OTL logfile created on: 2012-08-07 10:52:26 - Run 1
OTL by OldTimer - Version 3.2.56.0     Folder = D:\pobrane
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
5,97 Gb Total Physical Memory | 4,39 Gb Available Physical Memory | 73,57% Memory free
11,93 Gb Paging File | 10,26 Gb Available in Paging File | 85,98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 48,82 Gb Total Space | 21,21 Gb Free Space | 43,45% Space Free | Partition Type: NTFS
Drive D: | 416,93 Gb Total Space | 48,28 Gb Free Space | 11,58% Space Free | Partition Type: NTFS
Drive F: | 35,61 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 6,55 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: WIELKIECZOŁO | User Name: Przemek Wrona | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-08-07 10:47:52 | 000,596,480 | ---- | M] (OldTimer Tools) -- D:\pobrane\OTL.exe
PRC - [2012-07-28 08:40:19 | 000,514,048 | ---- | M] () -- D:\programy\play\PLAY ONLINE\PLAY ONLINE.exe
PRC - [2012-07-28 08:40:08 | 000,218,624 | ---- | M] () -- C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2012-07-20 09:31:17 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012-07-16 06:23:56 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
PRC - [2012-07-16 06:23:56 | 000,975,800 | ---- | M] (Samsung) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
PRC - [2012-03-07 15:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2012-01-18 14:02:04 | 000,508,136 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010-11-16 15:37:30 | 000,230,912 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2008-10-20 18:47:32 | 002,580,480 | ---- | M] (OpenOffice.org) -- D:\programy\office\program\soffice.bin
PRC - [2008-10-20 18:47:30 | 002,363,392 | ---- | M] (OpenOffice.org) -- D:\programy\office\program\soffice.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-07-28 08:40:19 | 000,514,048 | ---- | M] () -- D:\programy\play\PLAY ONLINE\PLAY ONLINE.exe
MOD - [2012-07-28 08:40:12 | 000,384,512 | ---- | M] () -- D:\programy\play\PLAY ONLINE\USSDUIPlugin.dll
MOD - [2012-07-28 08:40:12 | 000,308,224 | ---- | M] () -- D:\programy\play\PLAY ONLINE\StatusBarMgrPlugin.dll
MOD - [2012-07-28 08:40:12 | 000,240,128 | ---- | M] () -- D:\programy\play\PLAY ONLINE\ToolBarMgrPlugin.dll
MOD - [2012-07-28 08:40:12 | 000,190,464 | ---- | M] () -- D:\programy\play\PLAY ONLINE\XFramePlugin.dll
MOD - [2012-07-28 08:40:12 | 000,159,232 | ---- | M] () -- D:\programy\play\PLAY ONLINE\XCodec.dll
MOD - [2012-07-28 08:40:12 | 000,156,672 | ---- | M] () -- D:\programy\play\PLAY ONLINE\STKSrvPlugin.dll
MOD - [2012-07-28 08:40:12 | 000,142,336 | ---- | M] () -- D:\programy\play\PLAY ONLINE\USSDSrvPlugin.dll
MOD - [2012-07-28 08:40:12 | 000,135,168 | ---- | M] () -- D:\programy\play\PLAY ONLINE\Trace.dll
MOD - [2012-07-28 08:40:12 | 000,106,496 | ---- | M] () -- D:\programy\play\PLAY ONLINE\Win7Support.dll
MOD - [2012-07-28 08:40:11 | 009,515,520 | ---- | M] () -- D:\programy\play\PLAY ONLINE\QtGui4.dll
MOD - [2012-07-28 08:40:11 | 002,415,104 | ---- | M] () -- D:\programy\play\PLAY ONLINE\QtCore4.dll
MOD - [2012-07-28 08:40:11 | 001,148,416 | ---- | M] () -- D:\programy\play\PLAY ONLINE\QtNetwork4.dll
MOD - [2012-07-28 08:40:11 | 000,808,960 | ---- | M] () -- D:\programy\play\PLAY ONLINE\SMSUIPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,670,720 | ---- | M] () -- D:\programy\play\PLAY ONLINE\SmsAppPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,545,280 | ---- | M] () -- D:\programy\play\PLAY ONLINE\PluginContainer.dll
MOD - [2012-07-28 08:40:11 | 000,483,328 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NetInfoUIExPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,381,952 | ---- | M] () -- D:\programy\play\PLAY ONLINE\Proxy.dll
MOD - [2012-07-28 08:40:11 | 000,370,176 | ---- | M] () -- D:\programy\play\PLAY ONLINE\plugins\imageformats\qtiff4.dll
MOD - [2012-07-28 08:40:11 | 000,350,720 | ---- | M] () -- D:\programy\play\PLAY ONLINE\plugins\imageformats\qmng4.dll
MOD - [2012-07-28 08:40:11 | 000,333,312 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NetConnectPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,278,528 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NetInfoSrvPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,261,632 | ---- | M] () -- D:\programy\play\PLAY ONLINE\sdk.dll
MOD - [2012-07-28 08:40:11 | 000,235,008 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NetSrvPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,217,600 | ---- | M] () -- D:\programy\play\PLAY ONLINE\SmsSrvPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,192,000 | ---- | M] () -- D:\programy\play\PLAY ONLINE\plugins\imageformats\qjpeg4.dll
MOD - [2012-07-28 08:40:11 | 000,158,720 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NetConnectSrvPlugin.dll
MOD - [2012-07-28 08:40:11 | 000,133,120 | ---- | M] () -- D:\programy\play\PLAY ONLINE\OSDialup.dll
MOD - [2012-07-28 08:40:11 | 000,131,072 | ---- | M] () -- D:\programy\play\PLAY ONLINE\OSNDIS.dll
MOD - [2012-07-28 08:40:11 | 000,101,376 | ---- | M] () -- D:\programy\play\PLAY ONLINE\OSAdapt.dll
MOD - [2012-07-28 08:40:11 | 000,093,184 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NotifyServicePlugin.dll
MOD - [2012-07-28 08:40:11 | 000,082,944 | ---- | M] () -- D:\programy\play\PLAY ONLINE\plugins\imageformats\qgif4.dll
MOD - [2012-07-28 08:40:11 | 000,081,920 | ---- | M] () -- D:\programy\play\PLAY ONLINE\plugins\imageformats\qico4.dll
MOD - [2012-07-28 08:40:11 | 000,065,536 | ---- | M] () -- D:\programy\play\PLAY ONLINE\OSPowerMgr.dll
MOD - [2012-07-28 08:40:11 | 000,062,976 | ---- | M] () -- D:\programy\play\PLAY ONLINE\OSCall.dll
MOD - [2012-07-28 08:40:10 | 001,101,824 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NDISAPI.dll
MOD - [2012-07-28 08:40:10 | 000,427,008 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DialupUIPlugin.dll
MOD - [2012-07-28 08:40:10 | 000,334,848 | ---- | M] () -- D:\programy\play\PLAY ONLINE\MainpagePlugin.dll
MOD - [2012-07-28 08:40:10 | 000,249,344 | ---- | M] () -- D:\programy\play\PLAY ONLINE\MenuMgrPlugin.dll
MOD - [2012-07-28 08:40:10 | 000,239,104 | ---- | M] () -- D:\programy\play\PLAY ONLINE\LiveUpdateInterface.dll
MOD - [2012-07-28 08:40:10 | 000,180,224 | ---- | M] () -- D:\programy\play\PLAY ONLINE\NDISPlugin.dll
MOD - [2012-07-28 08:40:10 | 000,118,272 | ---- | M] () -- D:\programy\play\PLAY ONLINE\LayoutPlugin.dll
MOD - [2012-07-28 08:40:10 | 000,043,008 | ---- | M] () -- D:\programy\play\PLAY ONLINE\libgcc_s_dw2-1.dll
MOD - [2012-07-28 08:40:10 | 000,011,362 | ---- | M] () -- D:\programy\play\PLAY ONLINE\mingwm10.dll
MOD - [2012-07-28 08:40:09 | 001,077,248 | ---- | M] () -- D:\programy\play\PLAY ONLINE\AddrBookPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,739,328 | ---- | M] () -- D:\programy\play\PLAY ONLINE\AddrBookUIPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,550,400 | ---- | M] () -- D:\programy\play\PLAY ONLINE\CallAppPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,547,840 | ---- | M] () -- D:\programy\play\PLAY ONLINE\CallLogSrvPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,495,104 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DeviceMgrUIPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,428,032 | ---- | M] () -- D:\programy\play\PLAY ONLINE\core.dll
MOD - [2012-07-28 08:40:09 | 000,338,432 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DeviceAppPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,301,056 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DeviceSrvPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,264,704 | ---- | M] () -- D:\programy\play\PLAY ONLINE\AddrBookSrvPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,238,080 | ---- | M] () -- D:\programy\play\PLAY ONLINE\AtCodec.dll
MOD - [2012-07-28 08:40:09 | 000,218,112 | ---- | M] () -- D:\programy\play\PLAY ONLINE\Common.dll
MOD - [2012-07-28 08:40:09 | 000,211,968 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DialUpPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,176,128 | ---- | M] () -- D:\programy\play\PLAY ONLINE\CallSrvPlugin.dll
MOD - [2012-07-28 08:40:09 | 000,157,184 | ---- | M] () -- D:\programy\play\PLAY ONLINE\DataServicePlugin.dll
MOD - [2012-07-28 08:40:09 | 000,123,392 | ---- | M] () -- D:\programy\play\PLAY ONLINE\ATR2SMgr.dll
MOD - [2012-07-20 09:31:16 | 002,003,424 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012-06-04 13:47:17 | 017,632,256 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\3989b4ca6cf904061992daec9e7d5644\PresentationFramework.ni.dll
MOD - [2012-05-20 10:35:55 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\6e7f1bdc845816dfc797f8002b76b5e8\System.ServiceProcess.ni.dll
MOD - [2012-05-20 10:34:23 | 001,776,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll
MOD - [2012-05-19 21:00:49 | 000,973,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ac18c2dcd06bd2a0589bac94ccae5716\System.Configuration.ni.dll
MOD - [2012-05-19 21:00:47 | 005,571,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll
MOD - [2012-05-19 21:00:45 | 011,057,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll
MOD - [2012-05-19 21:00:41 | 007,025,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2012-05-19 21:00:37 | 003,779,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll
MOD - [2012-05-19 21:00:34 | 009,000,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2012-05-19 21:00:30 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2012-05-19 20:42:10 | 008,797,856 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
MOD - [2007-12-19 15:04:24 | 000,828,416 | ---- | M] () -- D:\programy\office\program\libxml2.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2012-08-07 10:42:56 | 000,108,392 | ---- | M] (SurfRight B.V.) [Auto | Running] -- C:\Program Files\HitmanPro\hmpsched.exe -- (HitmanProScheduler)
SRV:[b]64bit:[/b] - [2012-03-07 15:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-08-06 21:51:22 | 008,854,904 | ---- | M] (SurfRight B.V.) [Auto | Stopped] -- D:\pobrane\HitmanPro36_x64.exe -- (HitmanPro36CrusaderBoot)
SRV - [2012-07-28 08:40:08 | 000,218,624 | ---- | M] () [Auto | Stopped] -- D:\programy\play\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2012-07-20 09:31:16 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011-05-16 01:50:00 | 004,135,800 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2010-11-16 15:38:16 | 000,339,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2012-07-28 08:40:12 | 000,421,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ewusbwwan.sys -- (ewusbmbb)
DRV:[b]64bit:[/b] - [2012-07-28 08:40:12 | 000,221,312 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:[b]64bit:[/b] - [2012-07-28 08:40:12 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:[b]64bit:[/b] - [2012-07-28 08:40:12 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2012-07-28 08:40:12 | 000,013,952 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV:[b]64bit:[/b] - [2012-05-19 20:16:56 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2012-03-14 08:40:04 | 000,137,144 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:[b]64bit:[/b] - [2012-03-14 08:40:02 | 000,209,768 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:[b]64bit:[/b] - [2012-03-14 08:40:02 | 000,148,528 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2012-03-09 10:57:36 | 000,023,816 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:[b]64bit:[/b] - [2011-12-08 06:22:28 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:[b]64bit:[/b] - [2011-12-08 06:22:28 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:[b]64bit:[/b] - [2011-12-08 06:22:28 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:[b]64bit:[/b] - [2011-12-08 06:22:28 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:[b]64bit:[/b] - [2011-12-08 06:22:28 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:[b]64bit:[/b] - [2011-10-13 12:05:50 | 010,629,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2010-11-21 05:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:18 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2005-01-03 08:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.0: C:\Windows\system32\npDeployJava1.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2012-05-20 19:21:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-07-20 09:31:17 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012-07-04 10:16:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-05-20 19:21:34 | 000,000,000 | ---D | M]
 
[2012-05-19 20:18:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Przemek Wrona\AppData\Roaming\mozilla\Extensions
[2012-05-20 20:36:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Przemek Wrona\AppData\Roaming\mozilla\Firefox\Profiles\oczpye4a.default\extensions
[2012-07-03 08:51:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-07-20 09:31:17 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012-05-20 09:57:55 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2011-12-09 19:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2012-04-21 04:18:44 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2012-04-21 04:18:44 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2012-04-21 04:18:44 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2012-04-21 04:18:44 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2012-04-21 04:18:44 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-04-21 04:18:44 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [DAEMON Tools Lite] D:\programy\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
O4 - Startup: C:\Users\Przemek Wrona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk = D:\programy\office\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9CA80F31-909A-436C-9166-2ABA6AF67E07}: NameServer = 89.108.202.20 89.108.195.20
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010-11-16 23:37:37 | 000,142,336 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-10-07 11:12:34 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2012-05-06 17:23:13 | 000,000,070 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{060fae7a-a1de-11e1-90cc-bcaec55e5964}\Shell - "" = AutoRun
O33 - MountPoints2\{060fae7a-a1de-11e1-90cc-bcaec55e5964}\Shell\AutoRun\command - "" = H:\Setup.exe -- [2012-05-06 17:23:13 | 000,582,014 | R--- | M] (EA Sports                                                   )
O33 - MountPoints2\{060fae87-a1de-11e1-90cc-bcaec55e5964}\Shell - "" = AutoRun
O33 - MountPoints2\{060fae87-a1de-11e1-90cc-bcaec55e5964}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{6e8508fe-d87f-11e1-bd38-bcaec55e5964}\Shell - "" = AutoRun
O33 - MountPoints2\{6e8508fe-d87f-11e1-bd38-bcaec55e5964}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010-11-16 23:37:37 | 000,142,336 | R--- | M] ()
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010-11-16 23:37:37 | 000,142,336 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (bootdelete)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-08-07 10:46:35 | 000,012,872 | ---- | C] (SurfRight B.V.) -- C:\Windows\SysNative\bootdelete.exe
[2012-08-07 10:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
[2012-08-07 10:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2012-08-06 21:52:46 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2012-08-06 20:20:19 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\AppData\Roaming\hellomoto
[2012-08-04 21:08:06 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\AppData\Local\ESET
[2012-08-03 19:30:07 | 000,000,000 | RHSD | C] -- C:\Users\Przemek Wrona\M-10-6897-8685-3464
[2012-07-31 09:58:29 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\AppData\Roaming\PhotoScape
[2012-07-31 09:58:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
[2012-07-29 21:06:42 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\Desktop\elo
[2012-07-28 15:08:38 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\Documents\My Games
[2012-07-28 15:07:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
[2012-07-28 08:40:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLAY ONLINE
[2012-07-28 08:40:33 | 001,001,472 | ---- | C] (DiBcom SA) -- C:\Windows\SysNative\drivers\mod7700.sys
[2012-07-28 08:40:33 | 000,421,376 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbwwan.sys
[2012-07-28 08:40:33 | 000,221,312 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys
[2012-07-28 08:40:33 | 000,212,992 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_juwwanecm.sys
[2012-07-28 08:40:33 | 000,117,248 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys
[2012-07-28 08:40:33 | 000,098,816 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys
[2012-07-28 08:40:33 | 000,086,016 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys
[2012-07-28 08:40:33 | 000,069,632 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jucdcecm.sys
[2012-07-28 08:40:33 | 000,032,768 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysNative\drivers\ewdcsc.sys
[2012-07-28 08:40:33 | 000,028,672 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_juextctrl.sys
[2012-07-28 08:40:33 | 000,022,016 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_hwupgrade.sys
[2012-07-28 08:40:33 | 000,013,952 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys
[2012-07-19 11:09:09 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\AppData\Roaming\OpenOffice.org2
[2012-07-19 11:08:41 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 2.4
[2012-07-16 11:51:02 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\Desktop\wesele
[2012-07-10 23:08:15 | 000,000,000 | ---D | C] -- C:\Users\Przemek Wrona\Desktop\l
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-08-07 10:47:16 | 001,549,696 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-08-07 10:47:16 | 000,697,674 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-08-07 10:47:16 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-08-07 10:47:16 | 000,134,784 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-08-07 10:47:16 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-08-07 10:46:35 | 000,012,872 | ---- | M] (SurfRight B.V.) -- C:\Windows\SysNative\bootdelete.exe
[2012-08-07 10:46:35 | 000,003,164 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2012-08-07 10:46:35 | 000,001,622 | ---- | M] () -- C:\Windows\SysNative\bootdelete.lst
[2012-08-07 10:42:56 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2012-08-07 10:41:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-08-07 10:41:09 | 509,435,903 | -HS- | M] () -- C:\hiberfil.sys
[2012-08-04 18:58:33 | 002,856,835 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 11.26.23.jpg
[2012-08-04 18:57:03 | 002,549,738 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 15.49.56.jpg
[2012-08-04 18:52:18 | 001,926,068 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 16.32.53.jpg
[2012-08-04 18:43:49 | 003,542,262 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 12.04.04.jpg
[2012-08-04 18:41:14 | 001,303,466 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 10.10.59.jpg
[2012-08-04 18:33:01 | 004,775,814 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 10.07.48.jpg
[2012-08-03 13:29:45 | 000,016,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-08-03 13:29:45 | 000,016,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-08-01 11:07:18 | 000,001,168 | ---- | M] () -- C:\Windows\FOE2.ini
[2012-08-01 10:34:26 | 003,857,703 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 11.36.12.jpg
[2012-07-31 09:58:26 | 000,000,677 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\PhotoScape.lnk
[2012-07-28 15:07:29 | 000,001,538 | ---- | M] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012-07-28 08:40:59 | 000,000,774 | ---- | M] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk
[2012-07-28 08:40:12 | 001,490,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01007.dll
[2012-07-28 08:40:12 | 001,490,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfCoInstaller01007.dll
[2012-07-28 08:40:12 | 001,001,472 | ---- | M] (DiBcom SA) -- C:\Windows\SysNative\drivers\mod7700.sys
[2012-07-28 08:40:12 | 000,421,376 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbwwan.sys
[2012-07-28 08:40:12 | 000,221,312 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys
[2012-07-28 08:40:12 | 000,212,992 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_juwwanecm.sys
[2012-07-28 08:40:12 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys
[2012-07-28 08:40:12 | 000,098,816 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys
[2012-07-28 08:40:12 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys
[2012-07-28 08:40:12 | 000,069,632 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_jucdcecm.sys
[2012-07-28 08:40:12 | 000,032,768 | ---- | M] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysNative\drivers\ewdcsc.sys
[2012-07-28 08:40:12 | 000,028,672 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_juextctrl.sys
[2012-07-28 08:40:12 | 000,022,016 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_hwupgrade.sys
[2012-07-28 08:40:12 | 000,013,952 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys
[2012-07-19 16:28:13 | 000,291,280 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012-07-19 12:35:37 | 000,074,671 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\cv jadzi.xml
[2012-07-19 12:34:57 | 000,027,089 | ---- | M] () -- C:\Users\Przemek Wrona\Desktop\cj jadzka.odt
[2012-07-19 11:12:32 | 000,002,177 | ---- | M] () -- C:\Users\Przemek Wrona\Documents\s.odb
[2012-07-19 11:10:05 | 000,000,761 | ---- | M] () -- C:\Users\Przemek Wrona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk
[2012-07-17 19:24:52 | 000,210,807 | ---- | M] () -- C:\Users\Przemek Wrona\Documents\chossenn.m3u
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-08-07 10:46:35 | 000,003,164 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2012-08-07 10:46:35 | 000,001,622 | ---- | C] () -- C:\Windows\SysNative\bootdelete.lst
[2012-08-07 10:42:56 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2012-08-04 19:00:08 | 001,926,068 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 16.32.53.jpg
[2012-08-04 19:00:03 | 002,549,738 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 15.49.56.jpg
[2012-08-04 18:59:53 | 003,542,262 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 12.04.04.jpg
[2012-08-04 18:59:42 | 003,857,703 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 11.36.12.jpg
[2012-08-04 18:59:29 | 002,856,835 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 11.26.23.jpg
[2012-08-04 18:59:13 | 004,775,814 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 10.07.48.jpg
[2012-08-04 18:59:05 | 001,303,466 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\2012-07-29 10.10.59.jpg
[2012-07-31 09:58:26 | 000,000,677 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\PhotoScape.lnk
[2012-07-28 15:07:29 | 000,001,538 | ---- | C] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012-07-28 08:40:59 | 000,000,774 | ---- | C] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk
[2012-07-19 12:22:07 | 000,074,671 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\cv jadzi.xml
[2012-07-19 12:15:10 | 000,027,089 | ---- | C] () -- C:\Users\Przemek Wrona\Desktop\cj jadzka.odt
[2012-07-19 11:12:32 | 000,002,177 | ---- | C] () -- C:\Users\Przemek Wrona\Documents\s.odb
[2012-07-19 11:10:05 | 000,000,761 | ---- | C] () -- C:\Users\Przemek Wrona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk
[2012-05-31 10:35:45 | 000,007,604 | ---- | C] () -- C:\Users\Przemek Wrona\AppData\Local\Resmon.ResmonCfg
[2012-05-21 19:32:33 | 000,001,168 | ---- | C] () -- C:\Windows\FOE2.ini
[2012-01-31 01:15:44 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012-01-31 01:15:42 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012-01-31 01:15:42 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012-01-31 01:15:42 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012-01-31 01:15:42 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2011-10-13 12:04:02 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2011-10-13 12:04:02 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2011-10-13 12:04:02 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin

< End of report >