OTL logfile created on: 2014-01-31 15:28:07 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = D:\Krzysiek
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
1,50 Gb Total Physical Memory | 0,72 Gb Available Physical Memory | 47,80% Memory free
3,61 Gb Paging File | 2,89 Gb Available in Paging File | 79,93% Paging File free
Paging file location(s): C:\pagefile.sys 2 2D:\pagefile.sys 2312 2312 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,95 Gb Total Space | 1,57 Gb Free Space | 15,74% Space Free | Partition Type: NTFS
Drive D: | 64,58 Gb Total Space | 22,88 Gb Free Space | 35,43% Space Free | Partition Type: NTFS
 
Computer Name: QWE-268BC649944 | User Name: asd | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-01-31 15:24:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Krzysiek\OTL.exe
PRC - [2014-01-31 15:24:20 | 001,137,152 | ---- | M] (Farbar) -- D:\Krzysiek\FRST.exe
PRC - [2014-01-29 08:55:07 | 045,196,128 | ---- | M] (Opera Software) -- C:\Program Files\Opera\19.0.1326.56\opera.exe
PRC - [2014-01-19 21:28:53 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013-10-21 20:08:30 | 000,236,624 | ---- | M] (ArtistScope Pty Ltd) -- C:\Program Files\Common Files\ArtistScope\CSHelper32.exe
PRC - [2013-07-10 14:45:36 | 001,799,120 | ---- | M] (Piotr Pawlowski) -- C:\Program Files\foobar2000\foobar2000.exe
PRC - [2011-12-26 14:47:00 | 000,499,796 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe
PRC - [2011-10-31 08:07:56 | 000,048,128 | R--- | M] (Mobile Leader Co.,Ltd.) -- C:\WINDOWS\system32\ScsiCommandService2.exe
PRC - [2008-04-14 20:51:36 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\osk.exe
PRC - [2008-04-14 20:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-11-17 05:42:52 | 000,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2006-10-27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation) -- D:\Nowy folder (2)\Office12\GrooveMonitor.exe
PRC - [2001-10-26 19:29:58 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msswchx.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014-01-29 08:55:09 | 000,890,208 | ---- | M] () -- C:\Program Files\Opera\19.0.1326.56\ffmpegsumo.dll
MOD - [2014-01-26 20:07:37 | 011,796,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\3963ce03d445a8619abbf388d590134b\System.Web.ni.dll
MOD - [2014-01-26 20:05:15 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\b82c00e2d24305ad6cb08556e3779b75\System.Configuration.ni.dll
MOD - [2014-01-26 20:05:05 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\11eb4f6606ba01e5128805759121ea6c\Accessibility.ni.dll
MOD - [2014-01-26 13:09:00 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\773a9786013451d3baaeff003dc4230f\System.Xml.ni.dll
MOD - [2014-01-26 13:08:38 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\63406259e94d5c0ff5b79401dfe113ce\System.Windows.Forms.ni.dll
MOD - [2014-01-26 13:07:56 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\3da96ee075bab9202626ae44c18d226c\System.Drawing.ni.dll
MOD - [2014-01-25 22:50:32 | 007,868,416 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\80978a322d7dd39f0a71be1251ae395a\System.ni.dll
MOD - [2014-01-25 22:50:22 | 011,486,720 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\6d667f19d687361886990f3ca0f49816\mscorlib.ni.dll
MOD - [2014-01-25 22:49:12 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2013-07-10 14:45:38 | 001,598,944 | ---- | M] () -- C:\Program Files\foobar2000\avcodec-fb2k-54.dll
MOD - [2013-07-10 14:45:38 | 001,492,456 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_input_std.dll
MOD - [2013-07-10 14:45:38 | 000,198,112 | ---- | M] () -- C:\Program Files\foobar2000\avutil-fb2k-52.dll
MOD - [2013-07-10 14:45:38 | 000,156,112 | ---- | M] () -- C:\Program Files\foobar2000\shared.dll
MOD - [2013-07-10 14:45:36 | 000,942,056 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_ui_std.dll
MOD - [2013-07-10 14:25:50 | 000,199,680 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_dsp_std.dll
MOD - [2013-07-10 14:25:36 | 000,291,328 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_rgscan.dll
MOD - [2013-07-10 14:25:32 | 000,500,736 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_converter.dll
MOD - [2013-05-04 13:57:08 | 000,095,712 | ---- | M] () -- C:\Program Files\foobar2000\zlib1.dll
MOD - [2013-03-07 11:48:32 | 000,303,104 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_cdda.dll
MOD - [2013-03-05 08:43:46 | 001,728,512 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3693.42460__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,692,224 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Wizard\2.0.3693.42508__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,491,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3693.42537__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.3693.42522__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,290,816 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3693.42442__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3693.42461__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3693.42517__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,069,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3693.42499__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3693.42456__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3693.42486__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3693.42451__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,011,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3693.42552__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2013-03-05 08:43:46 | 000,008,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3693.42552__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2013-03-05 08:43:46 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3693.42556__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
MOD - [2013-03-05 08:43:46 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3693.42552__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3693.42512__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:44 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3693.42504__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,286,720 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.SmartGart.Graphics.Dashboard\2.0.3693.42470__90ba9c70f846762e\CLI.Aspect.SmartGart.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,139,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3693.42537__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3693.42461__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3693.42504__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2013-03-05 08:43:44 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3693.42450__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:44 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3693.42503__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:44 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3693.42460__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:44 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.SmartGart.Graphics.Runtime\2.0.3693.42470__90ba9c70f846762e\CLI.Aspect.SmartGart.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,811,008 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3693.42488__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,798,720 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.3693.42518__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,712,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3693.42452__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,675,840 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Dashboard\2.0.3693.42500__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,589,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3693.42462__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,450,560 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3693.42482__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,438,272 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3693.42487__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,225,280 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3693.42462__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,126,976 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3693.42496__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2013-03-05 08:43:42 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3693.42487__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3693.42486__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3693.42466__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3693.42487__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3693.42496__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3693.42497__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2013-03-05 08:43:42 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3309.28608__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3309.28629__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3309.28645__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3309.28627__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2013-03-05 08:43:42 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2013-03-05 08:43:40 | 000,503,808 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3693.42564__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
MOD - [2013-03-05 08:43:40 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3309.28604__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3309.28618__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2013-03-05 08:43:40 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3693.42545__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2013-03-05 08:43:40 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3309.28644__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3309.28601__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3309.28624__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3309.28603__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3309.28669__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2013-03-05 08:43:40 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3309.28632__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3309.28627__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.SmartGart.Graphics.Shared\2.0.3309.28632__90ba9c70f846762e\CLI.Aspect.SmartGart.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3309.28630__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3309.28620__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3309.28617__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3309.28611__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3309.28631__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3309.28626__90ba9c70f846762e\APM.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3309.28626__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3309.28645__90ba9c70f846762e\DEM.OS.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3309.28630__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3309.28617__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3309.28631__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2013-03-05 08:43:40 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2013-03-05 08:43:38 | 001,142,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3693.42446__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2013-03-05 08:43:38 | 000,544,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3693.42525__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2013-03-05 08:43:38 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3693.42455__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2013-03-05 08:43:38 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3693.42531__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2013-03-05 08:43:38 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3693.42440__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2013-03-05 08:43:38 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3693.42530__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2013-03-05 08:43:38 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3693.42441__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2013-03-05 08:43:38 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3309.28628__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2013-03-05 08:43:38 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3309.28608__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2013-03-05 08:43:38 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3309.28621__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2013-03-05 08:43:38 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3309.28614__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2013-03-05 08:43:38 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3309.28627__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2013-03-05 08:43:38 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3309.28612__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
MOD - [2013-03-05 08:43:38 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3309.28626__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2013-03-05 08:43:38 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3309.28624__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2013-03-05 08:43:38 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3309.28637__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2013-03-05 08:43:38 | 000,014,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2013-03-05 08:43:38 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2013-03-05 08:43:38 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3693.42437__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2013-03-05 08:43:36 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3693.42440__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2013-03-05 08:43:36 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3693.42439__90ba9c70f846762e\APM.Server.dll
MOD - [2013-03-05 08:43:36 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3693.42438__90ba9c70f846762e\AEM.Server.dll
MOD - [2013-03-05 08:43:36 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2013-03-05 08:43:36 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3693.42531__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2013-03-04 22:47:48 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_pl_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2013-03-04 22:47:46 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2013-02-11 13:28:58 | 000,358,912 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_albumlist.dll
MOD - [2013-02-11 13:28:58 | 000,198,656 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_dsp_eq.dll
MOD - [2013-02-11 13:28:10 | 000,281,600 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_fileops.dll
MOD - [2013-02-11 13:28:10 | 000,173,056 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_unpack.dll
MOD - [2013-02-11 13:27:56 | 000,298,496 | ---- | M] () -- C:\Program Files\foobar2000\components\foo_freedb2.dll
MOD - [2009-11-24 13:36:36 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2008-06-19 20:53:04 | 000,060,416 | ---- | M] () -- C:\WINDOWS\system32\antiwpa.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Unavailable | Unknown] --  -- (JokerSecure)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2014-01-19 21:28:53 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013-10-23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-10-21 20:08:30 | 000,236,624 | ---- | M] (ArtistScope Pty Ltd) [Auto | Running] -- C:\Program Files\Common Files\ArtistScope\CSHelper32.exe -- (CSHelper)
SRV - [2011-12-26 14:47:00 | 000,499,796 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (acs)
SRV - [2011-12-26 14:46:56 | 000,360,529 | ---- | M] (wireless) [On_Demand | Stopped] -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe -- (jswpsapi)
SRV - [2011-10-31 08:07:56 | 000,048,128 | R--- | M] (Mobile Leader Co.,Ltd.) [Auto | Running] -- C:\WINDOWS\system32\ScsiCommandService2.exe -- (ScsiCommandService2)
SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Nowy folder (2)\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2013-10-21 20:08:30 | 000,043,888 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Common Files\ArtistScope\CSDriver32.sys -- (CSDriver)
DRV - [2012-10-18 15:04:12 | 001,763,584 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athuw.sys -- (AR9271)
DRV - [2012-08-01 15:44:04 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2011-12-26 14:47:00 | 000,058,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2011-12-26 14:46:58 | 000,057,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)
DRV - [2011-09-06 00:55:12 | 000,023,040 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandnetdiag.sys -- (AndNetDiag)
DRV - [2010-02-11 08:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007-03-08 14:34:46 | 004,027,840 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2006-09-19 11:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2006-09-15 11:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2)
DRV - [2004-06-03 10:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2004-05-17 14:00:54 | 000,012,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004-05-17 14:00:52 | 000,033,280 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004-04-02 15:40:00 | 000,021,760 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nv_agp.SYS -- (nv_agp)
DRV - [2004-02-24 04:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2003-08-04 14:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\..\SearchScopes,DefaultScope = {9B0776DA-5D3E-48D1-84C2-B77C47157118}
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\..\SearchScopes\{9B0776DA-5D3E-48D1-84C2-B77C47157118}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
 
 
O1 HOSTS File: ([2013-07-11 19:05:30 | 000,000,789 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Nowy folder (2)\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\Run: [GB_UPDATE] C:\Program Files\Razer\Razer Game Booster\AutoUpdate.exe ()
O4 - HKLM..\Run: [GrooveMonitor] D:\Nowy folder (2)\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-1085031214-920026266-1801674531-1003..\Run: [wsctf.exe] wsctf.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1085031214-920026266-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Nowy folder (2)\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Nowy folder (2)\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Nowy folder (2)\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Nowy folder (2)\Office12\REFIEBAR.DLL (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0B88D22C-33AC-46DF-B1CC-74BDDAE2A620}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Nowy folder (2)\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Antiwpa: DllName - (antiwpa.dll) - C:\WINDOWS\System32\antiwpa.dll ()
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Nowy folder (2)\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-02-03 21:38:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2014-01-31 15:03:24 | 000,007,639 | ---- | M] () - C:\autoupdate.log -- [ NTFS ]
O33 - MountPoints2\{7a8dd0ee-85b4-11e3-ba6d-0011097ea21b}\Shell\AutoRun\command - "" = E:\pbudsara.exe
O33 - MountPoints2\{7a8dd0ee-85b4-11e3-ba6d-0011097ea21b}\Shell\open\Command - "" = E:\pbudsara.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-01-31 15:24:57 | 000,000,000 | ---D | C] -- C:\FRST
[2014-01-31 14:35:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logs
[2014-01-31 14:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Licenses
[2014-01-31 14:35:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2014-01-29 21:59:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\asd\Recent
[2014-01-29 21:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Blizzard Entertainment
[2014-01-29 21:54:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\Battle.net
[2014-01-29 21:53:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2014-01-29 21:53:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Blizzard Entertainment
[2014-01-29 21:36:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Battle.net
[2014-01-25 22:45:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2014-01-25 22:11:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MRT
[2014-01-25 20:41:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidparse.sys
[2014-01-25 20:41:17 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2014-01-25 20:41:11 | 000,144,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbport.sys
[2014-01-25 20:41:11 | 000,032,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2014-01-25 20:41:11 | 000,030,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbehci.sys
[2014-01-25 20:41:11 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbd.sys
[2014-01-25 20:33:50 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2014-01-25 20:13:37 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2014-01-25 20:02:38 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2014-01-25 19:52:09 | 002,194,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2014-01-25 19:52:05 | 002,151,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2014-01-25 19:52:05 | 002,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2014-01-25 19:49:56 | 000,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2014-01-25 16:36:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\ESET
[2014-01-25 16:36:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\ESET
[2014-01-20 17:09:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Pulpit\czpyta
[2014-01-20 17:09:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Pulpit\inst przemysłowe
[2014-01-20 12:42:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Sun
[2014-01-19 21:29:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2014-01-19 21:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014-01-19 21:29:13 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2014-01-19 21:29:13 | 000,145,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2014-01-19 21:29:06 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2014-01-19 21:29:06 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2014-01-19 21:29:06 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2014-01-19 21:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Java
[2014-01-19 21:28:50 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2014-01-19 21:28:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\Sun
[2014-01-18 21:28:07 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014-01-05 19:15:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Opera Software
[2014-01-05 19:14:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\Opera Software
[2014-01-05 17:43:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\Malwarebytes
[2014-01-05 17:43:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2014-01-04 21:31:11 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014-01-04 21:31:11 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014-01-02 20:12:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Moje dokumenty\Razer
[2014-01-02 20:12:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\Razer
[2014-01-02 20:11:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Razer
[2014-01-02 20:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\Razer
[2014-01-02 20:11:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer
[2014-01-02 14:37:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\LiveGBoost
[2014-01-02 14:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\GZero
[2014-01-02 14:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\asd\Dane aplikacji\GZero
[2013-06-02 14:31:55 | 003,135,704 | ---- | C] (ArtistScope) -- C:\Program Files\ArtistScope_FX_47.exe
[2013-02-22 19:25:33 | 006,955,968 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Silverlight.exe
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-01-31 15:11:43 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2014-01-31 15:03:20 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014-01-31 15:02:55 | 000,000,274 | ---- | M] () -- C:\WINDOWS\tasks\Game_Booster_AutoUpdate.job
[2014-01-31 15:02:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014-01-30 15:00:47 | 000,009,922 | ---- | M] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140130_150038.reg
[2014-01-25 22:51:26 | 000,270,984 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014-01-19 21:38:22 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014-01-19 21:38:21 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014-01-19 21:28:54 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2014-01-19 21:28:53 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2014-01-19 21:28:53 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2014-01-19 21:28:53 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2014-01-19 21:28:53 | 000,145,408 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2014-01-18 15:18:42 | 000,001,483 | ---- | M] () -- C:\Documents and Settings\asd\Pulpit\Klawiatura ekranowa.lnk
[2014-01-08 18:28:14 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2014-01-05 19:38:46 | 000,003,602 | ---- | M] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140105_193839.reg
[2014-01-05 19:14:58 | 000,000,573 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2014-01-02 20:11:58 | 000,000,755 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk
[2014-01-02 19:08:48 | 000,005,240 | ---- | M] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140102_190830.reg
[2014-01-01 21:16:26 | 000,015,510 | ---- | M] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140101_211541.reg
[2014-01-01 21:15:08 | 000,000,338 | ---- | M] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140101_211501.reg
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-01-30 15:00:41 | 000,009,922 | ---- | C] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140130_150038.reg
[2014-01-25 20:16:25 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2014-01-25 20:16:25 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2014-01-10 19:18:49 | 000,001,483 | ---- | C] () -- C:\Documents and Settings\asd\Pulpit\Klawiatura ekranowa.lnk
[2014-01-05 19:38:40 | 000,003,602 | ---- | C] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140105_193839.reg
[2014-01-05 19:14:57 | 000,000,573 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2014-01-05 19:14:57 | 000,000,573 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk
[2014-01-02 20:11:58 | 000,000,755 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk
[2014-01-02 19:08:36 | 000,005,240 | ---- | C] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140102_190830.reg
[2014-01-01 21:15:42 | 000,015,510 | ---- | C] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140101_211541.reg
[2014-01-01 21:15:03 | 000,000,338 | ---- | C] () -- C:\Documents and Settings\asd\Moje dokumenty\cc_20140101_211501.reg
[2013-12-12 18:14:08 | 000,027,472 | ---- | C] () -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
[2013-09-05 19:39:13 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2013-08-18 17:35:51 | 000,185,616 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar39.dll
[2013-08-18 17:35:51 | 000,169,744 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2013-08-18 17:35:51 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2013-08-18 17:35:51 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2013-08-18 17:35:51 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2013-07-11 19:04:34 | 000,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dll
[2013-07-11 18:54:58 | 000,013,824 | ---- | C] () -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\1-removewga.exe
[2013-07-04 13:04:26 | 000,262,216 | ---- | C] () -- C:\WINDOWS\System32\IPTests.dll
[2013-07-04 13:04:13 | 000,422,000 | ---- | C] () -- C:\WINDOWS\System32\wgapi.dll
[2013-07-02 20:09:39 | 000,217,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2013-06-30 13:15:57 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2013-06-30 13:15:57 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2013-06-30 13:15:53 | 000,127,456 | ---- | C] () -- C:\WINDOWS\System32\IPDETECT.EXE
[2013-06-30 13:15:52 | 000,152,220 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I2.BIN
[2013-06-30 13:15:52 | 000,152,220 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I1.BIN
[2013-06-30 13:15:52 | 000,152,220 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4I0.BIN
[2013-06-30 13:15:52 | 000,152,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P2.BIN
[2013-06-30 13:15:52 | 000,152,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P1.BIN
[2013-06-30 13:15:52 | 000,152,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4P0.BIN
[2013-06-30 13:15:52 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P2.BIN
[2013-06-30 13:15:52 | 000,152,036 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D2.BIN
[2013-06-30 13:15:52 | 000,152,034 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D1.BIN
[2013-06-30 13:15:52 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2013-06-30 13:15:52 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL
[2013-06-30 13:15:52 | 000,024,576 | ---- | C] () -- C:\WINDOWS\enddisk32.exe
[2013-06-30 13:15:51 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P1.BIN
[2013-06-30 13:15:51 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9P0.BIN
[2013-06-30 13:15:51 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I2.BIN
[2013-06-30 13:15:51 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I1.BIN
[2013-06-30 13:15:51 | 000,152,126 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E9I0.BIN
[2013-06-30 13:15:51 | 000,152,034 | ---- | C] () -- C:\WINDOWS\System32\drivers\L1E4D0.BIN
[2013-06-30 13:15:51 | 000,022,395 | ---- | C] () -- C:\WINDOWS\System32\drivers\fpga.bin
[2013-06-24 14:05:40 | 000,028,672 | R--- | C] () -- C:\WINDOWS\System32\adinst32.dll
[2013-06-15 11:35:15 | 000,002,408 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin
[2013-05-27 15:40:03 | 000,000,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\wrdfezcm.dat
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\Video.lnk
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\Pictures.lnk
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\Passwords.lnk
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\New Folder.lnk
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\Music.lnk
[2013-05-01 17:34:38 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\asd\Documents.lnk
[2013-04-18 15:10:02 | 000,001,777 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2013-04-18 15:09:57 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2013-03-05 08:47:06 | 000,006,820 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013-03-05 08:44:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013-03-04 22:46:59 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2013-02-13 19:11:51 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-02-10 19:48:30 | 000,000,927 | ---- | C] () -- C:\WINDOWS\wbocx.ini
[2013-02-09 12:38:11 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\asd\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2013-02-09 12:35:31 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2013-02-09 12:33:33 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2013-02-09 12:33:23 | 000,163,840 | R--- | C] ( ) -- C:\WINDOWS\System32\ATIDEMGR.dll
[2013-02-04 17:50:16 | 000,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2013-02-03 22:55:50 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2013-02-03 22:55:29 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2013-02-03 22:55:25 | 000,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2013-02-03 21:43:28 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013-02-03 21:35:38 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013-02-03 21:00:01 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013-02-03 20:58:59 | 000,270,984 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-11-15 03:30:34 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\drivers\hssdrv.sys
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2013-02-09 12:34:28 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 20:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 21:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2014-01-29 21:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Battle.net
[2013-11-02 21:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IObit
[2014-01-31 14:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Licenses
[2014-01-31 14:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Logs
[2014-01-02 20:11:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer
[2014-01-31 14:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2013-07-04 13:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK
[2014-01-29 21:55:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\Battle.net
[2014-01-25 16:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\ESET
[2014-01-31 15:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\foobar2000
[2014-01-02 14:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\GZero
[2013-03-04 23:36:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\LolClient
[2013-02-04 17:51:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\Opera
[2014-01-05 19:15:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\Opera Software
[2013-07-04 13:04:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\asd\Dane aplikacji\TP-LINK
[2013-08-29 11:45:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\TuneUp Software
[2013-06-16 10:41:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\foobar2000
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CB0AACC9

< End of report >