] () -- H:\WINDOWS\control.ini [2009-09-17 12:25:39 | 000,000,488 | RH-- | C] () -- H:\WINDOWS\System32\logonui.exe.manifest [2009-09-17 12:25:36 | 000,000,749 | RH-- | C] () -- H:\WINDOWS\System32\cdplayer.exe.manifest [2009-09-17 12:23:55 | 000,021,856 | ---- | C] () -- H:\WINDOWS\System32\emptyregdb.dat [2009-09-17 12:23:47 | 000,000,037 | ---- | C] () -- H:\WINDOWS\vbaddin.ini [2009-09-17 12:23:47 | 000,000,036 | ---- | C] () -- H:\WINDOWS\vb.ini [2009-09-17 12:22:56 | 000,026,717 | ---- | C] () -- H:\WINDOWS\System32\tslabels.ini [2009-09-17 12:22:54 | 000,003,813 | ---- | C] () -- H:\WINDOWS\System32\msdtcprf.ini [2008-05-26 22:22:36 | 000,016,222 | ---- | C] () -- H:\WINDOWS\System32\gthrctr.ini [2008-05-26 22:22:34 | 000,021,728 | ---- | C] () -- H:\WINDOWS\System32\idxcntrs.ini [2008-05-26 22:22:32 | 000,016,164 | ---- | C] () -- H:\WINDOWS\System32\gsrvctr.ini [2008-05-26 21:59:42 | 000,018,904 | ---- | C] () -- H:\WINDOWS\System32\structuredqueryschematrivial.bin [2008-05-26 21:59:40 | 000,106,605 | ---- | C] () -- H:\WINDOWS\System32\structuredqueryschema.bin [2008-04-15 14:00:00 | 013,107,200 | ---- | C] () -- H:\WINDOWS\System32\oembios.bin [2008-04-15 14:00:00 | 001,015,477 | ---- | C] () -- H:\WINDOWS\System32\esentprf.ini [2008-04-15 14:00:00 | 000,733,696 | ---- | C] () -- H:\WINDOWS\System32\qedwipes.dll [2008-04-15 14:00:00 | 000,673,088 | ---- | C] () -- H:\WINDOWS\System32\mlang.dat [2008-04-15 14:00:00 | 000,568,334 | ---- | C] () -- H:\WINDOWS\System32\perfh015.dat [2008-04-15 14:00:00 | 000,484,738 | ---- | C] () -- H:\WINDOWS\System32\perfh009.dat [2008-04-15 14:00:00 | 000,355,112 | ---- | C] () -- H:\WINDOWS\System32\msjetoledb40.dll [2008-04-15 14:00:00 | 000,313,828 | ---- | C] () -- H:\WINDOWS\System32\perfi015.dat [2008-04-15 14:00:00 | 000,272,128 | ---- | C] () -- H:\WINDOWS\System32\perfi009.dat [2008-04-15 14:00:00 | 000,270,848 | ---- | C] () -- H:\WINDOWS\System32\sbe.dll [2008-04-15 14:00:00 | 000,253,440 | ---- | C] () -- H:\WINDOWS\System32\compatUI.dll [2008-04-15 14:00:00 | 000,218,003 | ---- | C] () -- H:\WINDOWS\System32\dssec.dat [2008-04-15 14:00:00 | 000,199,168 | ---- | C] () -- H:\WINDOWS\System32\ir32_32.dll [2008-04-15 14:00:00 | 000,186,880 | ---- | C] () -- H:\WINDOWS\System32\encdec.dll [2008-04-15 14:00:00 | 000,110,344 | ---- | C] () -- H:\WINDOWS\System32\perfc015.dat [2008-04-15 14:00:00 | 000,094,282 | ---- | C] () -- H:\WINDOWS\System32\msencode.dll [2008-04-15 14:00:00 | 000,081,134 | ---- | C] () -- H:\WINDOWS\System32\perfc009.dat [2008-04-15 14:00:00 | 000,070,656 | ---- | C] () -- H:\WINDOWS\System32\amstream.dll [2008-04-15 14:00:00 | 000,070,622 | ---- | C] () -- H:\WINDOWS\System32\edit.com [2008-04-15 14:00:00 | 000,053,920 | ---- | C] () -- H:\WINDOWS\System32\dosx.exe [2008-04-15 14:00:00 | 000,053,478 | ---- | C] () -- H:\WINDOWS\System32\tcpmon.ini [2008-04-15 14:00:00 | 000,051,823 | ---- | C] () -- H:\WINDOWS\System32\command.com [2008-04-15 14:00:00 | 000,046,258 | ---- | C] () -- H:\WINDOWS\System32\mib.bin [2008-04-15 14:00:00 | 000,042,809 | ---- | C] () -- H:\WINDOWS\System32\key01.sys [2008-04-15 14:00:00 | 000,042,537 | ---- | C] () -- H:\WINDOWS\System32\keyboard.sys [2008-04-15 14:00:00 | 000,039,434 | ---- | C] () -- H:\WINDOWS\System32\mem.exe [2008-04-15 14:00:00 | 000,035,648 | ---- | C] () -- H:\WINDOWS\System32\ntio411.sys [2008-04-15 14:00:00 | 000,035,424 | ---- | C] () -- H:\WINDOWS\System32\ntio412.sys [2008-04-15 14:00:00 | 000,034,990 | ---- | C] () -- H:\WINDOWS\System32\perfd015.dat [2008-04-15 14:00:00 | 000,034,560 | ---- | C] () -- H:\WINDOWS\System32\ntio804.sys [2008-04-15 14:00:00 | 000,034,560 | ---- | C] () -- H:\WINDOWS\System32\ntio404.sys [2008-04-15 14:00:00 | 000,033,936 | ---- | C] () -- H:\WINDOWS\System32\ntio.sys [2008-04-15 14:00:00 | 000,029,370 | ---- | C] () -- H:\WINDOWS\System32\ntdos411.sys [2008-04-15 14:00:00 | 000,029,274 | ---- | C] () -- H:\WINDOWS\System32\ntdos412.sys [2008-04-15 14:00:00 | 000,029,146 | ---- | C] () -- H:\WINDOWS\System32\ntdos804.sys [2008-04-15 14:00:00 | 000,029,146 | ---- | C] () -- H:\WINDOWS\System32\ntdos404.sys [2008-04-15 14:00:00 | 000,028,626 | ---- | C] () -- H:\WINDOWS\System32\perfd009.dat [2008-04-15 14:00:00 | 000,027,898 | ---- | C] () -- H:\WINDOWS\System32\ntdos.sys [2008-04-15 14:00:00 | 000,027,097 | ---- | C] () -- H:\WINDOWS\System32\country.sys [2008-04-15 14:00:00 | 000,020,986 | ---- | C] () -- H:\WINDOWS\System32\debug.exe [2008-04-15 14:00:00 | 000,019,806 | ---- | C] () -- H:\WINDOWS\System32\graphics.com [2008-04-15 14:00:00 | 000,016,024 | ---- | C] () -- H:\WINDOWS\System32\rsvp.ini [2008-04-15 14:00:00 | 000,015,360 | ---- | C] () -- H:\WINDOWS\System32\tsd32.dll [2008-04-15 14:00:00 | 000,014,913 | ---- | C] () -- H:\WINDOWS\System32\kb16.com [2008-04-15 14:00:00 | 000,014,336 | ---- | C] () -- H:\WINDOWS\System32\msdmo.dll [2008-04-15 14:00:00 | 000,013,819 | ---- | C] () -- H:\WINDOWS\System32\pschdprf.ini [2008-04-15 14:00:00 | 000,013,312 | ---- | C] () -- H:\WINDOWS\System32\win87em.dll [2008-04-15 14:00:00 | 000,012,866 | ---- | C] () -- H:\WINDOWS\System32\edlin.exe [2008-04-15 14:00:00 | 000,012,594 | ---- | C] () -- H:\WINDOWS\System32\append.exe [2008-04-15 14:00:00 | 000,011,859 | ---- | C] () -- H:\WINDOWS\System32\setver.exe [2008-04-15 14:00:00 | 000,009,043 | ---- | C] () -- H:\WINDOWS\System32\ansi.sys [2008-04-15 14:00:00 | 000,008,520 | ---- | C] () -- H:\WINDOWS\System32\exe2bin.exe [2008-04-15 14:00:00 | 000,007,116 | ---- | C] () -- H:\WINDOWS\System32\nlsfunc.exe [2008-04-15 14:00:00 | 000,006,074 | ---- | C] () -- H:\WINDOWS\System32\rasctrs.ini [2008-04-15 14:00:00 | 000,004,976 | ---- | C] () -- H:\WINDOWS\System32\himem.sys [2008-04-15 14:00:00 | 000,004,569 | ---- | C] () -- H:\WINDOWS\System32\secupd.dat [2008-04-15 14:00:00 | 000,004,461 | ---- | C] () -- H:\WINDOWS\System32\oembios.dat [2008-04-15 14:00:00 | 000,003,346 | ---- | C] () -- H:\WINDOWS\System32\redir.exe [2008-04-15 14:00:00 | 000,002,992 | ---- | C] () -- H:\WINDOWS\System32\perfci.ini [2008-04-15 14:00:00 | 000,002,890 | ---- | C] () -- H:\WINDOWS\System32\perfwci.ini [2008-04-15 14:00:00 | 000,001,804 | ---- | C] () -- H:\WINDOWS\System32\Dcache.bin [2008-04-15 14:00:00 | 000,001,405 | ---- | C] () -- H:\WINDOWS\msdfmap.ini [2008-04-15 14:00:00 | 000,001,295 | ---- | C] () -- H:\WINDOWS\System32\perffilt.ini [2008-04-15 14:00:00 | 000,001,168 | ---- | C] () -- H:\WINDOWS\System32\loadfix.com [2008-04-15 14:00:00 | 000,000,882 | ---- | C] () -- H:\WINDOWS\System32\share.exe [2008-04-15 14:00:00 | 000,000,882 | ---- | C] () -- H:\WINDOWS\System32\fastopen.exe [2008-04-15 14:00:00 | 000,000,817 | ---- | C] () -- H:\WINDOWS\System32\mscdexnt.exe [2008-04-15 14:00:00 | 000,000,741 | ---- | C] () -- H:\WINDOWS\System32\noise.dat [2008-04-15 14:00:00 | 000,000,654 | ---- | C] () -- H:\WINDOWS\win.ini [2008-04-15 14:00:00 | 000,000,359 | ---- | C] () -- H:\WINDOWS\System32\prodspec.ini [2008-04-15 14:00:00 | 000,000,231 | ---- | C] () -- H:\WINDOWS\system.ini [2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- H:\WINDOWS\System32\OUTLPERF.INI [2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- H:\WINDOWS\System32\dvdplay.exe [2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- H:\WINDOWS\System32\paqsp.dll [color=#E56717]========== LOP Check ==========[/color] [2011-06-06 18:04:46 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\ArcaBit [2011-08-12 11:51:33 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2010-07-31 21:00:40 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\BearShare [2010-03-22 21:19:30 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\BVRP Software [2011-08-16 14:16:06 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Easybits GO [2010-10-12 15:19:42 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2009-12-30 20:07:39 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Fighters [2010-03-02 21:42:36 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-09-18 19:59:44 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-12-17 17:00:23 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\ipla [2009-09-18 14:09:15 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\LightScribe [2010-04-22 16:57:41 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-09-18 20:11:05 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2009-09-20 16:22:55 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\ScanSoft [2009-12-22 18:59:56 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Solidshield [2011-03-25 17:41:53 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2010-03-10 17:51:22 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Synetic [2009-09-17 12:58:16 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\Temp [2011-04-02 11:14:00 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\VirtualizedApplications [2011-08-10 21:43:45 | 000,000,000 | ---D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\VistaCodecs [2010-07-31 21:00:46 | 000,000,000 | -H-D | M] -- H:\Documents and Settings\All Users\Dane aplikacji\{B84B5DDE-834A-4EB6-83AA-78EAE34C9DA7} [2009-09-28 16:48:00 | 000,000,000 | ---D | M] -- H:\Documents and Settings\LocalService\Dane aplikacji\ArcaBit [2011-07-31 16:15:18 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\.minecraft [2010-03-06 16:30:50 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\ArcaBit [2011-06-06 18:34:04 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\ArcaVirMicroScan [2010-08-20 22:30:07 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\BlackBean [2011-08-10 21:45:23 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Electronic Arts [2010-03-02 22:17:52 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu 10 [2011-08-16 14:16:03 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\go [2010-01-03 02:02:46 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Leadertech [2010-09-18 20:43:29 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Nokia [2010-09-18 20:11:07 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\PC Suite [2010-12-17 17:00:35 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\RDRM [2010-02-11 21:12:02 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Regensoft [2010-05-25 20:20:18 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\ScanSoft [2011-06-08 16:34:19 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\SoftGrid Client [2011-01-18 18:36:09 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Sony [2011-03-25 17:40:55 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Sports Interactive [2010-10-23 15:49:20 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\T6 [2011-01-30 17:08:56 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\TP [2011-08-10 22:47:24 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Windows Desktop Search [2011-08-10 23:42:34 | 000,000,000 | ---D | M] -- H:\Documents and Settings\user\Dane aplikacji\Windows Search [color=#E56717]========== Purity Check ==========[/color] < End of report >