wklejto.pl

Dodane przez: ~Anonim (2014-04-15 12:11) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
OTL logfile created on: 2014-04-14 23:56:48 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Reni\Desktop\Nowy folder
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,87 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 51,91% Memory free
3,97 Gb Paging File | 2,91 Gb Available in Paging File | 73,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 6,55 Gb Free Space | 5,63% Space Free | Partition Type: NTFS
Drive D: | 33,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 114,98 Gb Total Space | 70,06 Gb Free Space | 60,93% Space Free | Partition Type: NTFS
Drive F: | 4,10 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 7,27 Gb Total Space | 0,06 Gb Free Space | 0,87% Space Free | Partition Type: FAT32
 
Computer Name: RENI-PC | User Name: Reni | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-04-14 16:23:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Reni\Desktop\Nowy folder\OTL.exe
PRC - [2013-01-25 19:46:30 | 003,057,512 | ---- | M] () -- C:\Windows\System32\config\systemprofile\AppData\Local\tuto4pc_pl_6\supt4pc_pl_6.exe
PRC - [2012-12-18 16:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-11-04 21:52:07 | 000,514,048 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
PRC - [2012-11-04 21:51:39 | 000,246,112 | ---- | M] () -- C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2011-11-25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\ProgramData\DatacardService\HWDeviceService.exe
PRC - [2011-03-14 17:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2009-07-10 00:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009-07-08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009-07-07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
PRC - [2009-05-12 22:26:42 | 000,299,008 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2009-04-24 11:40:38 | 000,176,128 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TECO\TecoService.exe
PRC - [2009-04-24 11:40:08 | 001,323,008 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TECO\TEco.exe
PRC - [2009-04-23 20:01:24 | 001,011,712 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
PRC - [2009-04-16 18:42:58 | 000,020,544 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCameraSrv.exe
PRC - [2009-04-15 17:04:02 | 000,570,736 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
PRC - [2009-04-15 17:03:40 | 000,656,752 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
PRC - [2009-04-01 18:11:06 | 001,283,384 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
PRC - [2009-04-01 18:10:58 | 000,062,776 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
PRC - [2009-03-31 10:33:52 | 000,503,808 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
PRC - [2009-03-30 16:57:22 | 000,083,312 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
PRC - [2009-03-23 14:30:52 | 001,045,904 | ---- | M] (Toshiba Europe GmbH) -- C:\Program Files\Toshiba TEMPRO\TemproTray.exe
PRC - [2009-03-23 14:30:36 | 000,116,104 | ---- | M] (Toshiba Europe GmbH) -- C:\Program Files\Toshiba TEMPRO\TemproSvc.exe
PRC - [2009-03-23 11:50:40 | 000,729,088 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
PRC - [2009-03-17 11:49:04 | 000,073,728 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
PRC - [2009-03-10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2009-03-10 18:50:36 | 000,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
PRC - [2009-03-06 18:29:16 | 000,464,224 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
PRC - [2009-03-06 18:29:04 | 000,468,320 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
PRC - [2009-01-13 21:33:40 | 000,034,088 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
PRC - [2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-01-21 04:24:13 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2007-11-21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-11-04 21:52:07 | 000,514,048 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
MOD - [2012-11-04 21:51:42 | 009,515,520 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtGui4.dll
MOD - [2012-11-04 21:51:42 | 001,148,416 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtNetwork4.dll
MOD - [2012-11-04 21:51:42 | 000,808,960 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SMSUIPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,670,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SmsAppPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,384,512 | ---- | M] () -- C:\Program Files\PLAY ONLINE\USSDUIPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,370,176 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qtiff4.dll
MOD - [2012-11-04 21:51:42 | 000,310,272 | ---- | M] () -- C:\Program Files\PLAY ONLINE\StatusBarMgrPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,261,632 | ---- | M] () -- C:\Program Files\PLAY ONLINE\sdk.dll
MOD - [2012-11-04 21:51:42 | 000,240,128 | ---- | M] () -- C:\Program Files\PLAY ONLINE\ToolBarMgrPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,217,600 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SmsSrvPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,190,464 | ---- | M] () -- C:\Program Files\PLAY ONLINE\XFramePlugin.dll
MOD - [2012-11-04 21:51:42 | 000,159,232 | ---- | M] () -- C:\Program Files\PLAY ONLINE\XCodec.dll
MOD - [2012-11-04 21:51:42 | 000,156,672 | ---- | M] () -- C:\Program Files\PLAY ONLINE\STKSrvPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,142,336 | ---- | M] () -- C:\Program Files\PLAY ONLINE\USSDSrvPlugin.dll
MOD - [2012-11-04 21:51:42 | 000,135,168 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Trace.dll
MOD - [2012-11-04 21:51:42 | 000,106,496 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Win7Support.dll
MOD - [2012-11-04 21:51:40 | 002,415,104 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtCore4.dll
MOD - [2012-11-04 21:51:40 | 001,101,824 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NDISAPI.dll
MOD - [2012-11-04 21:51:40 | 000,545,280 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PluginContainer.dll
MOD - [2012-11-04 21:51:40 | 000,483,328 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetInfoUIExPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,381,952 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Proxy.dll
MOD - [2012-11-04 21:51:40 | 000,350,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qmng4.dll
MOD - [2012-11-04 21:51:40 | 000,334,848 | ---- | M] () -- C:\Program Files\PLAY ONLINE\MainpagePlugin.dll
MOD - [2012-11-04 21:51:40 | 000,333,312 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetConnectPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,278,528 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetInfoSrvPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,269,824 | ---- | M] () -- C:\Program Files\PLAY ONLINE\LiveUpdateInterface.dll
MOD - [2012-11-04 21:51:40 | 000,249,344 | ---- | M] () -- C:\Program Files\PLAY ONLINE\MenuMgrPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,235,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetSrvPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,192,000 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qjpeg4.dll
MOD - [2012-11-04 21:51:40 | 000,180,224 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NDISPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,158,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetConnectSrvPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,133,120 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSDialup.dll
MOD - [2012-11-04 21:51:40 | 000,131,072 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSNDIS.dll
MOD - [2012-11-04 21:51:40 | 000,118,272 | ---- | M] () -- C:\Program Files\PLAY ONLINE\LayoutPlugin.dll
MOD - [2012-11-04 21:51:40 | 000,101,376 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSAdapt.dll
MOD - [2012-11-04 21:51:40 | 000,093,184 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NotifyServicePlugin.dll
MOD - [2012-11-04 21:51:40 | 000,082,944 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qgif4.dll
MOD - [2012-11-04 21:51:40 | 000,081,920 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qico4.dll
MOD - [2012-11-04 21:51:40 | 000,065,536 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSPowerMgr.dll
MOD - [2012-11-04 21:51:40 | 000,062,976 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSCall.dll
MOD - [2012-11-04 21:51:40 | 000,043,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\libgcc_s_dw2-1.dll
MOD - [2012-11-04 21:51:40 | 000,011,362 | ---- | M] () -- C:\Program Files\PLAY ONLINE\mingwm10.dll
MOD - [2012-11-04 21:51:39 | 001,077,248 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,739,328 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookUIPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,550,400 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallAppPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,547,840 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallLogSrvPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,495,104 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceMgrUIPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,428,032 | ---- | M] () -- C:\Program Files\PLAY ONLINE\core.dll
MOD - [2012-11-04 21:51:39 | 000,427,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DialupUIPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,338,432 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceAppPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,301,056 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceSrvPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,264,704 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookSrvPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,238,080 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AtCodec.dll
MOD - [2012-11-04 21:51:39 | 000,218,112 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Common.dll
MOD - [2012-11-04 21:51:39 | 000,211,968 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DialUpPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,176,128 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallSrvPlugin.dll
MOD - [2012-11-04 21:51:39 | 000,157,184 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DataServicePlugin.dll
MOD - [2012-11-04 21:51:39 | 000,123,392 | ---- | M] () -- C:\Program Files\PLAY ONLINE\ATR2SMgr.dll
MOD - [2011-06-16 17:23:57 | 001,712,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\1be8df00c8573200093245985e75a660\Microsoft.VisualBasic.ni.dll
MOD - [2011-06-16 17:04:58 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c933fd5d1d27f268331890d7ddba8fec\System.ServiceProcess.ni.dll
MOD - [2011-06-16 17:04:39 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1ba19f8efcff8ad7f972aa38ab9a15f5\System.Runtime.Remoting.ni.dll
MOD - [2011-06-16 17:04:10 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\aa3e053d433c48e1e8c3f436b4de1ed3\System.Configuration.ni.dll
MOD - [2011-06-16 16:03:22 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb60f99da570cc494e27e0e8ee747e2\System.Xml.ni.dll
MOD - [2011-06-16 16:02:55 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\381fb23cb39e1a61e13b8770eb9800ba\System.Windows.Forms.ni.dll
MOD - [2011-06-16 16:02:44 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f1aa2385c0109f3059e0e6ba8b58ff68\System.Drawing.ni.dll
MOD - [2011-06-16 16:01:50 | 012,216,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\c1498ba4652483d5adddd4c5d3927170\PresentationCore.ni.dll
MOD - [2011-06-16 16:01:37 | 003,313,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\29d729043903b7b4b2ea695db220d866\WindowsBase.ni.dll
MOD - [2011-06-16 16:01:34 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dff86a62a525ec8dc827fe9f50298b7\System.ni.dll
MOD - [2011-06-16 16:01:11 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2009-06-18 12:28:10 | 008,007,680 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2009-03-12 19:08:04 | 000,049,152 | ---- | M] () -- C:\Program Files\TOSHIBA\PCDiag\NotifyPCD.dll
MOD - [2009-03-07 14:15:46 | 007,005,496 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
MOD - [2009-01-30 22:11:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
MOD - [2008-09-16 00:24:42 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_pl_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2008-09-16 00:24:41 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2008-07-14 11:37:00 | 000,095,544 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
MOD - [2006-12-01 18:55:42 | 000,009,216 | ---- | M] () -- C:\Program Files\TOSHIBA\TBS\NotifyTBS.dll
MOD - [2006-10-10 12:44:16 | 000,009,728 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
MOD - [2006-10-07 12:57:04 | 000,053,248 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Users\Reni\AppData\Local\tuto4pc_pl_1\supt4pc_pl_1.exe -- (supt4pc_pl_1)
SRV - File not found [Auto | Stopped] -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service)
SRV - File not found [Auto | Stopped] -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - File not found [On_Demand | Stopped] -- C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe -- (McSysmon)
SRV - File not found [Auto | Stopped] -- C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe -- (McShield)
SRV - File not found [On_Demand | Stopped] -- C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe -- (McODS)
SRV - File not found [Auto | Stopped] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2014-01-20 18:57:59 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-01-25 19:46:30 | 003,057,512 | ---- | M] () [Auto | Running] -- C:\Windows\System32\config\systemprofile\AppData\Local\tuto4pc_pl_6\supt4pc_pl_6.exe -- (supt4pc_pl_6)
SRV - [2012-12-18 16:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-11-04 21:51:39 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2011-11-25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe)
SRV - [2009-07-10 00:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2009-07-08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009-07-07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2009-04-24 11:40:38 | 000,176,128 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV - [2009-04-16 18:42:58 | 000,020,544 | ---- | M] (TOSHIBA) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCameraSrv.exe -- (camsvc)
SRV - [2009-04-15 17:03:40 | 000,656,752 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV - [2009-04-01 18:10:58 | 000,062,776 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2009-03-30 16:57:22 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2009-03-23 14:30:36 | 000,116,104 | ---- | M] (Toshiba Europe GmbH) [Auto | Running] -- C:\Program Files\Toshiba TEMPRO\TemproSvc.exe -- (TemproMonitoringService)
SRV - [2009-03-17 11:49:04 | 000,073,728 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV - [2009-03-10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2009-03-06 18:29:16 | 000,464,224 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-11-21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2012-11-04 21:51:42 | 000,239,488 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2012-11-04 21:51:42 | 000,195,200 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2012-11-04 21:51:42 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2012-11-04 21:51:42 | 000,089,856 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV - [2012-11-04 21:51:42 | 000,073,984 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2012-11-04 21:51:42 | 000,066,688 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm)
DRV - [2012-11-04 21:51:42 | 000,026,624 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV - [2012-11-04 21:51:42 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2011-12-01 11:40:16 | 000,056,496 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\NBVol.sys -- (NBVol)
DRV - [2011-12-01 11:40:16 | 000,012,464 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\NBVolUp.sys -- (NBVolUp)
DRV - [2009-07-16 12:32:26 | 000,130,424 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\Mpfp.sys -- (MPFP)
DRV - [2009-07-08 13:44:20 | 000,214,024 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009-07-08 13:44:20 | 000,079,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2009-07-08 13:44:20 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009-07-08 13:44:20 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2009-07-08 13:43:46 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2009-04-24 14:29:28 | 000,163,840 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009-03-20 23:29:18 | 000,012,920 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TVALZFL.sys -- (TVALZFL)
DRV - [2009-03-18 11:44:54 | 000,022,272 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PGEffect.sys -- (PGEffect)
DRV - [2009-01-27 19:12:14 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2009-01-13 17:56:06 | 000,346,112 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2008-11-11 18:29:42 | 000,154,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService)
DRV - [2008-09-22 06:49:36 | 000,112,128 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2008-05-07 11:30:12 | 000,025,896 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\LPCFilter.sys -- (LPCFilter)
DRV - [2007-12-14 11:53:24 | 000,024,200 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2007-11-09 14:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2007-04-23 10:50:50 | 000,025,896 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{CCF9C3AA-B086-45EE-BCA5-671BAD9D9D1B}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEG;
IE - HKLM\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^pl&si=pconverter&ptb=B31AFA16-B818-4B33-985E-63B937797948&ind=2013022718&n=77fc49fe&psa=&st=sb&searchfor={searchTerms}
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - SOFTWARE\Classes\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}\InprocServer32 File not found
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..\SearchScopes\{CCF9C3AA-B086-45EE-BCA5-671BAD9D9D1B}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEG_pl
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^pl&si=pconverter&ptb=B31AFA16-B818-4B33-985E-63B937797948&ind=2013022718&n=77fc49fe&psa=&st=sb&searchfor={searchTerms}
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?fr=mcafee&p={searchTerms}
IE - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "http://www.gazeta.pl/0,0.html?p=143"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2013-09-25 16:17:04 | 000,000,000 | ---D | M]
 
[2014-04-14 11:40:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Reni\AppData\Roaming\mozilla\Extensions
[2014-04-14 11:49:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Reni\AppData\Roaming\mozilla\Firefox\Profiles\46t4fsmd.default\extensions
[2013-03-04 19:03:11 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Reni\AppData\Roaming\mozilla\firefox\profiles\46t4fsmd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014-04-14 23:41:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-04-21 13:45:15 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2013-01-05 23:20:31 | 000,002,034 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: sweet-page (Enabled)
CHR - default_search_provider: search_url = http://www.sweet-page.com/web/?type=ds&ts=1390236745&from=cor&uid=TOSHIBAXMK2555GSX_69OKSP27SXX69OKSP27S&q={searchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - plugin: Error reading preferences file
CHR - Extension: Google Wallet = C:\Users\Reni\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
 
O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll File not found
O2 - BHO: (ALLYouTubeDownloader) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Program Files\ALLYouTubeDownloader\ALLYouTubeDownloader.dll (ALLCinema Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll File not found
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll File not found
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll File not found
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [cfFncEnabler.exe] C:\Program Files\TOSHIBA\ConfigFree\cfFncEnabler.exe (Toshiba Corporation)
O4 - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Electronics, Inc.)
O4 - HKLM..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [NBAgent] C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NDSTray.exe] C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [SmartFaceVWatcher] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe (TOSHIBA)
O4 - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe (Toshiba Europe GmbH)
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPCHWMsg] C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TWebCamera] C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\Run: [TOSHIBA Online Product Information] C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-18..\Run: [TOSHIBA Online Product Information] C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-187372915-3310667568-3965922056-1000..\Run: [ChomikBox] C:\Program Files\ChomikBox\chomikbox.exe ( )
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra Button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/4908-44618-9400-3/4 File not found
O9 - Extra Button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home File not found
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-187372915-3310667568-3965922056-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0D5F24B0-55C6-4787-9169-E1456615CEA7}: DhcpNameServer = 172.16.25.254 109.206.193.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{83FDE817-745D-4FDC-B4A8-24D6C8986DCE}: NameServer = 89.108.195.21 89.108.202.21
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll File not found
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll File not found
O20 - AppInit_DLLs: (c:\progra~2\bitguard\261673~1.238\{c16c1~1\bitguard.dll) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img7.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img7.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-03-17 17:27:22 | 000,148,320 | R--- | M] () - D:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-10-10 19:12:34 | 000,000,045 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{06d8b082-aa71-11de-9324-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{06d8b082-aa71-11de-9324-00225ff13965}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{06d8b0a3-aa71-11de-9324-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{06d8b0a3-aa71-11de-9324-00225ff13965}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{0c04f719-49ff-11e2-9a22-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{0c04f719-49ff-11e2-9a22-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{12a4ef92-d8c7-11de-a973-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{12a4ef92-d8c7-11de-a973-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{292655cd-9828-11df-bae7-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{292655cd-9828-11df-bae7-00225ff13965}\Shell\AutoRun\command - "" = D:\LaunchU3.exe
O33 - MountPoints2\{2cf42c7c-12cc-11e2-ac43-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{2cf42c7c-12cc-11e2-ac43-0026222f6127}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{2f799f09-858d-11e1-b9b2-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{2f799f09-858d-11e1-b9b2-00225ff13965}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{2f799f17-858d-11e1-b9b2-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{2f799f17-858d-11e1-b9b2-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{576ca2da-26b7-11e2-8ced-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{576ca2da-26b7-11e2-8ced-00225ff13965}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{576ca2e7-26b7-11e2-8ced-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{576ca2e7-26b7-11e2-8ced-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{5fbbcc22-5387-11e3-a7f8-b3806ff58e9a}\Shell - "" = AutoRun
O33 - MountPoints2\{5fbbcc22-5387-11e3-a7f8-b3806ff58e9a}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{7f136533-d0a7-11e0-974e-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{7f136533-d0a7-11e0-974e-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{9fafee09-25b6-11e1-b280-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{9fafee09-25b6-11e1-b280-00225ff13965}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL D:\index.html
O33 - MountPoints2\{aa53cec8-86e1-11e1-b7ee-0026222f6127}\Shell - "" = AutoRun
O33 - MountPoints2\{aa53cec8-86e1-11e1-b7ee-0026222f6127}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{e8f1caa2-870e-11e2-aea5-e2c7d5b165a8}\Shell - "" = AutoRun
O33 - MountPoints2\{e8f1caa2-870e-11e2-aea5-e2c7d5b165a8}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{f21b1c16-ab47-11de-ac6c-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{f21b1c16-ab47-11de-ac6c-00225ff13965}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{f21b1c19-ab47-11de-ac6c-00225ff13965}\Shell - "" = AutoRun
O33 - MountPoints2\{f21b1c19-ab47-11de-ac6c-00225ff13965}\Shell\AutoRun\command - "" = D:\AutoRun.exe -- [2011-03-17 17:27:22 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-04-14 18:40:34 | 000,000,000 | ---D | C] -- C:\FRST
[2014-04-14 18:20:02 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014-04-14 18:20:01 | 000,000,000 | ---D | C] -- C:\rsit
[2014-04-14 17:35:55 | 000,000,000 | ---D | C] -- C:\Users\Reni\Desktop\Nowy folder
[2014-04-14 17:25:54 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014-04-14 11:11:50 | 000,107,736 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014-04-14 11:11:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014-04-14 11:11:32 | 000,073,432 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014-04-14 11:11:32 | 000,051,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014-04-14 11:11:32 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2014-04-14 11:11:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014-04-14 11:11:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014-04-13 23:53:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014-04-13 23:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2014-03-18 15:56:44 | 000,000,000 | ---D | C] -- C:\Users\Reni\Desktop\na piatek
[2014-03-18 14:55:57 | 000,000,000 | R--D | C] -- C:\Users\Reni\Documents\Notes
[2014-01-20 18:55:22 | 000,824,704 | ---- | C] (AnyProtect.com) -- C:\Users\Reni\AppData\Local\AnyProtectScannerSetup.exe
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-04-14 23:51:52 | 000,686,614 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2014-04-14 23:51:52 | 000,601,332 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014-04-14 23:51:52 | 000,135,810 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2014-04-14 23:51:52 | 000,109,214 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014-04-14 23:46:15 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-04-14 23:45:20 | 000,001,799 | ---- | M] () -- C:\Users\Reni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 1510 series.lnk
[2014-04-14 23:44:27 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-04-14 23:44:11 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014-04-14 23:44:11 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014-04-14 23:44:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-04-14 23:44:01 | 2005,794,816 | -HS- | M] () -- C:\hiberfil.sys
[2014-04-14 23:41:19 | 000,001,046 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014-04-14 23:04:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-04-14 18:00:00 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\APSnotifierCA.job
[2014-04-14 14:15:12 | 000,107,736 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014-04-14 11:11:35 | 000,000,864 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014-04-14 10:37:37 | 000,001,612 | ---- | M] () -- C:\Users\Reni\Desktop\Wyczyść rejestr za darmo!.lnk
[2014-04-13 23:53:10 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014-04-09 21:53:15 | 000,050,239 | ---- | M] () -- C:\Users\Reni\Desktop\b1.jpg
[2014-04-08 22:37:52 | 000,459,432 | ---- | M] () -- C:\Users\Reni\Desktop\rozdz.pdf
[2014-04-08 21:25:45 | 000,301,603 | ---- | M] () -- C:\Users\Reni\Documents\Scan10.jpg
[2014-04-08 21:25:38 | 000,478,375 | ---- | M] () -- C:\Users\Reni\Documents\Scan9.jpg
[2014-04-08 21:25:33 | 000,774,199 | ---- | M] () -- C:\Users\Reni\Documents\Scan8.jpg
[2014-04-08 21:25:29 | 000,720,271 | ---- | M] () -- C:\Users\Reni\Documents\Scan7.jpg
[2014-04-08 21:25:25 | 000,441,630 | ---- | M] () -- C:\Users\Reni\Documents\Scan6.jpg
[2014-04-08 21:25:18 | 000,631,980 | ---- | M] () -- C:\Users\Reni\Documents\Scan5.jpg
[2014-04-08 21:25:14 | 000,655,072 | ---- | M] () -- C:\Users\Reni\Documents\Scan4.jpg
[2014-04-08 21:25:09 | 000,674,855 | ---- | M] () -- C:\Users\Reni\Documents\Scan3.jpg
[2014-04-08 21:25:03 | 000,500,428 | ---- | M] () -- C:\Users\Reni\Documents\Scan1.jpg
[2014-04-08 21:24:57 | 000,483,938 | ---- | M] () -- C:\Users\Reni\Documents\Scan.jpg
[2014-04-08 18:54:22 | 000,366,274 | ---- | M] () -- C:\Users\Reni\Documents\Scan11.jpg
[2014-04-03 09:51:10 | 000,051,416 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014-04-03 09:51:00 | 000,073,432 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014-04-03 09:50:56 | 000,023,256 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2014-03-28 00:06:25 | 000,193,024 | ---- | M] () -- C:\Users\Reni\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-03-20 02:22:42 | 000,374,748 | ---- | M] () -- C:\Users\Reni\Desktop\zwolnienie.pdf
[2014-03-18 14:55:53 | 000,004,544 | ---- | M] () -- C:\Users\Reni\Desktop\Nowy dokument dziennika.jnt
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-04-14 11:11:35 | 000,000,864 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014-04-13 23:53:10 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014-04-09 21:53:14 | 000,050,239 | ---- | C] () -- C:\Users\Reni\Desktop\b1.jpg
[2014-04-08 22:37:49 | 000,459,432 | ---- | C] () -- C:\Users\Reni\Desktop\rozdz.pdf
[2014-04-08 18:54:22 | 000,366,274 | ---- | C] () -- C:\Users\Reni\Documents\Scan11.jpg
[2014-04-08 18:53:03 | 000,301,603 | ---- | C] () -- C:\Users\Reni\Documents\Scan10.jpg
[2014-04-08 18:51:55 | 000,478,375 | ---- | C] () -- C:\Users\Reni\Documents\Scan9.jpg
[2014-04-08 18:50:53 | 000,774,199 | ---- | C] () -- C:\Users\Reni\Documents\Scan8.jpg
[2014-04-08 18:49:46 | 000,720,271 | ---- | C] () -- C:\Users\Reni\Documents\Scan7.jpg
[2014-04-08 18:48:53 | 000,441,630 | ---- | C] () -- C:\Users\Reni\Documents\Scan6.jpg
[2014-04-08 18:48:05 | 000,631,980 | ---- | C] () -- C:\Users\Reni\Documents\Scan5.jpg
[2014-04-08 18:47:15 | 000,655,072 | ---- | C] () -- C:\Users\Reni\Documents\Scan4.jpg
[2014-04-08 18:46:22 | 000,674,855 | ---- | C] () -- C:\Users\Reni\Documents\Scan3.jpg
[2014-04-08 18:45:30 | 000,500,428 | ---- | C] () -- C:\Users\Reni\Documents\Scan1.jpg
[2014-04-08 18:43:44 | 000,483,938 | ---- | C] () -- C:\Users\Reni\Documents\Scan.jpg
[2014-03-20 02:22:39 | 000,374,748 | ---- | C] () -- C:\Users\Reni\Desktop\zwolnienie.pdf
[2014-03-18 14:55:53 | 000,004,544 | ---- | C] () -- C:\Users\Reni\Desktop\Nowy dokument dziennika.jnt
[2014-02-24 12:44:25 | 000,123,856 | ---- | C] () -- C:\Users\Reni\20141_liro06a_01_PE370362.jpg
[2014-02-21 10:42:40 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013-08-04 01:33:15 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2013-07-24 00:02:58 | 000,002,771 | ---- | C] () -- C:\Users\Reni\.recently-used.xbel
[2013-05-26 18:28:23 | 000,000,552 | ---- | C] () -- C:\Users\Reni\AppData\Local\d3d8caps.dat
[2012-12-19 22:01:16 | 000,644,608 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2012-12-19 22:01:15 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll
[2012-09-18 11:52:52 | 000,001,356 | ---- | C] () -- C:\Users\Reni\AppData\Local\d3d9caps.dat
[2009-11-08 15:51:52 | 000,031,007 | ---- | C] () -- C:\Users\Reni\AppData\Roaming\UserTile.png
[2009-09-25 08:54:44 | 000,193,024 | ---- | C] () -- C:\Users\Reni\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2006-11-02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2011-01-21 17:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-03-03 06:36:24 | 000,615,424 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008-01-21 04:24:03 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-01-22 16:34:42 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\AVG
[2014-04-14 16:17:06 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\BitTorrent
[2012-12-19 21:41:20 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\FLVPlayerPackages
[2013-07-23 23:59:18 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\gtk-2.0
[2013-11-11 15:41:26 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\IrfanView
[2013-02-03 01:00:06 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\NapiProjekt
[2011-07-03 19:06:31 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\Nowe Gadu-Gadu
[2009-09-26 13:34:32 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\OpenFM
[2009-11-08 15:51:51 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\PeerNetworking
[2013-11-14 16:01:46 | 000,000,000 | ---D | M] -- C:\Users\Reni\AppData\Roaming\TOSHIBA
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:0B4227B4
 
< End of report >
 
Wygenerowano w 0.065s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!