OTL logfile created on: 2013-09-06 04:04:13 - Run 4
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\dezyn
Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,65% Memory free
3,85 Gb Paging File | 3,22 Gb Available in Paging File | 83,60% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 58,59 Gb Total Space | 6,29 Gb Free Space | 10,73% Space Free | Partition Type: NTFS
Drive D: | 87,89 Gb Total Space | 87,65 Gb Free Space | 99,73% Space Free | Partition Type: NTFS
Drive E: | 86,39 Gb Total Space | 83,40 Gb Free Space | 96,53% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive J: | 3,72 Gb Total Space | 3,72 Gb Free Space | 99,99% Space Free | Partition Type: FAT32
 
Computer Name: SICIAK-EF1F1335 | User Name: Właściciel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-09-05 17:23:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\dezyn\OTL.exe
PRC - [2013-09-05 05:55:42 | 000,075,187 | -HS- | M] () -- C:\WINDOWS\system32\ati2avxx.exe
PRC - [2013-09-03 20:48:55 | 003,233,806 | ---- | M] () -- C:\Program Files\Tor\tor.exe
PRC - [2013-09-02 22:35:59 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013-05-28 15:05:16 | 000,163,328 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
PRC - [2013-04-04 05:32:53 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012-11-09 16:46:18 | 000,054,784 | ---- | M] (Macrovision) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE
PRC - [2012-09-23 16:28:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012-04-28 20:57:21 | 000,020,708 | RHS- | M] (Microsoft Corporation) -- C:\WINDOWS\system\wupdmgr.exe
PRC - [2011-01-10 14:50:16 | 000,025,088 | ---- | M] () -- C:\Program Files\Dokan\DokanLibrary\mounter.exe
PRC - [2007-11-05 23:37:26 | 000,129,368 | RHS- | M] (Microsoft Corporation) -- C:\WINDOWS\system\svchost.exe
PRC - [2006-03-02 14:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-09-06 03:55:44 | 000,031,467 | -HS- | M] () -- C:\WINDOWS\system32\IMES.dll
MOD - [2013-09-05 05:55:42 | 000,075,187 | -HS- | M] () -- C:\WINDOWS\system32\ati2avxx.exe
MOD - [2013-09-02 22:35:56 | 000,410,576 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppgooglenaclpluginchrome.dll
MOD - [2013-09-02 22:35:54 | 004,053,456 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
MOD - [2013-09-02 22:35:01 | 001,604,560 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
MOD - [2012-01-03 10:45:08 | 000,016,832 | ---- | M] () -- C:\Program Files\Adobe\Reader 9.0\Reader\ViewerPS.dll
MOD - [2011-01-10 14:50:16 | 000,025,088 | ---- | M] () -- C:\Program Files\Dokan\DokanLibrary\mounter.exe
MOD - [2007-07-23 04:34:17 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2006-03-02 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2013-09-03 20:48:55 | 003,233,806 | ---- | M] () [Auto | Running] -- C:\Program Files\Tor\tor.exe -- (tor)
SRV - [2013-06-03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-05-28 15:05:16 | 000,163,328 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-04-04 05:32:53 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012-11-09 16:46:18 | 000,054,784 | ---- | M] (Macrovision) [Auto | Running] -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA)
SRV - [2012-09-23 16:28:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2011-01-10 14:50:16 | 000,025,088 | ---- | M] () [Auto | Running] -- C:\Program Files\Dokan\DokanLibrary\mounter.exe -- (DokanMounter)
SRV - [2007-11-05 23:37:26 | 000,129,368 | RHS- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system\svchost.exe -- (CreateProcess)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2012-11-09 16:46:19 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CDAC15BA.SYS -- (CdaC15BA)
DRV - [2012-06-19 10:54:20 | 006,141,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2011-01-10 14:50:18 | 000,091,904 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\dokan.sys -- (Dokan)
DRV - [2010-05-02 17:29:55 | 000,108,640 | ---- | M] (Your Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Mach3.sys -- (Mach3)
DRV - [2009-11-18 01:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 01:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2007-06-28 06:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007-06-28 06:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-10-13 15:46:08 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync03.sys -- (sfsync03)
DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = 
 
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
 
IE - HKU\S-1-5-21-448539723-838170752-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-448539723-838170752-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-448539723-838170752-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-448539723-838170752-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = 
IE - HKU\S-1-5-21-448539723-838170752-839522115-1004\..\SearchScopes,DefaultScope = 
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
 
[2012-06-03 14:05:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www1.delta-search.com/?babsrc=HP_ss&mntrId=70C4001A4DFDA959&affID=121563&tsp=4940
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
CHR - plugin: registryAccess (Enabled) = C:\Documents and Settings\W\u0142a\u015Bciciel.SICIAK-EF1F1335\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo\7.15.14.33467_0\background/registryAccess.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U10 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.100.18 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
 
O1 - HOSTS file present but inaccessible!
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKU\S-1-5-21-448539723-838170752-839522115-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe (ALLPlayer Group Ltd.)
O4 - HKU\S-1-5-21-448539723-838170752-839522115-1003..\Run: [ati2avxx] C:\WINDOWS\system32\ati2avxx.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-838170752-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-838170752-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CABD4FD1-0DEB-4E97-836B-C8BE1D573B6C}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 () - http://photos.nasza-klasa.pl/24194792/24/main/e63dd4681a.jpeg
O24 - Desktop Components:1 () - http://images9.fotosik.pl/249/5937cb2894ba90ee.jpg
O24 - Desktop Components:2 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O27 - HKLM IFEO\360rpt.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360Safe.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\360tray.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\adam.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AgentSvr.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AntiU.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AppSvc32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ArSwp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AST.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\autoruns.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AvastU3.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avconsol.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avgrssvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AvMonitor.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avp.com: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\avp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\AvU3Launcher.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\CCenter.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ccSvcHst.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\EGHOST.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\FileDsty.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\FTCleanerShell.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\FYFireWall.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ghost.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\HijackThis.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\IceSword.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\iparmo.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Iparmor.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\irsetup.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\isPwdSvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kabaload.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KaScrScn.SCR: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KASMain.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KASTask.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAV32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAVDX.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAVPF.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAVPFW.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAVSetup.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KAVStart.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KISLnchr.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KMailMon.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KMFilter.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KPFW32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KPFW32X.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KPfwSvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KRegEx.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KRepair.com: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KsLoader.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVCenter.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KvDetect.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KvfwMcl.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVMonXP.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVMonXP_1.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kvol.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kvolself.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KvReport.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVScan.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVSrvXP.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KVStub.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kvupload.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\kvwsc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KvXP.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KvXP_1.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KWatch.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KWatch9x.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\KWatchX.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\loaddll.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\MagicSet.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mcconsol.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mmqczj.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\mmsk.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Navapsvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Navapw32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\nod32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\nod32krn.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\nod32kui.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\NPFMntor.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\PFW.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\PFWLiveUpdate.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\QHSET.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\QQDoctor.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\QQDoctorMain.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\QQKav.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\QQSC.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Ras.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Rav.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavMon.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavMonD.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavStub.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RavTask.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RegClean.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\rfwcfg.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\rfwmain.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\rfwsrv.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\RsAgent.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Rsaupd.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\rstrui.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\runiep.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\safelive.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\scan32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\ScanU3.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\SelfUpdate.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\shcfg32.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\SmartUp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\SREng.EXE: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\symlcsvc.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\SysSafe.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\TrojanDetector.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\Trojanwall.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\TrojDie.kxp: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UIHost.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UmxAgent.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UmxAttachment.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UmxCfg.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UmxFwHlp.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UmxPol.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\upiea.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\UpLive.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\USBCleaner.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\vsstat.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\webscanx.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\WoptiClean.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O27 - HKLM IFEO\zjb.exe: Debugger - C:\WINDOWS\System32\ntsd.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-04-23 15:22:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2013-09-06 04:05:20 | 000,000,035 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-09-06 04:05:20 | 000,000,035 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-09-06 04:05:20 | 000,000,035 | RHS- | M] () - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013-09-06 04:05:22 | 000,000,035 | RHS- | M] () - J:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{2c2ef327-7115-11e2-9875-001a4dfda959}\Shell - "" = AutoRun
O33 - MountPoints2\{2c2ef327-7115-11e2-9875-001a4dfda959}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe
O33 - MountPoints2\{975f9601-8d54-11e1-9799-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{975f9601-8d54-11e1-9799-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe
O33 - MountPoints2\{975f9602-8d54-11e1-9799-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{975f9602-8d54-11e1-9799-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe
O33 - MountPoints2\{975f9604-8d54-11e1-9799-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{975f9604-8d54-11e1-9799-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-09-06 03:50:45 | 000,000,000 | ---D | C] -- C:\UsbFix
[2013-09-06 03:08:55 | 000,129,368 | RHS- | C] (Microsoft Corporation) -- C:\explore.exe
[2013-09-05 22:43:17 | 000,000,000 | ---D | C] -- C:\_OTL
[2013-09-05 17:57:29 | 000,000,000 | ---D | C] -- C:\FRST
[2013-09-05 17:53:09 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013-09-05 17:30:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\dezyn
[2013-09-03 20:48:55 | 000,000,000 | ---D | C] -- C:\Program Files\Tor
[2013-09-01 19:19:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\nView_Profiles
[2013-08-26 19:37:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\HD FILMY
[2013-08-23 10:44:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\WinZipper
[2013-08-21 09:25:29 | 000,843,892 | ---- | C] (PythonLabs at Zope Corporation) -- C:\WINDOWS\System32\python22.dll
[2013-08-13 13:04:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\PRZEKRÓJ PIECA
[2013-08-10 22:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\CENNIK NOWY
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-09-06 04:06:14 | 000,000,035 | RHS- | M] () -- C:\autorun.inf
[2013-09-06 04:01:06 | 000,000,017 | ---- | M] () -- C:\WINDOWS\System\win32out.dll
[2013-09-06 04:01:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System\win32in.dll
[2013-09-06 03:55:47 | 000,000,151 | -HS- | M] () -- C:\WINDOWS\System32\mlburmh.inf
[2013-09-06 03:55:44 | 000,031,467 | -HS- | M] () -- C:\WINDOWS\System32\IMES.dll
[2013-09-06 03:55:44 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013-09-06 03:55:05 | 000,001,040 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013-09-06 03:55:03 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-09-06 03:29:21 | 000,000,035 | RHS- | M] () -- C:\kxsgd
[2013-09-06 03:11:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-09-06 02:08:00 | 000,001,152 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-838170752-839522115-1003UA.job
[2013-09-05 18:08:00 | 000,001,100 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-838170752-839522115-1003Core.job
[2013-09-05 17:54:31 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Google Chrome.lnk
[2013-09-05 05:55:42 | 000,075,187 | -HS- | M] () -- C:\mlburmh.exe
[2013-09-05 05:55:42 | 000,075,187 | -HS- | M] () -- C:\WINDOWS\System32\ati2avxx.exe
[2013-09-04 11:10:35 | 000,017,912 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT DLAMNIE3.dxf
[2013-09-04 09:37:12 | 000,018,310 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT DLA SIEBIE.dxf
[2013-09-03 17:50:07 | 000,016,098 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT JANUSZ GASKI.dxf
[2013-09-02 16:09:58 | 000,015,734 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT TADEK K 00999.dxf
[2013-09-02 11:20:50 | 000,013,758 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-08-30 16:33:40 | 000,017,932 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PRZYMOZE 80.dxf
[2013-08-23 14:21:08 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2013-08-23 10:44:21 | 000,773,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100.dll
[2013-08-23 10:44:21 | 000,421,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp100.dll
[2013-08-20 21:42:25 | 001,101,436 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2013-08-20 21:42:25 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2013-08-20 21:41:51 | 001,101,436 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2013-08-19 14:43:58 | 000,016,608 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PROBA WOJTEK 99.dxf
[2013-08-19 14:15:19 | 000,036,284 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT WOJTEK KOTALA.00.dxf
[2013-08-19 13:37:40 | 000,016,611 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PROBA WOJTEK.dxf
[2013-08-14 14:18:10 | 000,020,873 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT KAZIK B.dxf
[2013-08-10 22:52:50 | 000,231,010 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\skanuj0004.jpg
[2013-08-09 13:33:10 | 002,283,668 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Ellie_Goulding_-_Anything_Could_Happen_[www.Mp3yo.pl].mp3
[2013-08-09 13:03:56 | 002,357,326 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Baby_Lilly_-_Mała_księżniczka.mp3_[www.Mp3yo.pl].mp3
[2013-08-09 12:54:31 | 002,651,934 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Guru_Josh_Project_-_Infinity_2008_(Klaas_Vocal_Edit)_[www.Mp3yo.pl].mp3
[2013-08-09 12:48:18 | 001,841,741 | ---- | M] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Jessie_Ware_-_Wildest_Moments_[www.Mp3yo.pl].mp3
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-09-06 03:55:47 | 000,075,187 | -HS- | C] () -- C:\mlburmh.exe
[2013-09-06 03:55:47 | 000,000,151 | -HS- | C] () -- C:\WINDOWS\System32\mlburmh.inf
[2013-09-06 03:55:44 | 000,075,187 | ---- | C] () -- C:\WINDOWS\System32\aoupbie.dll
[2013-09-06 03:55:44 | 000,031,467 | -HS- | C] () -- C:\WINDOWS\System32\IMES.dll
[2013-09-06 03:55:42 | 000,075,187 | -HS- | C] () -- C:\WINDOWS\System32\ati2avxx.exe
[2013-09-06 03:55:40 | 000,000,017 | ---- | C] () -- C:\WINDOWS\System\win32out.dll
[2013-09-06 03:55:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System\win32in.dll
[2013-09-06 03:55:13 | 000,000,035 | RHS- | C] () -- C:\autorun.inf
[2013-09-06 03:08:55 | 000,000,035 | RHS- | C] () -- C:\kxsgd
[2013-09-05 23:24:29 | 000,235,824 | ---- | C] () -- C:\NTLDR
[2013-09-04 11:10:35 | 000,017,912 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT DLAMNIE3.dxf
[2013-09-04 09:37:12 | 000,018,310 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT DLA SIEBIE.dxf
[2013-09-03 17:50:07 | 000,016,098 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT JANUSZ GASKI.dxf
[2013-09-02 16:09:58 | 000,015,734 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT TADEK K 00999.dxf
[2013-08-30 16:33:40 | 000,017,932 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PRZYMOZE 80.dxf
[2013-08-19 14:43:58 | 000,016,608 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PROBA WOJTEK 99.dxf
[2013-08-19 14:15:19 | 000,036,284 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT WOJTEK KOTALA.00.dxf
[2013-08-19 13:37:40 | 000,016,611 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT PROBA WOJTEK.dxf
[2013-08-14 14:18:10 | 000,020,873 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Moje dokumenty\KLIJENT KAZIK B.dxf
[2013-08-10 22:47:07 | 000,231,010 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\skanuj0004.jpg
[2013-08-09 13:02:24 | 002,357,326 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Baby_Lilly_-_Mała_księżniczka.mp3_[www.Mp3yo.pl].mp3
[2013-08-09 12:52:39 | 002,651,934 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Guru_Josh_Project_-_Infinity_2008_(Klaas_Vocal_Edit)_[www.Mp3yo.pl].mp3
[2013-08-09 12:50:19 | 002,283,668 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Ellie_Goulding_-_Anything_Could_Happen_[www.Mp3yo.pl].mp3
[2013-08-09 12:46:41 | 001,841,741 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Pulpit\Jessie_Ware_-_Wildest_Moments_[www.Mp3yo.pl].mp3
[2013-07-11 13:17:44 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2013-07-11 13:17:33 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2013-07-11 13:17:27 | 000,715,038 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2013-07-11 13:17:27 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lagarith.dll
[2013-07-11 13:17:26 | 000,001,799 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2013-07-04 17:33:18 | 000,153,548 | ---- | C] () -- C:\WINDOWS\hpoins14.dat.temp
[2013-07-04 17:33:18 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat.temp
[2013-06-13 17:14:46 | 000,139,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2013-06-13 17:14:46 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\PnkBstrK.sys
[2013-06-13 17:14:42 | 000,282,104 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2013-06-13 17:14:09 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2013-05-07 12:33:20 | 000,000,105 | ---- | C] () -- C:\WINDOWS\Mach3.INI
[2013-02-10 20:53:56 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2013-01-27 15:17:49 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2013-01-27 15:17:49 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2013-01-21 13:44:52 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2012-12-17 23:56:28 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-11-21 22:17:45 | 001,101,436 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012-11-21 22:17:45 | 001,101,436 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012-11-21 22:17:45 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012-11-21 22:17:33 | 002,811,988 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012-05-17 09:22:05 | 000,153,522 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2012-05-17 09:22:04 | 000,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2012-04-28 20:57:42 | 000,001,409 | ---- | C] () -- C:\WINDOWS\System32\settings.dll
[2012-04-23 18:38:57 | 000,025,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2012-04-23 17:56:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012-04-23 17:09:46 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-04-23 17:06:58 | 000,298,048 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-04-23 16:39:11 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll
[2012-04-23 15:30:55 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2012-04-23 15:24:19 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-04-23 15:18:47 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2006-03-02 14:00:00 | 001,492,480 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2006-03-02 14:00:00 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2006-03-02 14:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-11-09 16:45:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2013-01-27 15:37:53 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2013-04-26 19:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-08-14 11:38:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2013-01-27 15:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2013-01-27 15:37:53 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012-07-30 10:25:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\searchquband
[2012-07-30 10:25:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\searchqutoolbar
[2012-06-04 15:45:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Softonic
[2012-12-11 22:43:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT\Dane aplikacji\ts3overlay
[2013-01-27 15:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT\Dane aplikacji\TuneUp Software
[2012-11-22 23:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService.ZARZĄDZANIE NT\Dane aplikacji\ts3overlay
[2013-01-30 20:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\UpdatusUser\Dane aplikacji\TuneUp Software
[2012-06-16 13:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\.minecraft
[2012-11-09 17:32:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\Autodesk
[2012-08-26 11:20:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\CometPlayer
[2012-07-29 16:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\FreeFLVConverter
[2012-08-14 11:50:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\Gadu-Gadu 10
[2012-06-16 13:50:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\Oracle
[2012-07-29 16:19:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\searchquband
[2012-07-28 21:35:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\tigerplayer
[2012-06-03 18:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\TS3Client
[2012-04-23 17:12:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel\Dane aplikacji\wargaming.net
[2012-12-19 18:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\.minecraft
[2013-01-27 15:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\AnvSoft
[2012-11-29 18:39:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Autodesk
[2013-09-05 18:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\BabSolution
[2013-04-26 19:24:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Babylon
[2013-07-11 13:17:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\CDXReader
[2013-04-26 19:26:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\DAEMON Tools Lite
[2013-05-06 11:38:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\DealPly
[2013-04-26 19:24:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Delta
[2013-04-28 13:59:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Desk 365
[2013-07-11 13:55:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\DownLite
[2013-07-11 13:16:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\DSite
[2013-04-28 13:58:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\eDownload
[2013-05-30 14:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\eIntaller
[2013-06-20 13:45:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\File Scout
[2013-07-29 16:37:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Groove Games
[2013-08-27 22:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\HD FILMY
[2013-07-11 13:17:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\LavFilters
[2013-07-01 18:20:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\LolClient
[2013-01-27 19:03:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\NapiProjekt
[2013-07-11 13:54:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\OpenCandy
[2012-11-22 23:14:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\ts3overlay
[2013-01-27 15:38:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\TuneUp Software
[2013-07-11 14:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Uniblue
[2013-04-26 19:37:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\uTorrent
[2012-11-22 00:22:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Wargaming.net
[2013-08-31 15:54:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\WinZipper
[2013-01-27 15:32:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Właściciel.SICIAK-EF1F1335\Dane aplikacji\Xilisoft
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >