wklejto.pl

Dodane przez: ~Anonim (2013-01-02 17:27) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
OTL logfile created on: 2013-01-02 17:12:56 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Malvinka\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,60 Gb Total Physical Memory | 2,12 Gb Available Physical Memory | 58,88% Memory free
11,42 Gb Paging File | 9,73 Gb Available in Paging File | 85,25% Paging File free
Paging file location(s): c:\pagefile.sys 8000 8000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 373,72 Gb Free Space | 88,60% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,87 Gb Free Space | 92,66% Space Free | Partition Type: NTFS
Drive F: | 2,15 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
 
Computer Name: MLV | User Name: Malvinka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 360 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-01-02 16:49:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Malvinka\Desktop\OTL.exe
PRC - [2012-12-12 21:45:35 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012-07-27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-02-05 08:34:56 | 000,329,056 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
PRC - [2011-10-01 07:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011-10-01 07:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011-01-29 00:29:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
PRC - [2010-02-01 15:51:07 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
PRC - [2010-01-19 11:44:40 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-12-12 21:44:58 | 002,397,152 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012-02-05 08:34:55 | 000,013,664 | ---- | M] () -- C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2012-12-12 21:45:34 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-12-12 12:50:43 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-07-27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011-10-01 07:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 07:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010-02-01 15:51:07 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe -- (ABBYY.Licensing.PDFTransformer.Classic.3.0)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (All) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=HITACHI_HTS547550A9E384_J2160051HEWK8DHEWK8DX&ts=1354381672
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =  [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000.10014&barid={F38DEF15-5376-11E2-BDCE-DC0EA17DB730}
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10014&barid={F38DEF15-5376-11E2-BDCE-DC0EA17DB730}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
 
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
 
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=vlt&from=vlt&uid=HITACHI_HTS547550A9E384_J2160051HEWK8DHEWK8DX&ts=1354381672
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com [binary data]
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000.10014&barid={F38DEF15-5376-11E2-BDCE-DC0EA17DB730}
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - No CLSID value found
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_plPL489
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10014&barid={F38DEF15-5376-11E2-BDCE-DC0EA17DB730}
IE - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "v9"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&barid={F38DEF15-5376-11E2-BDCE-DC0EA17DB730}&q="
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-12-12 21:45:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012-11-22 17:19:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Malvinka\AppData\Roaming\mozilla\Extensions
[2013-01-01 10:15:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Malvinka\AppData\Roaming\mozilla\Firefox\Profiles\hlt2dg8y.default\extensions
[2012-12-24 22:04:43 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\Malvinka\AppData\Roaming\mozilla\Firefox\Profiles\hlt2dg8y.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2012-12-24 22:06:00 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\Malvinka\AppData\Roaming\mozilla\firefox\profiles\hlt2dg8y.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012-12-31 19:23:29 | 000,003,998 | ---- | M] () -- C:\Users\Malvinka\AppData\Roaming\mozilla\firefox\profiles\hlt2dg8y.default\searchplugins\sweetim.xml
[2012-11-22 17:17:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-12-12 21:45:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012-12-12 21:45:35 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012-11-20 09:04:07 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2012-11-20 09:04:08 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2012-11-20 09:04:07 | 000,003,581 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
[2012-11-20 09:04:08 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2012-11-20 09:04:07 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2012-12-01 18:07:54 | 000,000,402 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\v9.xml
[2012-11-20 09:04:07 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-11-20 09:04:07 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (TinyBHO Class) - {00e71626-0bef-11dc-8314-0800200c9a66} - C:\Users\Malvinka\AppData\Roaming\DownloaderGold\ieplug.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Pomocnik logowania za pomocą identyfikatora Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4155646385-1812239250-1446768976-1002..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Funkcja Google Sidewiki - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html File not found
O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A5FB3DA7-692E-4058-B230-6AB07765C398}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\windows\SysWow64\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\windows\SysWow64\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\windows\SysWow64\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-05-06 07:38:42 | 000,000,066 | R--- | M] () - F:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{68384bef-34c1-11e2-932f-dc0ea17db730}\Shell - "" = AutoRun
O33 - MountPoints2\{68384bef-34c1-11e2-932f-dc0ea17db730}\Shell\AutoRun\command - "" = E:\autorun\autorun.exe
O33 - MountPoints2\{c54fd5ac-4fc6-11e1-8e06-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c54fd5ac-4fc6-11e1-8e06-806e6f6e6963}\Shell\AutoRun\command - "" = F:\setup.exe -- [2011-05-06 07:44:59 | 000,442,739 | R--- | M] (                                                            )
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 360 Days ==========[/color]
 
[2013-01-02 16:49:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Malvinka\Desktop\OTL.exe
[2013-01-01 10:15:24 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-12-31 19:36:23 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\{0CD66CA0-66A9-4573-8DDC-1E74B8EE0C96}
[2012-12-31 19:36:08 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\Tracing
[2012-12-31 19:19:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MuseTips
[2012-12-31 18:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012-12-31 18:26:39 | 000,779,704 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\deployJava1.dll
[2012-12-31 18:26:38 | 000,859,072 | ---- | C] (Oracle Corporation) -- C:\windows\SysWow64\npDeployJava1.dll
[2012-12-22 20:00:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2012-12-22 20:00:28 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2012-12-01 19:29:57 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Games
[2012-12-01 19:11:20 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2012-12-01 19:10:36 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\AGEIA
[2012-12-01 19:10:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2012-12-01 18:13:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive
[2012-12-01 18:11:35 | 000,073,728 | ---- | C] (InstallShield Software Corporation) -- C:\windows\SysWow64\ISUSPM.cpl
[2012-12-01 18:11:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\City Interactive
[2012-12-01 18:10:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012-12-01 18:09:57 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\DAEMON Tools Lite
[2012-12-01 18:09:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2012-12-01 18:07:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012-11-22 17:22:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012-11-22 17:19:20 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Mozilla
[2012-11-22 17:17:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012-11-16 13:35:50 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\Documents\BlackMirrorIII
[2012-10-31 16:13:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012-10-24 07:34:36 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Microsoft Games
[2012-08-27 22:37:09 | 000,000,000 | ---D | C] -- C:\ProgramData\GG
[2012-08-27 22:36:47 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\GG
[2012-08-27 22:36:38 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\GG
[2012-07-25 01:12:13 | 000,000,000 | ---D | C] -- C:\windows\Minidump
[2012-07-20 11:59:31 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\ABBYY
[2012-07-20 11:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY PDF Transformer 3.0
[2012-07-20 11:53:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ABBYY PDF Transformer 3.0
[2012-07-20 11:53:33 | 000,000,000 | ---D | C] -- C:\ProgramData\ABBYY
[2012-07-20 11:45:03 | 000,000,000 | ---D | C] -- C:\temp
[2012-07-04 19:46:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Energy Management
[2012-06-27 13:12:48 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\WinRAR
[2012-06-27 13:12:47 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-06-27 13:12:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-06-27 13:12:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2012-06-26 10:48:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\gPotato.eu
[2012-06-26 10:42:21 | 000,000,000 | ---D | C] -- C:\gPotato.eu
[2012-06-26 00:18:23 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\Documents\Vuze Downloads
[2012-06-26 00:16:47 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Raptr
[2012-06-26 00:16:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Raptr
[2012-06-26 00:16:27 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\.swt
[2012-06-26 00:16:12 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Azureus
[2012-06-26 00:14:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012-06-26 00:14:11 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Conduit
[2012-06-22 07:13:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2012-06-22 07:08:40 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Diagnostics
[2012-06-21 17:07:11 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2012-06-21 16:25:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
[2012-06-21 16:16:08 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012-06-21 15:33:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)
[2012-06-21 15:22:26 | 000,000,000 | ---D | C] -- C:\ProgramData\VirtualizedApplications
[2012-06-21 12:21:09 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\SoftGrid Client
[2012-06-21 12:21:01 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\SoftGrid Client
[2012-06-21 12:18:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2012-06-21 12:18:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Application Virtualization Client
[2012-06-21 12:17:44 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\TP
[2012-06-20 23:21:20 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\DownloaderGold
[2012-06-19 22:02:16 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2012-06-19 22:01:37 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\Documents\Youcam
[2012-06-19 22:01:32 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\CyberLink
[2012-06-19 22:01:31 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\CyberLink
[2012-06-19 19:23:39 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Adobe
[2012-06-19 19:12:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2012-06-19 19:12:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2012-06-19 19:11:19 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Macromedia
[2012-06-19 19:11:19 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Macromedia
[2012-06-19 19:11:19 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Adobe
[2012-06-19 19:11:00 | 000,697,272 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2012-06-19 19:11:00 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-06-19 19:10:58 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Macromed
[2012-06-19 19:10:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012-06-19 18:55:25 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Desktop\LENOVO
[2012-06-19 18:41:22 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Mozilla
[2012-06-19 18:41:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012-06-19 18:35:14 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2012-06-19 18:35:10 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\AMD
[2012-06-19 18:34:34 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\ATI
[2012-06-19 18:34:34 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\ATI
[2012-06-19 18:32:50 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012-06-19 18:32:50 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Searches
[2012-06-19 18:32:50 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012-06-19 18:32:33 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Identities
[2012-06-19 18:32:27 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Contacts
[2012-06-19 18:28:33 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\VirtualStore
[2012-06-19 18:28:00 | 000,000,000 | --SD | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Videos
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Saved Games
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Pictures
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Music
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Links
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Favorites
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Downloads
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Documents
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\Desktop
[2012-06-19 18:28:00 | 000,000,000 | R--D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Ustawienia lokalne
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\AppData\Local\Temporary Internet Files
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Szablony
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\SendTo
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Recent
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\PrintHood
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\NetHood
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Documents\Moje wideo
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Documents\Moje obrazy
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Moje dokumenty
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Documents\Moja muzyka
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Menu Start
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\AppData\Local\Historia
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Dane aplikacji
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\AppData\Local\Dane aplikacji
[2012-06-19 18:28:00 | 000,000,000 | -HSD | C] -- C:\Users\Malvinka\Cookies
[2012-06-19 18:28:00 | 000,000,000 | -H-D | C] -- C:\Users\Malvinka\AppData
[2012-06-19 18:28:00 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Temp
[2012-06-19 18:28:00 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Local\Microsoft
[2012-06-19 18:28:00 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Media Center Programs
[2012-06-19 18:28:00 | 000,000,000 | ---D | C] -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\Recovery
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2012-06-19 18:27:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2012-02-05 08:57:15 | 000,000,000 | ---D | C] -- C:\windows\OKR70
[2012-02-05 08:49:07 | 000,000,000 | ---D | C] -- C:\ProgramData\OneKey Recovery
[2012-02-05 08:47:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Partner
[2012-02-05 08:46:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012-02-05 08:46:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012-02-05 08:43:23 | 000,000,000 | ---D | C] -- C:\windows\pl
[2012-02-05 08:42:25 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2012-02-05 08:41:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2012-02-05 08:40:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2012-02-05 08:39:47 | 000,000,000 | ---D | C] -- C:\windows\PCHEALTH
[2012-02-05 08:39:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-02-05 08:38:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012-02-05 08:38:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2012-02-05 08:35:14 | 000,000,000 | ---D | C] -- C:\ProgramData\VeriFace
[2012-02-05 08:35:13 | 002,278,752 | ---- | C] (TODO: <Company name>) -- C:\windows\SysWow64\TakeSnpshot.dll
[2012-02-05 08:35:13 | 001,394,016 | ---- | C] (Lenovo) -- C:\windows\SysWow64\Imagereog.dll
[2012-02-05 08:35:13 | 001,025,376 | ---- | C] (Lenovo) -- C:\windows\SysWow64\CamOpEx.dll
[2012-02-05 08:35:13 | 000,025,952 | ---- | C] (Lenovo) -- C:\windows\SysWow64\Lenovo.Veriface.dll
[2012-02-05 08:34:49 | 000,876,032 | ---- | C] (Abysmal Software) -- C:\windows\SysWow64\DevIL.dll
[2012-02-05 08:34:49 | 000,077,824 | ---- | C] (Abysmal Software) -- C:\windows\SysWow64\ILU.dll
[2012-02-05 08:34:49 | 000,032,768 | ---- | C] (Abysmal Software) -- C:\windows\SysWow64\ILUT.dll
[2012-02-05 08:29:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
[2012-02-05 08:22:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
[2012-02-05 08:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012-02-05 08:21:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
[2012-02-05 08:21:23 | 000,000,000 | -HSD | C] -- C:\UserGuidePDF
[2012-02-05 08:20:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2012-02-05 08:20:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2012-02-05 08:20:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2012-02-05 08:12:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\USB Camera2
[2012-02-05 08:12:08 | 000,208,896 | ---- | C] (Vimicro) -- C:\windows\SysWow64\Reg332Unstal.dll
[2012-02-05 08:12:08 | 000,208,896 | ---- | C] (Vimicro) -- C:\windows\Reg332Unstal.dll
[2012-02-05 08:12:08 | 000,000,000 | ---D | C] -- C:\windows\Options
[2012-02-05 08:12:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BisonCam
[2012-02-05 08:09:21 | 000,218,408 | ---- | C] (Synaptics Incorporated) -- C:\windows\SysWow64\SynCtrl.dll
[2012-02-05 08:09:21 | 000,173,352 | ---- | C] (Synaptics Incorporated) -- C:\windows\SysWow64\SynCOM.dll
[2012-02-05 08:09:21 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\windows\SysWow64\SynTPCOM.dll
[2012-02-05 08:06:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lenovo
[2012-02-05 08:05:46 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Atheros_L1e
[2012-02-05 08:05:43 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2012-02-05 07:59:09 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012-02-05 07:56:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2012-02-05 07:56:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2012-02-05 07:56:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2012-02-05 07:55:20 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2012-02-05 07:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2012-02-05 07:54:23 | 004,017,152 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atiumdva.dll
[2012-02-05 07:54:23 | 001,828,864 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atiumdmv.dll
[2012-02-05 07:54:23 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\windows\SysWow64\Oemdspif.dll
[2012-02-05 07:54:23 | 000,031,744 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atiuxpag.dll
[2012-02-05 07:54:22 | 017,940,992 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\windows\SysWow64\atioglxx.dll
[2012-02-05 07:54:22 | 004,330,496 | ---- | C] (ATI Technologies Inc. ) -- C:\windows\SysWow64\atiumdag.dll
[2012-02-05 07:54:22 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\windows\SysWow64\atipdlxx.dll
[2012-02-05 07:54:22 | 000,029,184 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atiu9pag.dll
[2012-02-05 07:54:21 | 006,847,488 | ---- | C] (Advanced Micro Devices Inc.) -- C:\windows\SysWow64\aticaldd.dll
[2012-02-05 07:54:21 | 004,219,904 | ---- | C] (ATI Technologies Inc. ) -- C:\windows\SysWow64\atidxx32.dll
[2012-02-05 07:54:21 | 000,688,128 | ---- | C] (ATI Technologies Inc. ) -- C:\windows\SysWow64\aticfx32.dll
[2012-02-05 07:54:21 | 000,262,144 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\windows\SysWow64\atiadlxy.dll
[2012-02-05 07:54:21 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atimpc32.dll
[2012-02-05 07:54:21 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\amdpcom32.dll
[2012-02-05 07:54:21 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\windows\SysWow64\aticalrt.dll
[2012-02-05 07:54:21 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\windows\SysWow64\aticalcl.dll
[2012-02-05 07:54:21 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\windows\SysWow64\ati2edxx.dll
[2012-02-05 07:54:21 | 000,032,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atigktxx.dll
[2012-02-05 07:54:21 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\windows\SysWow64\atiglpxx.dll
[2012-02-05 07:53:12 | 000,000,000 | -HSD | C] -- C:\windows\Installer
[2012-02-05 07:39:53 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[2012-02-04 23:35:23 | 000,000,000 | ---D | C] -- C:\windows\sysprep32
[2012-02-04 23:25:55 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\XPSViewer
[2012-02-04 23:25:55 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\drivers\pl-PL
[2012-02-04 23:25:52 | 000,000,000 | ---D | C] -- C:\windows\pl-PL
[2012-02-04 23:25:52 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\pl
[2012-02-04 23:03:30 | 000,000,000 | -HSD | C] -- C:\System Volume Information
 
[color=#E56717]========== Files - Modified Within 360 Days ==========[/color]
 
[2013-01-02 16:50:00 | 000,000,930 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013-01-02 16:49:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Malvinka\Desktop\OTL.exe
[2013-01-02 16:10:13 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013-01-02 16:10:06 | 2902,642,688 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-31 19:35:02 | 000,698,067 | ---- | M] () -- C:\Users\Malvinka\Desktop\David_Guetta_dzwon.mp3
[2012-12-31 19:19:16 | 000,001,244 | ---- | M] () -- C:\Users\Public\Desktop\Free Ringtone Maker.lnk
[2012-12-31 19:05:00 | 004,819,610 | ---- | M] () -- C:\Users\Malvinka\Desktop\David_Guetta_feat._Ne-Yo_&_Akon_-_Play_Hard_(Album_Version)_[www.Mp3yo.pl].mp3
[2012-12-31 18:26:02 | 000,859,072 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\npDeployJava1.dll
[2012-12-31 18:26:02 | 000,779,704 | ---- | M] (Oracle Corporation) -- C:\windows\SysWow64\deployJava1.dll
[2012-12-31 13:47:35 | 000,050,266 | ---- | M] () -- C:\Users\Malvinka\Desktop\mleko_308.jpg
[2012-12-30 14:37:10 | 000,000,796 | ---- | M] () -- C:\Users\Public\Desktop\Speccy.lnk
[2012-12-25 20:35:52 | 000,001,122 | ---- | M] () -- C:\Users\Malvinka\Desktop\Cyberlink Power2Go.lnk
[2012-12-16 15:13:28 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2012-12-16 15:13:20 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2012-12-12 12:50:42 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2012-12-12 12:50:41 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-12-01 18:13:51 | 000,002,506 | ---- | M] () -- C:\Users\Public\Desktop\Graj w grę Sherlock Holmes kontra Kuba Rozpruwacz.lnk
[2012-12-01 18:10:18 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012-11-22 17:22:25 | 000,001,912 | ---- | M] () -- C:\windows\epplauncher.mif
[2012-11-22 17:17:47 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-06-26 10:48:56 | 000,001,756 | ---- | M] () -- C:\Users\Public\Desktop\Allods Online.lnk
[2012-06-22 00:40:27 | 001,549,394 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012-06-20 02:27:46 | 000,151,249 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2012-06-19 19:12:56 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-06-19 18:45:22 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-02-05 08:59:28 | 000,000,512 | ---- | M] () -- C:\windows\current.bin
[2012-02-05 08:57:54 | 000,000,512 | ---- | M] () -- C:\windows\previous.bin
[2012-02-05 08:47:34 | 000,001,136 | ---- | M] () -- C:\windows\Google Chrome.lnk
[2012-02-05 08:35:14 | 002,278,752 | ---- | M] (TODO: <Company name>) -- C:\windows\SysWow64\TakeSnpshot.dll
[2012-02-05 08:35:14 | 000,472,416 | ---- | M] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
[2012-02-05 08:35:13 | 002,086,240 | ---- | M] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
[2012-02-05 08:35:13 | 001,500,512 | ---- | M] () -- C:\windows\SysWow64\Apblend.dll
[2012-02-05 08:35:13 | 001,394,016 | ---- | M] (Lenovo) -- C:\windows\SysWow64\Imagereog.dll
[2012-02-05 08:35:13 | 001,171,456 | ---- | M] () -- C:\windows\SysWow64\PicNotify.dll
[2012-02-05 08:35:13 | 001,025,376 | ---- | M] (Lenovo) -- C:\windows\SysWow64\CamOpEx.dll
[2012-02-05 08:35:13 | 000,025,952 | ---- | M] (Lenovo) -- C:\windows\SysWow64\Lenovo.Veriface.dll
[2012-02-05 08:34:49 | 001,044,480 | ---- | M] () -- C:\windows\SysWow64\3DImageRenderer.dll
[2012-02-05 08:34:49 | 000,876,032 | ---- | M] (Abysmal Software) -- C:\windows\SysWow64\DevIL.dll
[2012-02-05 08:34:49 | 000,077,824 | ---- | M] (Abysmal Software) -- C:\windows\SysWow64\ILU.dll
[2012-02-05 08:34:49 | 000,032,768 | ---- | M] (Abysmal Software) -- C:\windows\SysWow64\ILUT.dll
[2012-02-05 07:58:29 | 000,000,000 | ---- | M] () -- C:\windows\ativpsrm.bin
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-12-31 19:34:58 | 000,698,067 | ---- | C] () -- C:\Users\Malvinka\Desktop\David_Guetta_dzwon.mp3
[2012-12-31 19:19:16 | 000,001,244 | ---- | C] () -- C:\Users\Public\Desktop\Free Ringtone Maker.lnk
[2012-12-31 19:04:18 | 004,819,610 | ---- | C] () -- C:\Users\Malvinka\Desktop\David_Guetta_feat._Ne-Yo_&_Akon_-_Play_Hard_(Album_Version)_[www.Mp3yo.pl].mp3
[2012-12-31 13:47:34 | 000,050,266 | ---- | C] () -- C:\Users\Malvinka\Desktop\mleko_308.jpg
[2012-12-30 14:37:10 | 000,000,796 | ---- | C] () -- C:\Users\Public\Desktop\Speccy.lnk
[2012-12-01 18:13:51 | 000,002,506 | ---- | C] () -- C:\Users\Public\Desktop\Graj w grę Sherlock Holmes kontra Kuba Rozpruwacz.lnk
[2012-12-01 18:10:18 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012-11-22 17:22:25 | 000,001,912 | ---- | C] () -- C:\windows\epplauncher.mif
[2012-11-22 17:22:15 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012-11-22 17:17:47 | 000,001,163 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012-11-22 17:17:47 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-06-26 10:48:56 | 000,001,756 | ---- | C] () -- C:\Users\Public\Desktop\Allods Online.lnk
[2012-06-21 16:26:41 | 000,002,587 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk
[2012-06-21 12:19:04 | 001,549,394 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012-06-19 19:12:56 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-06-19 19:12:56 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012-06-19 19:11:01 | 000,000,930 | ---- | C] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012-06-19 18:45:22 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012-06-19 18:33:49 | 000,001,455 | ---- | C] () -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012-06-19 18:33:49 | 000,001,421 | ---- | C] () -- C:\Users\Malvinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012-06-19 18:28:00 | 000,001,122 | ---- | C] () -- C:\Users\Malvinka\Desktop\Cyberlink Power2Go.lnk
[2012-02-05 08:59:28 | 000,000,512 | ---- | C] () -- C:\windows\previous.bin
[2012-02-05 08:59:28 | 000,000,512 | ---- | C] () -- C:\windows\current.bin
[2012-02-05 08:47:34 | 000,001,136 | ---- | C] () -- C:\windows\Google Chrome.lnk
[2012-02-05 08:42:16 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2012-02-05 08:41:57 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2012-02-05 08:41:21 | 000,001,458 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2012-02-05 08:40:57 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2012-02-05 08:35:14 | 000,472,416 | ---- | C] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
[2012-02-05 08:35:13 | 002,086,240 | ---- | C] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
[2012-02-05 08:35:13 | 001,500,512 | ---- | C] () -- C:\windows\SysWow64\Apblend.dll
[2012-02-05 08:35:13 | 001,171,456 | ---- | C] () -- C:\windows\SysWow64\PicNotify.dll
[2012-02-05 08:34:49 | 001,044,480 | ---- | C] () -- C:\windows\SysWow64\3DImageRenderer.dll
[2012-02-05 08:20:28 | 000,002,435 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
[2012-02-05 08:12:08 | 000,659,456 | ---- | C] () -- C:\windows\SysWow64\vmprp332.ax
[2012-02-05 08:12:08 | 000,001,823 | ---- | C] () -- C:\windows\vm332Rmv.ini
[2012-02-05 08:12:08 | 000,001,823 | ---- | C] () -- C:\windows\SysWow64\vm332Rmv.ini
[2012-02-05 08:12:08 | 000,000,358 | ---- | C] () -- C:\windows\System\vm332avs.rsf
[2012-02-05 07:58:29 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin
[2012-02-05 07:56:20 | 000,002,178 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerXpress.lnk
[2012-02-05 07:54:23 | 001,127,552 | ---- | C] () -- C:\windows\SysWow64\atiumdva.cap
[2012-02-05 07:54:22 | 000,032,635 | ---- | C] () -- C:\windows\atiogl.xml
[2012-02-05 07:54:22 | 000,003,929 | ---- | C] () -- C:\windows\SysWow64\atipblag.dat
[2012-02-05 07:51:35 | 000,000,488 | ---- | C] () -- C:\windows\s.bat
[2012-02-05 07:41:39 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012-02-05 07:41:25 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012-02-05 07:36:45 | 2902,642,688 | -HS- | C] () -- C:\hiberfil.sys
[2012-02-04 23:35:42 | 000,000,000 | ---- | C] () -- C:\windows\SysWow64\drivers\17aa_Lenovo_G575_20081.MRK
[2011-08-10 06:56:20 | 000,059,904 | ---- | C] () -- C:\windows\SysWow64\OVDecode.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-12-22 19:20:59 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\Azureus
[2012-12-22 19:20:59 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\DAEMON Tools Lite
[2012-11-22 16:59:16 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\DownloaderGold
[2012-12-01 19:56:32 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\Games
[2012-12-26 09:58:37 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\GG
[2012-06-26 00:38:51 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\Raptr
[2012-12-15 22:03:40 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\SoftGrid Client
[2012-06-21 12:21:31 | 000,000,000 | ---D | M] -- C:\Users\Malvinka\AppData\Roaming\TP
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
< End of report >
 
Wygenerowano w 0.323s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!