wklejto.pl

Dodane przez: ~Iwande (2012-07-21 19:55) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
OTL logfile created on: 2012-07-21 19:41:49 - Run 1
OTL by OldTimer - Version 3.2.54.0     Folder = C:\Users\abc\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3.00 Gb Total Physical Memory | 1.90 Gb Available Physical Memory | 63.40% Memory free
6.22 Gb Paging File | 4.99 Gb Available in Paging File | 80.30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 125.22 Gb Total Space | 15.55 Gb Free Space | 12.42% Space Free | Partition Type: NTFS
Drive D: | 8.14 Gb Total Space | 1.52 Gb Free Space | 18.67% Space Free | Partition Type: NTFS
Drive F: | 99.52 Gb Total Space | 7.35 Gb Free Space | 7.39% Space Free | Partition Type: NTFS
 
Computer Name: ABC-PC | User Name: abc | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-21 19:32:42 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\abc\Desktop\OTL.exe
PRC - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012-06-19 21:28:56 | 000,529,232 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe
PRC - [2012-06-02 17:27:03 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\steam.exe
PRC - [2012-05-08 09:49:15 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012-05-08 09:49:11 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012-05-08 09:49:11 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012-05-08 09:49:11 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009-04-10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-16 20:55:02 | 000,221,239 | ---- | M] (IDT, Inc.) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f691e717\stacsv.exe
PRC - [2008-04-16 20:52:28 | 000,442,433 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008-03-26 19:27:52 | 000,595,248 | ---- | M] (Validity Sensors, Inc.) -- C:\WINDOWS\System32\vfsFPService.exe
PRC - [2008-03-26 15:26:56 | 000,341,328 | ---- | M] () -- C:\WINDOWS\SMINST\BLService.exe
PRC - [2008-03-12 20:24:52 | 000,699,456 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe
PRC - [2008-03-12 20:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2008-02-12 07:05:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f691e717\AEstSrv.exe
PRC - [2008-01-21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2008-01-16 18:56:50 | 000,727,592 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2005-04-25 11:58:30 | 000,155,648 | ---- | M] () -- C:\Program Files\Common Files\RbtProt\sgsrv.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-06-19 21:28:56 | 020,313,384 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
MOD - [2012-06-19 21:28:55 | 001,099,576 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-53.dll
MOD - [2012-06-19 21:28:55 | 000,895,312 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
MOD - [2012-06-19 21:28:55 | 000,190,776 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-53.dll
MOD - [2012-06-19 21:28:55 | 000,123,192 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-51.dll
MOD - [2008-05-14 22:56:52 | 000,345,384 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll
MOD - [2008-05-14 22:56:46 | 000,120,216 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll
MOD - [2008-05-14 22:56:46 | 000,038,184 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvcps.dll
MOD - [2008-05-14 22:56:42 | 000,259,480 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll
MOD - [2008-05-14 22:56:42 | 000,066,856 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\common\MCEMediaStatus.dll
MOD - [2008-03-28 11:19:10 | 000,159,744 | ---- | M] () -- C:\WINDOWS\System32\atitmmxx.dll
MOD - [2008-02-04 14:29:02 | 000,688,128 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
MOD - [2007-08-14 13:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007-07-12 13:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007-07-12 13:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012-07-19 23:29:29 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-07-12 11:24:21 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-06-19 21:28:56 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-06-03 02:35:04 | 000,316,888 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\Windows\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2012-05-08 09:49:15 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012-05-08 09:49:11 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012-05-03 08:31:10 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011-08-01 18:24:00 | 003,889,424 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2011-05-03 10:03:49 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-03-17 11:34:27 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2008-04-16 20:55:02 | 000,221,239 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f691e717\stacsv.exe -- (STacSV)
SRV - [2008-03-26 19:27:52 | 000,595,248 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\WINDOWS\System32\vfsFPService.exe -- (vfsFPService)
SRV - [2008-03-26 15:26:56 | 000,341,328 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008-03-12 20:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)
SRV - [2008-02-12 07:05:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_f691e717\AEstSrv.exe -- (AESTFilters)
SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2005-04-25 11:58:30 | 000,155,648 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\RbtProt\sgsrv.exe -- (SG_Service)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2012-06-03 02:35:06 | 003,333,808 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2012-05-08 09:49:15 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012-05-08 09:49:15 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011-10-19 17:56:50 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011-07-15 10:48:34 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2010-12-31 01:24:46 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-06-17 16:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010-05-14 00:05:40 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\taphss.sys -- (taphss)
DRV - [2010-03-26 20:58:09 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-03-15 16:06:04 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sptd.sys -- (sptd)
DRV - [2009-03-18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2008-04-27 12:07:44 | 000,909,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\athr.sys -- (athr)
DRV - [2008-04-16 20:58:24 | 000,379,904 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008-04-15 00:56:18 | 000,170,000 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\ahcix86s.sys -- (ahcix86s)
DRV - [2008-04-14 21:05:08 | 000,118,784 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008-04-01 13:14:00 | 000,081,296 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008-03-28 13:24:16 | 003,544,064 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008-03-27 13:12:12 | 000,024,424 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2008-03-27 13:11:34 | 000,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2008-03-26 19:28:08 | 000,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\vfs101x.sys -- (vfs101x)
DRV - [2008-01-23 23:23:12 | 000,052,736 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\enecir.sys -- (enecir)
DRV - [2008-01-07 22:42:04 | 000,015,416 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Amddfltr.sys -- (Amddfltr)
DRV - [2007-07-11 10:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\HpqRemHid.sys -- (HpqRemHid)
DRV - [2007-06-18 17:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006-11-08 09:02:40 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\point32k.sys -- (Point32)
DRV - [2006-11-02 09:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\nvm60x32.sys -- (NVENETFD)
DRV - [2006-10-29 22:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
DRV - [2005-01-01 11:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\npptNT2.sys -- (NPPTNT2)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = 
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = 
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = 
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=AVB3DF&pc=AVBR
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\..\SearchScopes\{E245F2D5-5EA3-4F5F-BE38-AE6D3EBB81E8}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2852: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1662: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-07-19 23:29:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-05-06 04:31:33 | 000,000,000 | ---D | M]
 
[2012-06-26 01:22:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\abc\AppData\Roaming\mozilla\Extensions
[2012-07-19 21:27:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions
[2010-12-17 09:59:16 | 000,000,000 | ---D | M] (PsicoTSI) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\{7E77F5DF-8022-40e3-9122-F03DEBEFC43B}
[2012-07-07 20:51:10 | 000,000,000 | ---D | M] (PitchDark) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\{c1dffba0-628e-11d9-9669-0800200c9a66}
[2012-03-14 20:35:03 | 000,000,000 | ---D | M] (glowygreen) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\glowygreen-ff3-30@glowplug.bitasylum.net
[2012-06-20 22:35:20 | 000,000,000 | ---D | M] (LavaFox V2) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\info@djzig.com
[2011-06-26 08:39:55 | 000,000,000 | ---D | M] (Iplex to ALLPlayer) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\IplextoALL@ALLPlayer.org
[2011-02-14 03:20:12 | 000,000,000 | ---D | M] (Vividas player plugin) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\player@vividas.com
[2010-10-20 21:02:51 | 000,000,000 | ---D | M] (vShare Plugin) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\vshare@toolbar
[2012-03-14 20:35:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\glowygreen-ff3-30@glowplug.bitasylum.net\chrome\global\extension-icons
[2012-03-14 20:35:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\glowygreen-ff3-30@glowplug.bitasylum.net\chrome\mozapps\extensions
[2012-03-14 20:35:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\abc\AppData\Roaming\mozilla\Firefox\Profiles\re86uvme.default\extensions\glowygreen-ff3-30@glowplug.bitasylum.net\chrome4\mozapps\extensions
[2012-07-21 19:05:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-05-25 17:06:31 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012-07-19 23:29:30 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-03-02 20:12:07 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010-03-31 10:57:14 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll
[2010-07-21 12:26:44 | 000,197,224 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npVividasPlayer.dll
[2012-03-23 21:07:39 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-03-23 21:07:39 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-03-23 21:07:39 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-03-23 21:07:39 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-03-23 21:07:39 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-03-23 21:07:39 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2010-09-14 21:38:12 | 000,000,027 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O4 - HKLM..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe (Google Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\DpAgent.exe (DigitalPersona, Inc.)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 177
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF  [binary data]
O7 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-3652058411-2304492424-1393086861-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 86.63.129.29 86.63.129.30
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ED0ACC57-839F-4160-9FC9-20575A1FEA07}: DhcpNameServer = 86.63.129.29 86.63.129.30
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\abc\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\abc\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-05-03 09:40:12 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010-03-26 19:24:26 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-03-26 19:24:26 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-03-26 19:24:26 | 000,000,000 | R--D | M] - F:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-21 19:32:38 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\abc\Desktop\OTL.exe
[2012-07-21 18:32:50 | 000,000,000 | ---D | C] -- C:\ProgramData\036E1E73000136B60041FC862F3B707C
[2012-07-20 22:39:52 | 000,000,000 | ---D | C] -- C:\Users\abc\Desktop\KONTO   INTELIGO
[2012-07-09 15:22:22 | 000,000,000 | ---D | C] -- C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kerkythea Rendering System
[2012-07-09 15:22:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerkythea Rendering System
[2012-07-09 15:22:21 | 000,000,000 | ---D | C] -- C:\Program Files\Kerkythea Rendering System
[2012-07-08 07:46:16 | 000,162,304 | ---- | C] (Donkey Crew) -- C:\Users\abc\Desktop\cRPGLauncher.exe
[2012-07-03 08:45:21 | 000,000,000 | ---D | C] -- C:\Users\abc\Desktop\PULPIT
[2012-07-02 17:47:21 | 000,307,200 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUn0415.exe
[2012-06-29 11:54:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Viveza
[2012-06-29 11:54:21 | 000,000,000 | ---D | C] -- C:\Windows\MSSecurityNS
[2012-06-29 11:54:21 | 000,000,000 | ---D | C] -- C:\Windows\MSSecurityNi
[2012-06-28 13:03:06 | 000,000,000 | ---D | C] -- C:\InteriCAD Lite Trial
[2012-06-28 11:59:05 | 000,000,000 | ---D | C] -- C:\Users\abc\AppData\Roaming\YourFileDownloader
[2012-06-28 11:47:37 | 000,000,000 | ---D | C] -- C:\Program Files\intellidownload
[2012-06-27 19:34:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012-06-27 19:34:10 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2012-06-26 01:21:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Easy Burner
[2012-06-26 01:21:19 | 000,200,704 | ---- | C] (vbAccelerator) -- C:\Windows\System32\vbalExpBar6.ocx
[2012-06-26 01:21:18 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6FR.DLL
[2012-06-26 01:21:18 | 000,115,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinet.OCX
[2012-06-26 01:21:18 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6STKIT.DLL
[2012-06-26 01:21:18 | 000,040,960 | ---- | C] (vbAccelerator) -- C:\Windows\System32\SSubTmr6.dll
[2012-06-26 01:21:18 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetfr.DLL
[2012-06-26 01:21:17 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCMCFR.DLL
[2012-06-26 01:21:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CMDLGFR.DLL
[2012-06-26 01:21:16 | 000,000,000 | ---D | C] -- C:\Users\abc\AppData\Roaming\FreeBurner
[2012-06-26 01:21:16 | 000,000,000 | ---D | C] -- C:\Program Files\Free Easy CD DVD Burner
[2012-06-24 16:11:29 | 000,000,000 | ---D | C] -- C:\Users\abc\AppData\Roaming\TS3Client
[2012-06-24 16:08:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
[2012-06-24 16:08:24 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2012-06-24 10:49:08 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2012-06-24 10:49:08 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2012-06-24 10:48:40 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2012-06-24 10:48:40 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2012-06-24 10:48:40 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2012-06-24 10:48:18 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2012-06-24 10:48:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2012-06-23 18:02:42 | 000,000,000 | ---D | C] -- C:\Users\abc\AppData\Local\Macromedia
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-21 19:41:04 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-07-21 19:33:01 | 000,712,192 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-07-21 19:33:01 | 000,632,120 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-07-21 19:33:01 | 000,150,146 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-07-21 19:33:01 | 000,118,746 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-07-21 19:32:42 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\abc\Desktop\OTL.exe
[2012-07-21 19:28:46 | 000,000,269 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2012-07-21 19:26:05 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012-07-21 19:26:05 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012-07-21 19:26:03 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-07-21 19:25:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-07-21 19:25:47 | 3218,956,288 | -HS- | M] () -- C:\hiberfil.sys
[2012-07-21 19:13:31 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-07-21 18:58:18 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2012-07-21 18:24:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-07-14 18:30:56 | 000,006,944 | ---- | M] () -- C:\Users\abc\AppData\Local\d3d9caps.dat
[2012-07-12 11:51:23 | 081,302,319 | ---- | M] () -- C:\Users\abc\Bluetooth Software\Documents\Bez tytułu.skp
[2012-07-12 11:45:05 | 081,302,297 | ---- | M] () -- C:\Users\abc\Bluetooth Software\Documents\Bez tytułu.skb
[2012-07-12 11:40:41 | 081,276,121 | ---- | M] () -- C:\Users\abc\Bluetooth Software\Documents\Autozapis_Bez tytułu.skp
[2012-07-12 11:24:20 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012-07-12 11:24:20 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012-07-11 14:29:18 | 003,078,133 | ---- | M] () -- C:\Users\abc\Desktop\pświatło.psd
[2012-07-11 11:29:57 | 000,000,541 | ---- | M] () -- C:\Users\abc\Desktop\ies_gen3 — skrót.lnk
[2012-07-11 10:32:18 | 000,001,012 | ---- | M] () -- C:\Users\abc\Desktop\Photoshop — skrót (2).lnk
[2012-07-10 14:29:33 | 000,029,080 | ---- | M] () -- C:\Users\abc\Desktop\podłoga.psd
[2012-07-10 14:26:26 | 005,682,947 | ---- | M] () -- C:\Users\abc\Desktop\Bez nazwy-1.psd
[2012-07-09 18:47:37 | 000,061,952 | ---- | M] () -- C:\Users\abc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-07-09 18:46:05 | 000,000,048 | ---- | M] () -- C:\Users\abc\AppData\Roaming\mbam.context.scan
[2012-07-09 18:24:31 | 000,001,844 | ---- | M] () -- C:\Users\abc\Desktop\Kerkythea 2008.lnk
[2012-07-08 08:45:25 | 000,000,431 | ---- | M] () -- C:\Users\abc\Desktop\Play cRPG.lnk
[2012-07-08 07:46:19 | 000,162,304 | ---- | M] (Donkey Crew) -- C:\Users\abc\Desktop\cRPGLauncher.exe
[2012-07-05 20:12:20 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForabc.job
[2012-07-03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012-07-02 17:53:18 | 000,000,978 | ---- | M] () -- C:\Users\abc\Desktop\Photoshop — skrót.lnk
[2012-07-02 17:51:15 | 000,001,157 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2012-06-30 16:39:44 | 000,506,984 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-06-28 13:03:47 | 000,000,763 | ---- | M] () -- C:\Users\Public\Desktop\InteriCAD Lite Trial.lnk
[2012-06-28 12:03:17 | 000,000,750 | ---- | M] () -- C:\user.js
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-07-21 19:25:46 | 3218,956,288 | -HS- | C] () -- C:\hiberfil.sys
[2012-07-21 19:13:31 | 000,000,913 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-07-12 11:44:24 | 081,302,297 | ---- | C] () -- C:\Users\abc\Bluetooth Software\Documents\Bez tytułu.skb
[2012-07-12 11:40:29 | 081,276,121 | ---- | C] () -- C:\Users\abc\Bluetooth Software\Documents\Autozapis_Bez tytułu.skp
[2012-07-11 11:29:53 | 000,000,541 | ---- | C] () -- C:\Users\abc\Desktop\ies_gen3 — skrót.lnk
[2012-07-11 10:32:18 | 000,001,012 | ---- | C] () -- C:\Users\abc\Desktop\Photoshop — skrót (2).lnk
[2012-07-10 15:31:03 | 003,078,133 | ---- | C] () -- C:\Users\abc\Desktop\pświatło.psd
[2012-07-10 14:29:33 | 000,029,080 | ---- | C] () -- C:\Users\abc\Desktop\podłoga.psd
[2012-07-10 13:57:26 | 005,682,947 | ---- | C] () -- C:\Users\abc\Desktop\Bez nazwy-1.psd
[2012-07-09 18:46:05 | 000,000,048 | ---- | C] () -- C:\Users\abc\AppData\Roaming\mbam.context.scan
[2012-07-09 15:22:23 | 000,001,844 | ---- | C] () -- C:\Users\abc\Desktop\Kerkythea 2008.lnk
[2012-07-08 07:56:00 | 000,000,431 | ---- | C] () -- C:\Users\abc\Desktop\Play cRPG.lnk
[2012-07-02 17:53:18 | 000,000,978 | ---- | C] () -- C:\Users\abc\Desktop\Photoshop — skrót.lnk
[2012-07-02 17:51:15 | 000,001,157 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2012-07-02 17:51:14 | 000,000,995 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ImageReady 7.0 CE.lnk
[2012-07-02 17:51:13 | 000,000,990 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 7.0 CE.lnk
[2012-06-28 13:03:47 | 000,000,763 | ---- | C] () -- C:\Users\Public\Desktop\InteriCAD Lite Trial.lnk
[2012-06-28 11:59:31 | 000,000,750 | ---- | C] () -- C:\user.js
[2012-06-26 01:21:17 | 000,484,352 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2012-03-07 11:30:28 | 000,000,152 | ---- | C] () -- C:\Windows\Aslan.INI
[2012-02-18 11:40:08 | 000,707,504 | ---- | C] () -- C:\Users\abc\AppData\Local\unins000.exe
[2012-02-18 11:40:08 | 000,011,761 | ---- | C] () -- C:\Users\abc\AppData\Local\unins000.msg
[2012-02-18 11:40:08 | 000,002,152 | ---- | C] () -- C:\Users\abc\AppData\Local\unins000.dat
[2011-11-08 19:53:45 | 000,000,475 | ---- | C] () -- C:\Windows\Disney.ini
[2011-09-21 09:00:04 | 000,000,065 | ---- | C] () -- C:\Windows\DICWORD.INI
[2011-09-21 09:00:04 | 000,000,012 | ---- | C] () -- C:\Windows\RUNTEST.INI
[2011-09-21 08:41:39 | 000,000,015 | ---- | C] () -- C:\Windows\Robot Office Common.ini
[2011-08-01 12:41:17 | 000,000,000 | ---- | C] () -- C:\Users\abc\AppData\Local\{1D8710D0-1236-49B2-8830-53307C0EE783}
[2011-07-26 22:02:38 | 000,000,000 | ---- | C] () -- C:\Users\abc\AppData\Local\{E58D92A4-D907-41C7-8B25-B4D8CD883337}
[2011-05-27 20:54:54 | 000,045,202 | ---- | C] () -- C:\Users\abc\AppData\Roaming\room_v3.dat
[2011-04-09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011-02-14 03:25:19 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll
[2011-01-11 00:24:01 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2010-09-15 18:11:57 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010-09-15 18:10:45 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010-09-15 10:46:58 | 000,000,000 | ---- | C] () -- C:\Users\abc\defogger_reenable
[2010-06-30 19:45:10 | 000,000,893 | ---- | C] () -- C:\ProgramData\RAD Studio BlackfishSQL.slip
[2010-06-30 19:45:08 | 000,000,320 | ---- | C] () -- C:\ProgramData\.cgb_license
[2010-05-15 15:29:30 | 000,000,104 | ---- | C] () -- C:\Users\abc\Sieć — skrót.lnk
[2010-03-26 09:25:45 | 000,006,944 | ---- | C] () -- C:\Users\abc\AppData\Local\d3d9caps.dat
[2010-03-17 23:34:56 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010-03-14 15:14:59 | 000,061,952 | ---- | C] () -- C:\Users\abc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-18 09:46:48 | 000,000,454 | ---- | C] () -- C:\Users\abc\AppData\Roaming\wklnhst.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-05-03 10:16:30 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\.algor
[2012-01-28 11:32:00 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\.minecraft
[2011-05-03 10:17:11 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Autodesk
[2012-07-06 11:22:54 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\BESTplayer
[2010-06-30 19:45:34 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\CodeGear
[2010-03-16 01:45:27 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\DAEMON Tools Lite
[2010-02-15 10:56:12 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\DigitalPersona
[2011-05-24 11:05:40 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Expressivo
[2012-07-21 19:41:31 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\foobar2000
[2012-06-26 01:48:05 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\FreeBurner
[2010-04-18 00:45:56 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\GanymedeNet
[2012-05-13 21:06:47 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\GHISLER
[2011-03-05 19:15:23 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Graphisoft
[2010-10-14 14:10:21 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\ImgBurn
[2012-03-26 21:35:32 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\InfraRecorder
[2010-03-15 00:49:18 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Mathsoft
[2010-03-26 00:42:18 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Miranda
[2012-06-03 00:40:07 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Mount&Blade
[2010-12-16 01:23:32 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Mount&Blade Warband
[2012-02-03 01:48:11 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\OwnRooms
[2010-02-18 09:46:54 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Template
[2011-04-23 12:14:04 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\Thinstall
[2012-06-24 16:37:41 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\TS3Client
[2012-03-20 20:23:15 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\uTorrent
[2011-06-24 18:23:49 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\VSO
[2012-06-28 11:59:05 | 000,000,000 | ---D | M] -- C:\Users\abc\AppData\Roaming\YourFileDownloader
[2012-07-21 18:58:18 | 000,032,546 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011-06-04 10:34:58 | 000,000,414 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{056CF896-8E32-4126-9997-C727F52DAB8F}.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:76650B61
 
< End of report >
 
Wygenerowano w 0.262s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!