OTL logfile created on: 8/15/2013 4:01:47 PM - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
Microsoft Windows XP Dodatek Service Pack 2 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,014.00 Mb Total Physical Memory | 821.00 Mb Available Physical Memory | 81.00% Memory free
902.00 Mb Paging File | 846.00 Mb Available in Paging File | 94.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 74.04 Gb Free Space | 66.24% Space Free | Partition Type: NTFS
Drive D: | 1.87 Gb Total Space | 1.29 Gb Free Space | 68.87% Space Free | Partition Type: FAT32
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled] --  -- (HidServ)
SRV - File not found [On_Demand] --  -- (AppMgmt)
SRV - [2013/08/07 15:52:06 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/06/29 13:07:20 | 001,598,128 | ---- | M] (AVG Secure Search) [Auto] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe -- (vToolbarUpdater15.3.0)
SRV - [2013/05/21 09:31:12 | 001,167,152 | ---- | M] () [Auto] -- C:\WINDOWS\system32\dmwu.exe -- (IBUpdaterService)
SRV - [2013/01/08 07:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/11/15 18:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/10/22 08:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012/10/02 06:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2011/10/03 14:59:48 | 000,180,552 | ---- | M] (Solid Documents, LLC) [Auto] -- C:\Program Files\SolidDocuments\SolidPDFCreator\SPC\SolidPdfService.exe -- (SPDFCreatorReadSpool)
SRV - [2006/03/14 02:22:00 | 000,206,400 | ---- | M] (SafeNet, Inc) [Auto] -- C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe -- (SentinelProtectionServer)
SRV - [2002/08/01 04:22:40 | 000,065,536 | ---- | M] (HP) [On_Demand] -- C:\WINDOWS\system32\hpzipm12.exe -- (Pml Driver HPZ12)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand] --  -- (WDICA)
DRV - File not found [Kernel | System] --  -- (Wbutton)
DRV - File not found [Kernel | On_Demand] --  -- (USBAAPL)
DRV - File not found [Kernel | On_Demand] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] --  -- (PDCOMP)
DRV - File not found [Kernel | System] --  -- (PCIDump)
DRV - File not found [Kernel | System] --  -- (mailKmd)
DRV - File not found [Kernel | System] --  -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand] --  -- (huawei_enumerator)
DRV - File not found [Kernel | On_Demand] --  -- (huawei_cdcacm)
DRV - File not found [Kernel | On_Demand] --  -- (filtertdidriver)
DRV - File not found [Kernel | On_Demand] --  -- (ew_hwusbdev)
DRV - File not found [Kernel | System] --  -- (Changer)
DRV - [2013/06/29 13:07:20 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012/11/15 18:33:26 | 000,094,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2012/10/22 08:02:46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2012/10/14 22:48:52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/10/01 22:30:38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/09/20 22:46:06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/09/20 22:46:00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2012/09/20 22:45:54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2012/09/13 22:05:20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2006/07/24 09:15:00 | 004,353,024 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/03/23 02:59:36 | 000,037,888 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006/03/23 02:59:28 | 000,061,056 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006/03/15 00:51:00 | 000,244,608 | ---- | M] (Marvell) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006/03/14 02:22:00 | 000,090,176 | ---- | M] (SafeNet, Inc.) [Kernel | Auto] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2006/01/20 06:44:42 | 000,862,340 | ---- | M] (Motorola Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2004/08/03 18:29:52 | 000,166,912 | ---- | M] (S3 Graphics, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\s3gnbm.sys -- (S3SavageNB)
DRV - [2003/04/28 06:27:06 | 000,009,867 | ---- | M] () [Kernel | System] -- C:\WINDOWS\System32\drivers\HOTKEY.sys -- (Hotkey)
DRV - [2003/03/20 05:01:46 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=prs&from=prs&uid=1782_133120_58269_3219913727_240821B0&ts=1358526204
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.27010003&st=12&barid={E36E6196-2A18-4706-8BA7-CA526599F963}
IE - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.v9.com/web/?q={searchTerms}
IE - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.v9.com/web/?q={searchTerms}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
 
IE - HKU\rafek_ON_C\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=prs&from=prs&uid=1782_133120_58269_3219913727_240821B0&ts=1358526204
IE - HKU\rafek_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\rafek_ON_C\Software\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\rafek_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.27010003&st=12&barid={E36E6196-2A18-4706-8BA7-CA526599F963}
IE - HKU\rafek_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\rafek_ON_C\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\rafek_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\rafek_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "v9"
FF - prefs.js..browser.search.selectedEngine: "SweetIM Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: wrc@avast.com:7.0.1426
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2
FF - prefs.js..extensions.enabledItems: {90eee664-34b1-422a-a782-779af65cdf6d}:3.2.5.2
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&barid={E36E6196-2A18-4706-8BA7-CA526599F963}&q="
FF - prefs.js..network.proxy.no_proxies_on: "localhost,127.0.0.1"
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "v9"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "v9"
FF - prefs.js..browser.startup.homepage: "http://www.v9.com/?utm_source=b&utm_medium=prs&from=prs&uid=1782_133120_58269_3219913727_240821B0&ts=1358526204"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://mystart.incredimail.com/mb59/?loc=ff_address_bar&u=92259923858288356&search="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.3.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Dane aplikacji\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/02/16 18:44:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/08/07 15:51:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/08/07 15:51:35 | 000,000,000 | ---D | M]
 
[2010/10/11 10:56:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\rafek\Dane aplikacji\mozilla\Extensions
[2013/07/17 04:48:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\rafek\Dane aplikacji\mozilla\Firefox\Profiles\1gqxapao.default\extensions
[2013/07/17 04:48:38 | 000,000,000 | ---D | M] (IncrediMail MediaBar 4 Community Toolbar) -- C:\Documents and Settings\rafek\Dane aplikacji\mozilla\Firefox\Profiles\1gqxapao.default\extensions\{90eee664-34b1-422a-a782-779af65cdf6d}
[2012/12/08 18:39:34 | 000,000,000 | ---D | M] (Facemoods) -- C:\Documents and Settings\rafek\Dane aplikacji\mozilla\Firefox\Profiles\1gqxapao.default\extensions\ffxtlbr@Facemoods.com
[2011/08/26 04:03:56 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\rafek\Dane aplikacji\Mozilla\Firefox\Profiles\1gqxapao.default\searchplugins\MyStart Search.xml
[2013/06/02 08:05:14 | 000,002,120 | ---- | M] () -- C:\Documents and Settings\rafek\Dane aplikacji\Mozilla\Firefox\Profiles\1gqxapao.default\searchplugins\MyStart.xml
[2013/01/18 13:14:43 | 000,004,003 | ---- | M] () -- C:\Documents and Settings\rafek\Dane aplikacji\Mozilla\Firefox\Profiles\1gqxapao.default\searchplugins\sweetim.xml
[2013/08/07 15:51:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/08/07 15:51:28 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/07 15:51:28 | 000,000,000 | ---D | M] (ArcaBit Ext.) -- C:\Program Files\Mozilla Firefox\extensions\arcabit@www.arcabit.pl
[2013/08/07 15:51:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/08/07 15:52:11 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- 
[2012/02/16 18:44:41 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 &lt;video&gt;) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2010/10/11 14:26:17 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/02/02 15:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/10/23 09:01:34 | 000,102,400 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll
[2013/01/18 13:06:04 | 000,000,000 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/12/08 18:39:36 | 000,002,046 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
[2013/01/18 12:23:29 | 000,000,402 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml
 
O1 HOSTS File: ([2004/08/04 08:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (ALLYouTubeDownloader) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Program Files\ALLYouTubeDownloader\ALLYouTubeDownloader.dll (ALLCinema Ltd.)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\rafek_ON_C\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.
O3 - HKU\rafek_ON_C\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKU\rafek_ON_C\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ArcaClean]  File not found
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [CtrlVol]  File not found
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [HotkeyApp] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron)
O4 - HKLM..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe ()
O4 - HKLM..\Run: [LMgrOSD]  File not found
O4 - HKLM..\Run: [LMgrVolOSD]  File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe (Hewlett-Packard)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [Wbutton] C:\Program Files\Launch Manager\Wbutton.exe ()
O4 - HKU\rafek_ON_C..\Run: [ALLUpdate]  File not found
O4 - HKU\rafek_ON_C..\Run: [lex@hand]  File not found
O4 - HKU\rafek_ON_C..\Run: [PowerBar]  File not found
O4 - HKU\rafek_ON_C..\Run: [qcgce2mrvjq91kk1e7pnbb19m52fx] C:\Documents and Settings\rafek\Ustawienia lokalne\Temp\qivyidhhfpvleeptf.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\rafek_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.3.0\ViProtocol.dll (AVG Secure Search)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKU\rafek_ON_C Winlogon: Shell - (cmd.exe) - C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: 
O24 - Desktop BackupWallPaper: 
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/14 12:57:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2013/07/12 09:16:26 | 001,728,515 | ---- | M] () - D:\autosave.mmp -- [ FAT32 ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{7d029c4c-0387-11e0-97e2-001641a25da9}\Shell - "" = AutoRun
O33 - MountPoints2\{7d029c4c-0387-11e0-97e2-001641a25da9}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{8d6b8af8-0204-11e0-97e0-001641a25da9}\Shell - "" = AutoRun
O33 - MountPoints2\{8d6b8af8-0204-11e0-97e0-001641a25da9}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{8d6b8afb-0204-11e0-97e0-001641a25da9}\Shell - "" = AutoRun
O33 - MountPoints2\{8d6b8afb-0204-11e0-97e0-001641a25da9}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{934955e6-945f-11dd-96bf-0018de36f4bf}\Shell\AutoRun\command - "" = E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\winse32.exe
O33 - MountPoints2\{934955e6-945f-11dd-96bf-0018de36f4bf}\Shell\open\command - "" = E:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\winse32.exe
O33 - MountPoints2\{e8872652-0436-11e0-97e3-001641a25da9}\Shell - "" = AutoRun
O33 - MountPoints2\{e8872652-0436-11e0-97e3-001641a25da9}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG2013\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013/08/15 07:42:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft
[2013/08/15 07:42:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Cookies
[2013/08/15 07:42:29 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo
[2013/08/15 07:42:29 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2013/08/15 07:42:29 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Ulubione
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moje obrazy
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moja muzyka
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart
[2013/08/15 07:42:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start\Programy\Akcesoria
[2013/08/15 07:42:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne
[2013/08/15 07:42:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Szablony
[2013/08/15 07:42:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood
[2013/08/15 07:42:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\NetHood
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\TuneUp Software
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Identities
[2013/08/15 07:42:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
[2013/08/07 15:51:24 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2060/08/18 14:02:32 | 002,023,424 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\VCL50.BPL
[2060/08/18 14:02:22 | 001,496,064 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\CC3250MT.DLL
[2060/08/18 14:02:12 | 000,248,832 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\VCLX50.BPL
[2060/08/18 13:40:44 | 000,909,824 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\cp3245mt.dll
[2060/08/18 13:40:44 | 000,024,064 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\borlndmm.dll
[2013/08/15 08:51:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/08/15 08:51:05 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/15 08:50:59 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/08/15 08:50:55 | 1063,440,384 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/14 14:55:20 | 000,106,415 | ---- | M] () -- C:\Documents and Settings\rafek\Dane aplikacji\2433f433
[2013/08/14 14:55:20 | 000,106,388 | ---- | M] () -- C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\2433f433
[2013/08/14 14:55:20 | 000,106,380 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\2433f433
[2013/08/14 14:53:00 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/12 04:05:06 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/08/02 09:56:16 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013/08/15 08:50:55 | 1063,440,384 | -HS- | C] () -- C:\hiberfil.sys
[2013/08/15 07:42:30 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Pomoc zdalna.lnk
[2013/08/15 07:42:30 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\Uruchom przeglądarkę Internet Explorer.lnk
[2013/08/15 07:42:30 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Internet Explorer.lnk
[2013/08/15 07:42:30 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Start\Programy\Outlook Express.lnk
[2013/08/15 07:42:30 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft\Internet Explorer\Quick Launch\Pokaż pulpit.scf
[2013/08/15 07:42:29 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2013/08/14 14:55:20 | 000,106,415 | ---- | C] () -- C:\Documents and Settings\rafek\Dane aplikacji\2433f433
[2013/08/14 14:55:20 | 000,106,388 | ---- | C] () -- C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\2433f433
[2013/08/14 14:55:20 | 000,106,380 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\2433f433
[2013/06/02 08:05:08 | 001,167,152 | ---- | C] () -- C:\WINDOWS\System32\dmwu.exe
[2013/06/02 08:05:08 | 000,027,136 | ---- | C] () -- C:\WINDOWS\System32\ImHttpComm.dll
[2013/01/24 07:43:02 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll
[2013/01/24 07:42:31 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2012/12/08 18:01:25 | 000,000,054 | ---- | C] () -- C:\WINDOWS\mpsettings.ini
[2012/11/16 04:45:08 | 000,027,976 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll
[2012/11/16 04:45:08 | 000,019,272 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll
[2012/11/16 04:29:39 | 000,180,624 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2012/07/16 10:36:48 | 000,000,058 | ---- | C] () -- C:\WINDOWS\coder.ini
[2011/02/06 11:23:13 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iris.ini
[2010/10/11 10:56:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008/11/30 10:52:33 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008/11/30 10:52:33 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008/11/30 10:52:31 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/11/30 10:52:30 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/11/30 10:52:29 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007/10/21 08:35:36 | 000,017,619 | ---- | C] () -- C:\WINDOWS\hplj1010.ini
[2007/09/23 08:45:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\rafek\historia.lht
[2007/03/25 09:08:35 | 000,000,799 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2007/02/14 10:37:19 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/02/14 10:00:33 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/02/14 09:48:35 | 000,000,222 | ---- | C] () -- C:\WINDOWS\VOGEL.INI
[2007/02/14 09:45:47 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2007/02/14 09:39:40 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/02/14 08:59:48 | 000,292,327 | -H-- | C] () -- C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\byfoz.qit
[2007/02/14 08:59:48 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\rafek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2006/12/12 12:01:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/12/12 12:01:12 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56spn.dll
[2006/12/12 12:01:12 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56itl.dll
[2006/12/12 12:01:12 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56eng.dll
[2006/12/12 12:01:12 | 000,069,632 | ---- | C] () -- C:\WINDOWS\sm56brz.dll
[2006/12/12 12:01:12 | 000,061,440 | ---- | C] () -- C:\WINDOWS\sm56ger.dll
[2006/12/12 12:01:12 | 000,061,440 | ---- | C] () -- C:\WINDOWS\sm56fra.dll
[2006/12/12 12:01:12 | 000,053,248 | ---- | C] () -- C:\WINDOWS\sm56jpn.dll
[2006/12/12 12:01:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\sm56cht.dll
[2006/12/12 12:01:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\sm56chs.dll
[2006/12/12 12:00:55 | 000,009,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\HOTKEY.sys
[2006/02/14 13:48:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006/02/14 13:47:41 | 000,195,368 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2006/02/14 13:03:28 | 000,003,619 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2006/02/14 13:01:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2006/02/14 12:55:14 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/02/14 12:41:10 | 000,000,976 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006/02/14 12:40:54 | 000,501,454 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2006/02/14 12:40:54 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2006/02/14 12:40:54 | 000,089,364 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2006/02/14 12:40:54 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2006/02/14 12:40:37 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2006/02/14 12:40:37 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006/02/14 12:40:34 | 000,442,466 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006/02/14 12:40:34 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006/02/14 12:40:34 | 000,071,732 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006/02/14 12:40:34 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006/02/14 12:40:34 | 000,004,711 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006/02/14 12:40:30 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006/02/14 12:40:29 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006/02/14 12:40:23 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006/02/14 12:40:23 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006/02/14 12:40:17 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006/02/14 12:40:07 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2003/08/29 05:12:52 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[1999/01/22 14:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013/01/18 13:07:19 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Dane aplikacji\AVG2013
[2012/11/20 10:14:57 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Dane aplikacji\SolidDocuments
[2013/02/01 03:42:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\TuneUp Software
[2013/01/18 13:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\AVG Secure Search
[2013/01/18 13:08:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\AVG2013
[2010/12/08 08:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\blueconnect
[2012/12/19 12:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\calibre
[2013/01/31 10:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Cambridge
[2012/08/10 17:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\DDMSettings
[2013/01/24 10:30:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\f2fElementary
[2013/01/31 10:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\face2faceSecondeditionPreintermediate
[2012/12/09 10:33:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\facemoods.com
[2012/10/20 15:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Kifoyq
[2012/10/20 15:39:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Pagy
[2011/02/06 11:32:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Panasonic
[2012/01/14 04:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\PriceGong
[2012/11/16 04:31:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\PrimoPDF
[2012/11/16 04:46:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\SolidDocuments
[2012/10/20 15:39:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Sonie
[2013/01/18 13:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\TuneUp Software
[2007/02/15 02:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Uciz
[2012/11/29 15:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\Unity
[2012/01/14 04:06:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rafek\Dane aplikacji\WKPolska
[2012/12/19 12:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit
[2012/09/01 08:18:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2013/06/29 13:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search
[2013/01/18 13:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013
[2013/01/18 12:58:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2011/12/30 11:42:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService
[2011/08/26 04:07:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM
[2011/08/26 04:05:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail
[2013/08/14 13:48:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2010/10/06 14:39:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Mistrz Klawiatury II Data
[2011/02/06 11:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panasonic
[2012/11/16 04:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SolidDocuments
[2013/02/22 11:53:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM
[2013/05/23 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012/09/02 16:49:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Zylom
[2011/04/22 05:24:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2013/08/15 08:50:59 | 000,000,350 | ---- | M] () -- C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 248 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A1454082
@Alternate Data Stream - 218 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:E25BED53
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:683E787C
< End of report >