Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-02-2014 01 Ran by Komp (administrator) on MALINECZKA on 12-02-2014 14:44:47 Running from C:\Users\Komp\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Microsoft Corporation) C:\Windows\system32\SLsvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe () C:\Program Files\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe (NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe () C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe () C:\Windows\system32\dmwu.exe () C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe () C:\Acer\Mobility Center\MobilityService.exe (EgisTec Inc.) C:\Program Files\EgisTec\MyWinLocker 3\x86\MWLService.exe (NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe () C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe () C:\Windows\system32\PSIService.exe () C:\Program Files\Cyberlink\Shared files\RichVideo.exe (AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe (Tablet Driver) C:\Windows\System32\Drivers\WTSRV.EXE () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe () C:\Windows\PLFSetI.exe () C:\Program Files\AVG Secure Search\vprot.exe (ACD Systems) C:\Program Files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe () C:\Program Files\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\SMSNotifier.exe () C:\Program Files\Bamboo Dock\BambooCore.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Electronic Arts) C:\Program Files\Electronic Arts\EADM\Core.exe (Akamai Technologies, Inc.) C:\Users\Komp\AppData\Local\Akamai\netsession_win.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe (Realtek Semiconductor Corp.) C:\Users\Komp\AppData\Local\Temp\RtkBtMnt.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Akamai Technologies, Inc.) C:\Users\Komp\AppData\Local\Akamai\netsession_win.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (Microsoft Corporation) C:\Windows\system32\wuauclt.exe () C:\Windows\System32\jmdp\stij.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\17.3.0\ScriptHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation) HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6609440 2008-10-31] (Realtek Semiconductor) HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [690720 2008-12-18] (Acer Incorporated) HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-06-30] () HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2008-10-31] (Realtek Semiconductor Corp.) HKLM\...\Run: [WTClient] - C:\Windows\system32\WTClient.exe [32768 2009-08-19] (Tablet Driver) HKLM\...\Run: [vProt] - C:\Program Files\AVG Secure Search\vprot.exe [2552856 2014-02-05] () HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [ACPW05EN] - C:\Program Files\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe [822384 2011-11-16] (ACD Systems) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [689488 2008-03-11] (CANON INC.) HKLM\...\Run: [Start_BusinessEverywhere_{ad30a369-08e3-414c-9d2c-7f47dbe748da}] - C:\Program Files\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BusinessEverywhere.exe [3363808 2012-06-06] () HKLM\...\Run: [Start_SMSNotifier_{ad30a369-08e3-414c-9d2c-7f47dbe748da}] - C:\Program Files\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\SMSNotifier.exe [1359824 2012-06-06] () HKLM\...\Run: [BambooCore] - C:\Program Files\Bamboo Dock\BambooCore.exe [646744 2012-10-16] () HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.) HKLM\...\Run: [SwitchBoard] - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS6ServiceManager] - C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [EA Core] - C:\Program Files\Electronic Arts\EADM\Core.exe [3325952 2009-03-28] (Electronic Arts) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [AdobeBridge] - [X] HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [Akamai NetSession Interface] - C:\Users\Komp\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [Optimizer Pro] - C:\Program Files\Optimizer Pro\OptProLauncher.exe [135672 2013-09-29] (PC Utilities Pro) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\MountPoints2: {53a1ef7a-2834-11e2-a49e-00235a522e91} - F:\start.exe HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\MountPoints2: {6488b8ad-a911-11e2-b5d2-00235a522e91} - F:\Setup.exe HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\MountPoints2: {c5de23f3-28db-11e1-88ca-00235a522e91} - G:\setup.exe HKU\S-1-5-21-859098361-1263673785-183622165-1000\...\MountPoints2: {eb22fe3a-7e70-11e2-80c1-00235a522e91} - F:\Setup.exe HKU\S-1-5-21-859098361-1263673785-183622165-1001\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer) HKU\S-1-5-21-859098361-1263673785-183622165-1002\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-859098361-1263673785-183622165-1002\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer) HKU\S-1-5-21-859098361-1263673785-183622165-1002\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] - C:\Program Files\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe [1266712 2013-06-04] (AVG Secure Search) HKU\S-1-5-21-859098361-1263673785-183622165-1002\...\Run: [AVG-Secure-Search-Update_JUNE2013_HP] - C:\Program Files\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_HP.exe [1266712 2013-06-06] (AVG Secure Search) HKU\S-1-5-21-859098361-1263673785-183622165-1002\...\RunOnce: [AcerScrSav] - C:\Windows\Acer\run_NB.exe [24576 2007-08-21] () AppInit_DLLs: c:\progra~1\optimi~1\optpro~1.dll => File Not Found ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mntrId=AAEC00242BBC2BAE&affID=124742&tsp=5006 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = pl.v9.com/idd/idd_1331913175_307373 SearchScopes: HKLM - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=121845&tt=gc_&babsrc=SP_ss_din2g&mntrId=AAEC00242BBC2BAE SearchScopes: HKCU - {0D7562AE-8EF6-416d-A838-AB665251703A} URL = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4 SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=121845&tt=gc_&babsrc=SP_ss_din2g&mntrId=AAEC00242BBC2BAE SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={D9E48D74-D968-4908-B951-D6B5CCB1A47B}&mid=7a167900108f47d1bab9d16a1cb6c762-f4e729240cd3c39ba1113a30bcf0842479009110&lang=pl&ds=AVG&pr=fr&d=2012-08-30 17:44:08&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms} SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6R8SVw5xwW&loc=skw&search={searchTerms} SearchScopes: HKCU - {FDFB19D7-C3B9-42A7-B6E7-0CC21CE6EE61} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=142EFEAF-A8EE-4C4C-9066-CB03184588BF&apn_sauid=9F88A755-789D-4DEF-88EE-0FB03C618EE7 BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll No File BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search) BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.415.1646\swg.dll (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (Google Inc.) Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search) Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1388850224796 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation) Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll (AVG Secure Search) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default FF user.js: detected! => C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\user.js FF SearchEngineOrder.1: Ask Search FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll (AVG Technologies) FF Plugin: @graphisoft.com/GDL Web Plug-in - C:\Program Files\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll () FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\ask-search.xml FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\askcom.xml FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\babylon.xml FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\delta.xml FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\mixidj.xml FF SearchPlugin: C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\searchplugins\MyStart Search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\fcmdSrchddr.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\v9.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml FF Extension: Doownload keeper - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\aioe6yaoa@s-auueo.org [2013-10-14] FF Extension: AVG Security Toolbar - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\avg@toolbar [2012-11-15] FF Extension: Facemoods - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\ffxtlbr@Facemoods.com [2011-12-11] FF Extension: incredibar.com - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\ffxtlbr@incredibar.com [2013-01-30] FF Extension: VideoFileDownload - Download YouTube Videos - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\plugin@videofiledownload.com [2012-09-02] FF Extension: No Name - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\staged [2013-12-22] FF Extension: Personas Plus - C:\Users\Komp\AppData\Roaming\Mozilla\Firefox\Profiles\f2ozx911.default\Extensions\personas@christopher.beard.xpi [2011-12-02] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [] FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox FF HKLM\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] - C:\Program Files\IB Updater\Firefox FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49 FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49 [2014-01-08] Chrome: ======= CHR HomePage: hxxp://mystart.incredibar.com/?a=6R8SVw5xwW&loc=skw CHR RestoreOnStartup: "" CHR DefaultSearchKeyword: mystart.incredibar.com/ CHR DefaultSearchProvider: MyStart CHR DefaultSearchURL: http://mystart.incredibar.com/?a=6R8SVw5xwW&loc=skw&search={searchTerms} CHR DefaultNewTabURL: CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll (AVG Technologies) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) CHR Extension: (Dokumenty Google) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-03-03] CHR Extension: (Dysk Google) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-03] CHR Extension: (YouTube) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-03] CHR Extension: (Szukaj w Google) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-03] CHR Extension: (AVG Security Toolbar) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-03-03] CHR Extension: (Google Wallet) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-13] CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2013-10-13] CHR Extension: (Gmail) - C:\Users\Komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-03] CHR Extension: (DOownlooaditkeep) - C:\ProgramData\lkkpokfmhdigdfdhbhokkcchljmgbnpe [2013-12-22] CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-12-22] CHR HKLM\...\Chrome\Extension: [ihflimipbcaljfnojhhknppphnnciiif] - C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoods.crx [2013-12-22] CHR HKLM\...\Chrome\Extension: [kincjchfokkeneeofpeefomkikfkiedl] - C:\Program Files\OpenApp\chromeaddon.crx [2013-12-22] CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx [2014-01-08] CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\System32\jmdp\SweetNT.crx [2013-12-25] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ========================== Services (Whitelisted) ================= R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.) R2 BEWConfigSrv; C:\Program Files\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe [173008 2012-06-06] () S2 ca82e1a5; C:\Program Files\Optimizer Pro\OptProCrashSvc.dll [192664 2013-10-14] () R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [69632 2008-10-04] () R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [653856 2008-12-18] (Acer Incorporated) S3 GoogleDesktopManager-092308-165331; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2009-02-05] (Google) R2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1488176 2013-12-29] () R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [103808 2008-01-22] () R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () R2 MWLService; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [306736 2008-10-27] (EgisTec Inc.) R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] () R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] () R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] () R2 vToolbarUpdater17.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [1771544 2014-01-08] (AVG Secure Search) R2 WinTabService; C:\Windows\System32\Drivers\WTSRV.EXE [73728 2009-09-23] (Tablet Driver) R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [526208 2012-11-14] (Wacom Technology, Corp.) ==================== Drivers (Whitelisted) ==================== S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1387008 2010-01-05] (Atheros Communications, Inc.) R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-12] (AVG Technologies) R1 DritekPortIO; C:\Program Files\Launch Manager\DPortIO.sys [20112 2006-11-02] (Dritek System Inc.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-12-17] (DT Soft Ltd) S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [11680 2012-10-12] (Windows (R) Win 7 DDK provider) S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [89856 2012-06-06] (Huawei Technologies Co., Ltd.) S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [66688 2012-06-06] (Huawei Technologies Co., Ltd.) S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2012-06-06] (Huawei Technologies Co., Ltd.) R2 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [19504 2008-10-09] (Egis Incorporated.) R2 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2008-10-09] (Egis Incorporated.) R2 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [59952 2008-10-09] (Egis Incorporated.) R3 PTSimBus; C:\Windows\System32\DRIVERS\PTSimBus.sys [18944 2007-06-07] (PenTablet Driver) S3 PTSimHid; C:\Windows\System32\DRIVERS\PTSimHid.sys [10752 2007-04-23] (PenTablet Driver) S3 TClass2k; C:\Windows\System32\Drivers\TClass2k.sys [18432 2007-04-23] (Tablet Driver) S3 UCTblHid; C:\Windows\System32\Drivers\UCTblHid.sys [14848 2008-09-08] (Tablet Driver) S3 WacHidRouter; C:\Windows\System32\DRIVERS\wachidrouter.sys [69024 2012-10-12] (Wacom Technology) S3 wacomrouterfilter; C:\Windows\System32\DRIVERS\wacomrouterfilter.sys [13728 2012-10-12] (Wacom Technology) S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-12 14:44 - 2014-02-12 14:45 - 00030763 _____ () C:\Users\Komp\Downloads\FRST.txt 2014-02-12 14:44 - 2014-02-12 14:44 - 00000000 ____D () C:\FRST 2014-02-11 23:56 - 2014-02-11 23:36 - 00095818 _____ () C:\Users\Komp\Desktop\Extras.Txt 2014-02-11 23:55 - 2014-02-11 23:55 - 00196824 _____ () C:\Users\Komp\Desktop\OTL.Txt 2014-02-11 23:36 - 2014-02-11 23:36 - 00095818 _____ () C:\Users\Komp\Downloads\Extras.Txt 2014-02-11 23:34 - 2014-02-11 23:34 - 00196824 _____ () C:\Users\Komp\Downloads\OTL.Txt 2014-02-11 23:15 - 2014-02-11 23:16 - 01139712 _____ (Farbar) C:\Users\Komp\Downloads\FRST.exe 2014-02-11 22:50 - 2014-02-11 22:50 - 00602112 _____ (OldTimer Tools) C:\Users\Komp\Downloads\OTL.exe 2014-02-11 22:43 - 2014-02-11 22:47 - 00000000 ____D () C:\AdwCleaner 2014-02-11 22:42 - 2014-02-11 22:43 - 01166132 _____ () C:\Users\Komp\Downloads\AdwCleaner.exe 2014-02-11 11:22 - 2014-02-11 11:22 - 10067597 _____ () C:\Users\Komp\Downloads\Switchbotv3.1.7z 2014-02-11 11:19 - 2014-02-11 11:20 - 09247510 _____ () C:\Users\Komp\Downloads\BS+na+Ventris.pl (1).7z 2014-02-10 18:07 - 2014-02-10 19:36 - 00000000 ____D () C:\Users\Komp\Desktop\Nowy folder (2) 2014-02-10 13:59 - 2014-02-10 14:00 - 37057094 _____ () C:\Users\Komp\Downloads\Prism Art Studio.rar 2014-02-10 13:59 - 2014-02-10 13:59 - 00018748 _____ () C:\Users\Komp\Downloads\Fix for prism art studio.rar 2014-02-08 21:42 - 2014-02-08 21:52 - 698971403 _____ () C:\Users\Komp\Downloads\Helium2 (1).rar 2014-02-08 15:12 - 2014-02-08 15:12 - 09247510 _____ () C:\Users\Komp\Downloads\BS+na+Ventris.pl.7z 2014-02-06 10:39 - 2014-02-06 10:39 - 00049167 _____ () C:\Users\Komp\Downloads\elven.zip 2014-02-05 10:59 - 2014-02-05 10:59 - 00001735 _____ () C:\Users\Public\Desktop\AION Free-to-Play.lnk 2014-02-05 10:56 - 2014-02-05 10:56 - 20435800 _____ (Gameforge ) C:\Users\Komp\Downloads\AION_GameforgeLiveSetup.exe 2014-01-29 19:26 - 2014-01-29 20:31 - 00000000 ____D () C:\Users\Komp\Desktop\Nowy folder 2014-01-26 13:31 - 2014-01-26 13:56 - 00001712 ____H () C:\Users\Tata\Documents\Default.rdp 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\Wacom 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\AVG2014 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\Apple Computer 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Local\Orange 2014-01-26 13:22 - 2014-01-26 13:22 - 00001981 _____ () C:\Users\Tata\Desktop\Google Chrome.lnk 2014-01-26 13:22 - 2014-01-26 13:22 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\WTablet 2014-01-26 13:22 - 2014-01-26 13:22 - 00000000 ____D () C:\Users\Tata\AppData\Local\Avg2014 2014-01-21 19:47 - 2014-01-21 19:47 - 12943872 _____ () C:\Users\Komp\Downloads\zagospodarowanie.ppt 2014-01-21 19:47 - 2014-01-21 19:47 - 00034273 _____ () C:\Users\Komp\Downloads\200906100839506._PW_PLAC_BUDOWY.zip 2014-01-20 20:45 - 2014-01-20 20:45 - 00013635 _____ () C:\Users\Komp\Downloads\[kickass.to]pushing.daisies.complete.seasons.1.2.torrent 2014-01-20 20:44 - 2014-01-20 20:44 - 00017850 _____ () C:\Users\Komp\Downloads\[kickass.to]pushing.daises.season.1.complete.subs.esp.lat.wallpapers.for.dvd.r.menu.torrent 2014-01-17 19:23 - 2014-01-17 19:23 - 00018705 _____ () C:\Users\Komp\Downloads\[kickass.to]the.fall.2006.1080p.bdrip.aac.x264.multisubs.tomcat12.torrent 2014-01-17 18:39 - 2014-01-17 18:39 - 00035519 _____ () C:\Users\Komp\Downloads\[kickass.to]the.fall.2006.brrip.720p.x264.aac.ameet6233.torrent ==================== One Month Modified Files and Folders ======= 2014-02-12 14:45 - 2014-02-12 14:44 - 00030763 _____ () C:\Users\Komp\Downloads\FRST.txt 2014-02-12 14:44 - 2014-02-12 14:44 - 00000000 ____D () C:\FRST 2014-02-12 14:38 - 2011-10-11 17:40 - 02081376 _____ () C:\Windows\WindowsUpdate.log 2014-02-12 14:24 - 2012-09-01 16:28 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-12 14:14 - 2013-03-03 19:26 - 00001032 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-12 13:22 - 2011-12-04 12:58 - 00000000 ____D () C:\ProgramData\MFAData 2014-02-12 13:16 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-12 13:16 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-12 09:27 - 2013-01-27 18:54 - 00000000 ____D () C:\Program Files\Steam 2014-02-12 09:27 - 2012-03-18 14:11 - 00000000 ____D () C:\Users\Komp\AppData\Roaming\Skype 2014-02-12 09:17 - 2013-06-06 15:44 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job 2014-02-12 09:17 - 2013-06-04 19:53 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job 2014-02-12 09:17 - 2013-03-03 19:26 - 00001028 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-12 09:16 - 2009-02-05 19:15 - 00000147 _____ () C:\Windows\system32\agent.log 2014-02-12 09:16 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-12 00:04 - 2006-11-02 14:01 - 00032546 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-02-11 23:55 - 2014-02-11 23:55 - 00196824 _____ () C:\Users\Komp\Desktop\OTL.Txt 2014-02-11 23:36 - 2014-02-11 23:56 - 00095818 _____ () C:\Users\Komp\Desktop\Extras.Txt 2014-02-11 23:36 - 2014-02-11 23:36 - 00095818 _____ () C:\Users\Komp\Downloads\Extras.Txt 2014-02-11 23:34 - 2014-02-11 23:34 - 00196824 _____ () C:\Users\Komp\Downloads\OTL.Txt 2014-02-11 23:16 - 2014-02-11 23:15 - 01139712 _____ (Farbar) C:\Users\Komp\Downloads\FRST.exe 2014-02-11 22:50 - 2014-02-11 22:50 - 00602112 _____ (OldTimer Tools) C:\Users\Komp\Downloads\OTL.exe 2014-02-11 22:47 - 2014-02-11 22:43 - 00000000 ____D () C:\AdwCleaner 2014-02-11 22:43 - 2014-02-11 22:42 - 01166132 _____ () C:\Users\Komp\Downloads\AdwCleaner.exe 2014-02-11 19:26 - 2013-06-19 19:41 - 00000000 ____D () C:\Users\Komp\AppData\Roaming\GG 2014-02-11 19:03 - 2011-12-07 16:55 - 00000000 ____D () C:\Users\Komp\AppData\Local\Adobe 2014-02-11 11:22 - 2014-02-11 11:22 - 10067597 _____ () C:\Users\Komp\Downloads\Switchbotv3.1.7z 2014-02-11 11:20 - 2014-02-11 11:19 - 09247510 _____ () C:\Users\Komp\Downloads\BS+na+Ventris.pl (1).7z 2014-02-10 19:36 - 2014-02-10 18:07 - 00000000 ____D () C:\Users\Komp\Desktop\Nowy folder (2) 2014-02-10 14:00 - 2014-02-10 13:59 - 37057094 _____ () C:\Users\Komp\Downloads\Prism Art Studio.rar 2014-02-10 13:59 - 2014-02-10 13:59 - 00018748 _____ () C:\Users\Komp\Downloads\Fix for prism art studio.rar 2014-02-09 18:10 - 2011-12-02 20:23 - 00076288 _____ () C:\Users\Komp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-02-08 21:52 - 2014-02-08 21:42 - 698971403 _____ () C:\Users\Komp\Downloads\Helium2 (1).rar 2014-02-08 20:28 - 2013-05-29 23:49 - 00000000 ____D () C:\Users\Komp\AppData\Roaming\TS3Client 2014-02-08 15:12 - 2014-02-08 15:12 - 09247510 _____ () C:\Users\Komp\Downloads\BS+na+Ventris.pl.7z 2014-02-08 14:52 - 2011-10-11 17:42 - 00000680 _____ () C:\Users\Komp\AppData\Local\d3d9caps.dat 2014-02-06 20:12 - 2011-10-11 17:45 - 00118136 _____ () C:\Users\Komp\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-06 20:07 - 2006-11-02 13:47 - 03826200 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-02-06 20:06 - 2012-10-23 17:06 - 00052476 _____ () C:\Windows\PFRO.log 2014-02-06 10:39 - 2014-02-06 10:39 - 00049167 _____ () C:\Users\Komp\Downloads\elven.zip 2014-02-05 11:10 - 2012-08-30 16:43 - 00000000 ____D () C:\Program Files\AVG Secure Search 2014-02-05 10:59 - 2014-02-05 10:59 - 00001735 _____ () C:\Users\Public\Desktop\AION Free-to-Play.lnk 2014-02-05 10:57 - 2013-08-05 16:17 - 00000000 ____D () C:\Users\Komp\Documents\Gameforge Live 2014-02-05 10:56 - 2014-02-05 10:56 - 20435800 _____ (Gameforge ) C:\Users\Komp\Downloads\AION_GameforgeLiveSetup.exe 2014-02-05 10:56 - 2013-08-05 16:17 - 00000000 ____D () C:\Program Files\GameforgeLive 2014-02-05 10:24 - 2012-09-01 16:28 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-02-05 10:24 - 2011-12-03 16:01 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-02-01 21:59 - 2013-10-14 15:17 - 00000000 ____D () C:\Program Files\Optimizer Pro 2014-01-29 20:31 - 2014-01-29 19:26 - 00000000 ____D () C:\Users\Komp\Desktop\Nowy folder 2014-01-26 13:56 - 2014-01-26 13:31 - 00001712 ____H () C:\Users\Tata\Documents\Default.rdp 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\Wacom 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\AVG2014 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\Apple Computer 2014-01-26 13:23 - 2014-01-26 13:23 - 00000000 ____D () C:\Users\Tata\AppData\Local\Orange 2014-01-26 13:23 - 2013-03-04 21:52 - 00000000 ____D () C:\ProgramData\CanonIJPLM 2014-01-26 13:23 - 2011-12-26 22:11 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\Adobe 2014-01-26 13:23 - 2011-12-03 09:55 - 00111760 _____ () C:\Users\Tata\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-26 13:22 - 2014-01-26 13:22 - 00001981 _____ () C:\Users\Tata\Desktop\Google Chrome.lnk 2014-01-26 13:22 - 2014-01-26 13:22 - 00000000 ____D () C:\Users\Tata\AppData\Roaming\WTablet 2014-01-26 13:22 - 2014-01-26 13:22 - 00000000 ____D () C:\Users\Tata\AppData\Local\Avg2014 2014-01-25 21:20 - 2012-07-03 08:10 - 00000000 ____D () C:\Users\Komp\AppData\Roaming\uTorrent 2014-01-21 19:47 - 2014-01-21 19:47 - 12943872 _____ () C:\Users\Komp\Downloads\zagospodarowanie.ppt 2014-01-21 19:47 - 2014-01-21 19:47 - 00034273 _____ () C:\Users\Komp\Downloads\200906100839506._PW_PLAC_BUDOWY.zip 2014-01-20 20:45 - 2014-01-20 20:45 - 00013635 _____ () C:\Users\Komp\Downloads\[kickass.to]pushing.daisies.complete.seasons.1.2.torrent 2014-01-20 20:44 - 2014-01-20 20:44 - 00017850 _____ () C:\Users\Komp\Downloads\[kickass.to]pushing.daises.season.1.complete.subs.esp.lat.wallpapers.for.dvd.r.menu.torrent 2014-01-18 00:32 - 2013-01-27 18:55 - 00000000 ____D () C:\Program Files\Common Files\Steam 2014-01-17 19:23 - 2014-01-17 19:23 - 00018705 _____ () C:\Users\Komp\Downloads\[kickass.to]the.fall.2006.1080p.bdrip.aac.x264.multisubs.tomcat12.torrent 2014-01-17 19:23 - 2011-12-02 20:27 - 00000000 ____D () C:\Users\Komp\AppData\Roaming\vlc 2014-01-17 18:39 - 2014-01-17 18:39 - 00035519 _____ () C:\Users\Komp\Downloads\[kickass.to]the.fall.2006.brrip.720p.x264.aac.ameet6233.torrent 2014-01-17 17:47 - 2009-02-05 17:57 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-17 17:45 - 2013-08-01 14:08 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-17 17:38 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2014-01-17 17:35 - 2012-03-07 17:26 - 00003604 _____ () C:\Windows\wininit.ini 2014-01-16 20:23 - 2013-12-22 18:34 - 00000000 ____D () C:\ProgramData\PoroShOpuperr 2014-01-16 20:23 - 2013-12-22 18:34 - 00000000 ____D () C:\ProgramData\DOownlooaditkeep 2014-01-14 18:03 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Common Files\System 2014-01-14 18:03 - 2006-11-02 11:23 - 00000219 _____ () C:\Windows\win.ini Files to move or delete: ==================== C:\Users\Komp\AppData\Roaming\CamLayout.ini C:\Users\Komp\AppData\Roaming\CamShapes.ini Some content of TEMP: ==================== C:\Users\Komp\AppData\Local\Temp\APNSetup.exe C:\Users\Komp\AppData\Local\Temp\APNStub.exe C:\Users\Komp\AppData\Local\Temp\appshat-distribution.exe C:\Users\Komp\AppData\Local\Temp\BingBarSetup-Partner.exe C:\Users\Komp\AppData\Local\Temp\DeltaTB.exe C:\Users\Komp\AppData\Local\Temp\dp.exe C:\Users\Komp\AppData\Local\Temp\drm_dialogs.dll C:\Users\Komp\AppData\Local\Temp\drm_dyndata_7370014.dll C:\Users\Komp\AppData\Local\Temp\EAD1.exe C:\Users\Komp\AppData\Local\Temp\EAD10C2.exe C:\Users\Komp\AppData\Local\Temp\EAD111F.exe C:\Users\Komp\AppData\Local\Temp\EAD11AC.exe C:\Users\Komp\AppData\Local\Temp\EAD139F.exe C:\Users\Komp\AppData\Local\Temp\EAD14F6.exe C:\Users\Komp\AppData\Local\Temp\EAD157.exe C:\Users\Komp\AppData\Local\Temp\EAD15A2.exe C:\Users\Komp\AppData\Local\Temp\EAD15B1.exe C:\Users\Komp\AppData\Local\Temp\EAD161E.exe C:\Users\Komp\AppData\Local\Temp\EAD16CA.exe C:\Users\Komp\AppData\Local\Temp\EAD16DA.exe C:\Users\Komp\AppData\Local\Temp\EAD1708.exe C:\Users\Komp\AppData\Local\Temp\EAD1747.exe C:\Users\Komp\AppData\Local\Temp\EAD1767.exe C:\Users\Komp\AppData\Local\Temp\EAD1776.exe C:\Users\Komp\AppData\Local\Temp\EAD17A4.exe C:\Users\Komp\AppData\Local\Temp\EAD17B4.exe C:\Users\Komp\AppData\Local\Temp\EAD1802.exe C:\Users\Komp\AppData\Local\Temp\EAD1A14.exe C:\Users\Komp\AppData\Local\Temp\EAD1AF0.exe C:\Users\Komp\AppData\Local\Temp\EAD1BC9.exe C:\Users\Komp\AppData\Local\Temp\EAD1C75.exe C:\Users\Komp\AppData\Local\Temp\EAD1CD2.exe C:\Users\Komp\AppData\Local\Temp\EAD1FCF.exe C:\Users\Komp\AppData\Local\Temp\EAD1FDE.exe C:\Users\Komp\AppData\Local\Temp\EAD1FDF.exe C:\Users\Komp\AppData\Local\Temp\EAD208A.exe C:\Users\Komp\AppData\Local\Temp\EAD20C8.exe C:\Users\Komp\AppData\Local\Temp\EAD20F7.exe C:\Users\Komp\AppData\Local\Temp\EAD2136.exe C:\Users\Komp\AppData\Local\Temp\EAD21E1.exe C:\Users\Komp\AppData\Local\Temp\EAD21F1.exe C:\Users\Komp\AppData\Local\Temp\EAD2220.exe C:\Users\Komp\AppData\Local\Temp\EAD224E.exe C:\Users\Komp\AppData\Local\Temp\EAD22CB.exe C:\Users\Komp\AppData\Local\Temp\EAD2338.exe C:\Users\Komp\AppData\Local\Temp\EAD2348.exe C:\Users\Komp\AppData\Local\Temp\EAD2470.exe C:\Users\Komp\AppData\Local\Temp\EAD276D.exe C:\Users\Komp\AppData\Local\Temp\EAD279D.exe C:\Users\Komp\AppData\Local\Temp\EAD27F.exe C:\Users\Komp\AppData\Local\Temp\EAD2847.exe C:\Users\Komp\AppData\Local\Temp\EAD28F.exe C:\Users\Komp\AppData\Local\Temp\EAD290.exe C:\Users\Komp\AppData\Local\Temp\EAD299E.exe C:\Users\Komp\AppData\Local\Temp\EAD29BE.exe C:\Users\Komp\AppData\Local\Temp\EAD29FC.exe C:\Users\Komp\AppData\Local\Temp\EAD2A5A.exe C:\Users\Komp\AppData\Local\Temp\EAD2A79.exe C:\Users\Komp\AppData\Local\Temp\EAD2BE.exe C:\Users\Komp\AppData\Local\Temp\EAD2BE0.exe C:\Users\Komp\AppData\Local\Temp\EAD2C4D.exe C:\Users\Komp\AppData\Local\Temp\EAD2C5C.exe C:\Users\Komp\AppData\Local\Temp\EAD2D18.exe C:\Users\Komp\AppData\Local\Temp\EAD2E11.exe C:\Users\Komp\AppData\Local\Temp\EAD2E7E.exe C:\Users\Komp\AppData\Local\Temp\EAD2E8E.exe C:\Users\Komp\AppData\Local\Temp\EAD2F59.exe C:\Users\Komp\AppData\Local\Temp\EAD2FC.exe C:\Users\Komp\AppData\Local\Temp\EAD317B.exe C:\Users\Komp\AppData\Local\Temp\EAD3255.exe C:\Users\Komp\AppData\Local\Temp\EAD3256.exe C:\Users\Komp\AppData\Local\Temp\EAD333F.exe C:\Users\Komp\AppData\Local\Temp\EAD339D.exe C:\Users\Komp\AppData\Local\Temp\EAD33AC.exe C:\Users\Komp\AppData\Local\Temp\EAD34C5.exe C:\Users\Komp\AppData\Local\Temp\EAD3542.exe C:\Users\Komp\AppData\Local\Temp\EAD365B.exe C:\Users\Komp\AppData\Local\Temp\EAD36F7.exe C:\Users\Komp\AppData\Local\Temp\EAD3745.exe C:\Users\Komp\AppData\Local\Temp\EAD3783.exe C:\Users\Komp\AppData\Local\Temp\EAD379.exe C:\Users\Komp\AppData\Local\Temp\EAD3793.exe C:\Users\Komp\AppData\Local\Temp\EAD37B3.exe C:\Users\Komp\AppData\Local\Temp\EAD386D.exe C:\Users\Komp\AppData\Local\Temp\EAD3919.exe C:\Users\Komp\AppData\Local\Temp\EAD391A.exe C:\Users\Komp\AppData\Local\Temp\EAD3948.exe C:\Users\Komp\AppData\Local\Temp\EAD3A22.exe C:\Users\Komp\AppData\Local\Temp\EAD3A23.exe C:\Users\Komp\AppData\Local\Temp\EAD3A60.exe C:\Users\Komp\AppData\Local\Temp\EAD3C7.exe C:\Users\Komp\AppData\Local\Temp\EAD3D2E.exe C:\Users\Komp\AppData\Local\Temp\EAD3EC4.exe C:\Users\Komp\AppData\Local\Temp\EAD3F31.exe C:\Users\Komp\AppData\Local\Temp\EAD4059.exe C:\Users\Komp\AppData\Local\Temp\EAD424.exe C:\Users\Komp\AppData\Local\Temp\EAD425C.exe C:\Users\Komp\AppData\Local\Temp\EAD426C.exe C:\Users\Komp\AppData\Local\Temp\EAD4317.exe C:\Users\Komp\AppData\Local\Temp\EAD43A4.exe C:\Users\Komp\AppData\Local\Temp\EAD43B3.exe C:\Users\Komp\AppData\Local\Temp\EAD44BC.exe C:\Users\Komp\AppData\Local\Temp\EAD4623.exe C:\Users\Komp\AppData\Local\Temp\EAD4662.exe C:\Users\Komp\AppData\Local\Temp\EAD4663.exe C:\Users\Komp\AppData\Local\Temp\EAD4690.exe C:\Users\Komp\AppData\Local\Temp\EAD46A0.exe C:\Users\Komp\AppData\Local\Temp\EAD47B9.exe C:\Users\Komp\AppData\Local\Temp\EAD4864.exe C:\Users\Komp\AppData\Local\Temp\EAD49DB.exe C:\Users\Komp\AppData\Local\Temp\EAD4A0A.exe C:\Users\Komp\AppData\Local\Temp\EAD4A86.exe C:\Users\Komp\AppData\Local\Temp\EAD4B70.exe C:\Users\Komp\AppData\Local\Temp\EAD4C5A.exe C:\Users\Komp\AppData\Local\Temp\EAD4C89.exe C:\Users\Komp\AppData\Local\Temp\EAD4CEC.exe C:\Users\Komp\AppData\Local\Temp\EAD4D25.exe C:\Users\Komp\AppData\Local\Temp\EAD4D44.exe C:\Users\Komp\AppData\Local\Temp\EAD4E00.exe C:\Users\Komp\AppData\Local\Temp\EAD4E8C.exe C:\Users\Komp\AppData\Local\Temp\EAD4EEA.exe C:\Users\Komp\AppData\Local\Temp\EAD5023.exe C:\Users\Komp\AppData\Local\Temp\EAD5169.exe C:\Users\Komp\AppData\Local\Temp\EAD51B7.exe C:\Users\Komp\AppData\Local\Temp\EAD5215.exe C:\Users\Komp\AppData\Local\Temp\EAD5224.exe C:\Users\Komp\AppData\Local\Temp\EAD52C0.exe C:\Users\Komp\AppData\Local\Temp\EAD52C1.exe C:\Users\Komp\AppData\Local\Temp\EAD52E.exe C:\Users\Komp\AppData\Local\Temp\EAD535C.exe C:\Users\Komp\AppData\Local\Temp\EAD5550.exe C:\Users\Komp\AppData\Local\Temp\EAD555F.exe C:\Users\Komp\AppData\Local\Temp\EAD55DC.exe C:\Users\Komp\AppData\Local\Temp\EAD55EC.exe C:\Users\Komp\AppData\Local\Temp\EAD560B.exe C:\Users\Komp\AppData\Local\Temp\EAD5714.exe C:\Users\Komp\AppData\Local\Temp\EAD5743.exe C:\Users\Komp\AppData\Local\Temp\EAD5752.exe C:\Users\Komp\AppData\Local\Temp\EAD57B0.exe C:\Users\Komp\AppData\Local\Temp\EAD588A.exe C:\Users\Komp\AppData\Local\Temp\EAD58D9.exe C:\Users\Komp\AppData\Local\Temp\EAD5926.exe C:\Users\Komp\AppData\Local\Temp\EAD5A5F.exe C:\Users\Komp\AppData\Local\Temp\EAD5B1A.exe C:\Users\Komp\AppData\Local\Temp\EAD5BE4.exe C:\Users\Komp\AppData\Local\Temp\EAD5C61.exe C:\Users\Komp\AppData\Local\Temp\EAD5E45.exe C:\Users\Komp\AppData\Local\Temp\EAD5ED1.exe C:\Users\Komp\AppData\Local\Temp\EAD5EFA.exe C:\Users\Komp\AppData\Local\Temp\EAD608.exe C:\Users\Komp\AppData\Local\Temp\EAD60A5.exe C:\Users\Komp\AppData\Local\Temp\EAD6141.exe C:\Users\Komp\AppData\Local\Temp\EAD6160.exe C:\Users\Komp\AppData\Local\Temp\EAD6170.exe C:\Users\Komp\AppData\Local\Temp\EAD6299.exe C:\Users\Komp\AppData\Local\Temp\EAD640F.exe C:\Users\Komp\AppData\Local\Temp\EAD642F.exe C:\Users\Komp\AppData\Local\Temp\EAD6612.exe C:\Users\Komp\AppData\Local\Temp\EAD6788.exe C:\Users\Komp\AppData\Local\Temp\EAD6798.exe C:\Users\Komp\AppData\Local\Temp\EAD68C0.exe C:\Users\Komp\AppData\Local\Temp\EAD6A08.exe C:\Users\Komp\AppData\Local\Temp\EAD6C49.exe C:\Users\Komp\AppData\Local\Temp\EAD6CE5.exe C:\Users\Komp\AppData\Local\Temp\EAD6D.exe C:\Users\Komp\AppData\Local\Temp\EAD6D91.exe C:\Users\Komp\AppData\Local\Temp\EAD6DEE.exe C:\Users\Komp\AppData\Local\Temp\EAD6E4C.exe C:\Users\Komp\AppData\Local\Temp\EAD6EE8.exe C:\Users\Komp\AppData\Local\Temp\EAD6FC2.exe C:\Users\Komp\AppData\Local\Temp\EAD708D.exe C:\Users\Komp\AppData\Local\Temp\EAD721.exe C:\Users\Komp\AppData\Local\Temp\EAD722.exe C:\Users\Komp\AppData\Local\Temp\EAD736A.exe C:\Users\Komp\AppData\Local\Temp\EAD737A.exe C:\Users\Komp\AppData\Local\Temp\EAD73A9.exe C:\Users\Komp\AppData\Local\Temp\EAD7473.exe C:\Users\Komp\AppData\Local\Temp\EAD74A2.exe C:\Users\Komp\AppData\Local\Temp\EAD756D.exe C:\Users\Komp\AppData\Local\Temp\EAD75BB.exe C:\Users\Komp\AppData\Local\Temp\EAD75DB.exe C:\Users\Komp\AppData\Local\Temp\EAD7657.exe C:\Users\Komp\AppData\Local\Temp\EAD7676.exe C:\Users\Komp\AppData\Local\Temp\EAD779F.exe C:\Users\Komp\AppData\Local\Temp\EAD784A.exe C:\Users\Komp\AppData\Local\Temp\EAD7879.exe C:\Users\Komp\AppData\Local\Temp\EAD78E.exe C:\Users\Komp\AppData\Local\Temp\EAD7905.exe C:\Users\Komp\AppData\Local\Temp\EAD7963.exe C:\Users\Komp\AppData\Local\Temp\EAD79A1.exe C:\Users\Komp\AppData\Local\Temp\EAD79E.exe C:\Users\Komp\AppData\Local\Temp\EAD7A0F.exe C:\Users\Komp\AppData\Local\Temp\EAD7BD.exe C:\Users\Komp\AppData\Local\Temp\EAD7BF2.exe C:\Users\Komp\AppData\Local\Temp\EAD7C40.exe C:\Users\Komp\AppData\Local\Temp\EAD7C8E.exe C:\Users\Komp\AppData\Local\Temp\EAD7C8F.exe C:\Users\Komp\AppData\Local\Temp\EAD7DD6.exe C:\Users\Komp\AppData\Local\Temp\EAD7DE5.exe C:\Users\Komp\AppData\Local\Temp\EAD7FC9.exe C:\Users\Komp\AppData\Local\Temp\EAD7FCA.exe C:\Users\Komp\AppData\Local\Temp\EAD8036.exe C:\Users\Komp\AppData\Local\Temp\EAD8046.exe C:\Users\Komp\AppData\Local\Temp\EAD8084.exe C:\Users\Komp\AppData\Local\Temp\EAD821A.exe C:\Users\Komp\AppData\Local\Temp\EAD8268.exe C:\Users\Komp\AppData\Local\Temp\EAD82C6.exe C:\Users\Komp\AppData\Local\Temp\EAD82D5.exe C:\Users\Komp\AppData\Local\Temp\EAD840D.exe C:\Users\Komp\AppData\Local\Temp\EAD84A9.exe C:\Users\Komp\AppData\Local\Temp\EAD86E1.exe C:\Users\Komp\AppData\Local\Temp\EAD8738.exe C:\Users\Komp\AppData\Local\Temp\EAD87C5.exe C:\Users\Komp\AppData\Local\Temp\EAD888.exe C:\Users\Komp\AppData\Local\Temp\EAD890C.exe C:\Users\Komp\AppData\Local\Temp\EAD894B.exe C:\Users\Komp\AppData\Local\Temp\EAD8979.exe C:\Users\Komp\AppData\Local\Temp\EAD89B8.exe C:\Users\Komp\AppData\Local\Temp\EAD8A35.exe C:\Users\Komp\AppData\Local\Temp\EAD8A92.exe C:\Users\Komp\AppData\Local\Temp\EAD8B2E.exe C:\Users\Komp\AppData\Local\Temp\EAD8B4D.exe C:\Users\Komp\AppData\Local\Temp\EAD8D12.exe C:\Users\Komp\AppData\Local\Temp\EAD8D31.exe C:\Users\Komp\AppData\Local\Temp\EAD8E69.exe C:\Users\Komp\AppData\Local\Temp\EAD8EE6.exe C:\Users\Komp\AppData\Local\Temp\EAD8F53.exe C:\Users\Komp\AppData\Local\Temp\EAD901E.exe C:\Users\Komp\AppData\Local\Temp\EAD9117.exe C:\Users\Komp\AppData\Local\Temp\EAD9137.exe C:\Users\Komp\AppData\Local\Temp\EAD9139.exe C:\Users\Komp\AppData\Local\Temp\EAD927E.exe C:\Users\Komp\AppData\Local\Temp\EAD92BD.exe C:\Users\Komp\AppData\Local\Temp\EAD92EB.exe C:\Users\Komp\AppData\Local\Temp\EAD9481.exe C:\Users\Komp\AppData\Local\Temp\EAD94B0.exe C:\Users\Komp\AppData\Local\Temp\EAD94BF.exe C:\Users\Komp\AppData\Local\Temp\EAD954C.exe C:\Users\Komp\AppData\Local\Temp\EAD95C9.exe C:\Users\Komp\AppData\Local\Temp\EAD95F7.exe C:\Users\Komp\AppData\Local\Temp\EAD95F8.exe C:\Users\Komp\AppData\Local\Temp\EAD96D2.exe C:\Users\Komp\AppData\Local\Temp\EAD97FA.exe C:\Users\Komp\AppData\Local\Temp\EAD9867.exe C:\Users\Komp\AppData\Local\Temp\EAD9868.exe C:\Users\Komp\AppData\Local\Temp\EAD9877.exe C:\Users\Komp\AppData\Local\Temp\EAD9887.exe C:\Users\Komp\AppData\Local\Temp\EAD98C5.exe C:\Users\Komp\AppData\Local\Temp\EAD9A2C.exe C:\Users\Komp\AppData\Local\Temp\EAD9A4B.exe C:\Users\Komp\AppData\Local\Temp\EAD9AF7.exe C:\Users\Komp\AppData\Local\Temp\EAD9BE1.exe C:\Users\Komp\AppData\Local\Temp\EADA082.exe C:\Users\Komp\AppData\Local\Temp\EADA10F.exe C:\Users\Komp\AppData\Local\Temp\EADA247.exe C:\Users\Komp\AppData\Local\Temp\EADA350.exe C:\Users\Komp\AppData\Local\Temp\EADA3FC.exe C:\Users\Komp\AppData\Local\Temp\EADA43A.exe C:\Users\Komp\AppData\Local\Temp\EADA4D6.exe C:\Users\Komp\AppData\Local\Temp\EADA562.exe C:\Users\Komp\AppData\Local\Temp\EADA5DF.exe C:\Users\Komp\AppData\Local\Temp\EADA5EF.exe C:\Users\Komp\AppData\Local\Temp\EADA7A3.exe C:\Users\Komp\AppData\Local\Temp\EADA89D.exe C:\Users\Komp\AppData\Local\Temp\EADA9D5.exe C:\Users\Komp\AppData\Local\Temp\EADA9E5.exe C:\Users\Komp\AppData\Local\Temp\EADAACF.exe C:\Users\Komp\AppData\Local\Temp\EADAC26.exe C:\Users\Komp\AppData\Local\Temp\EADACC2.exe C:\Users\Komp\AppData\Local\Temp\EADAD9C.exe C:\Users\Komp\AppData\Local\Temp\EADAE8.exe C:\Users\Komp\AppData\Local\Temp\EADAEE4.exe C:\Users\Komp\AppData\Local\Temp\EADAF51.exe C:\Users\Komp\AppData\Local\Temp\EADAF8F.exe C:\Users\Komp\AppData\Local\Temp\EADAFAF.exe C:\Users\Komp\AppData\Local\Temp\EADAFBE.exe C:\Users\Komp\AppData\Local\Temp\EADB04B.exe C:\Users\Komp\AppData\Local\Temp\EADB144.exe C:\Users\Komp\AppData\Local\Temp\EADB145.exe C:\Users\Komp\AppData\Local\Temp\EADB1FF.exe C:\Users\Komp\AppData\Local\Temp\EADB347.exe C:\Users\Komp\AppData\Local\Temp\EADB36.exe C:\Users\Komp\AppData\Local\Temp\EADB5C7.exe C:\Users\Komp\AppData\Local\Temp\EADB6C0.exe C:\Users\Komp\AppData\Local\Temp\EADB7D9.exe C:\Users\Komp\AppData\Local\Temp\EADB8A4.exe C:\Users\Komp\AppData\Local\Temp\EADB8C3.exe C:\Users\Komp\AppData\Local\Temp\EADBA0B.exe C:\Users\Komp\AppData\Local\Temp\EADBA2A.exe C:\Users\Komp\AppData\Local\Temp\EADBB3.exe C:\Users\Komp\AppData\Local\Temp\EADBC6B.exe C:\Users\Komp\AppData\Local\Temp\EADBC6C.exe C:\Users\Komp\AppData\Local\Temp\EADBE7D.exe C:\Users\Komp\AppData\Local\Temp\EADBFA6.exe C:\Users\Komp\AppData\Local\Temp\EADC032.exe C:\Users\Komp\AppData\Local\Temp\EADC061.exe C:\Users\Komp\AppData\Local\Temp\EADC2A2.exe C:\Users\Komp\AppData\Local\Temp\EADC33E.exe C:\Users\Komp\AppData\Local\Temp\EADC5AE.exe C:\Users\Komp\AppData\Local\Temp\EADC60C.exe C:\Users\Komp\AppData\Local\Temp\EADC698.exe C:\Users\Komp\AppData\Local\Temp\EADC726.exe C:\Users\Komp\AppData\Local\Temp\EADC7E0.exe C:\Users\Komp\AppData\Local\Temp\EADC80F.exe C:\Users\Komp\AppData\Local\Temp\EADC918.exe C:\Users\Komp\AppData\Local\Temp\EADCA9E.exe C:\Users\Komp\AppData\Local\Temp\EADCABD.exe C:\Users\Komp\AppData\Local\Temp\EADCBB7.exe C:\Users\Komp\AppData\Local\Temp\EADCBB8.exe C:\Users\Komp\AppData\Local\Temp\EADCCC.exe C:\Users\Komp\AppData\Local\Temp\EADCD0E.exe C:\Users\Komp\AppData\Local\Temp\EADCE75.exe C:\Users\Komp\AppData\Local\Temp\EADCFAD.exe C:\Users\Komp\AppData\Local\Temp\EADD00A.exe C:\Users\Komp\AppData\Local\Temp\EADD087.exe C:\Users\Komp\AppData\Local\Temp\EADD152.exe C:\Users\Komp\AppData\Local\Temp\EADD171.exe C:\Users\Komp\AppData\Local\Temp\EADD27A.exe C:\Users\Komp\AppData\Local\Temp\EADD39.exe C:\Users\Komp\AppData\Local\Temp\EADD43F.exe C:\Users\Komp\AppData\Local\Temp\EADD6CE.exe C:\Users\Komp\AppData\Local\Temp\EADD75A.exe C:\Users\Komp\AppData\Local\Temp\EADD835.exe C:\Users\Komp\AppData\Local\Temp\EADD8C1.exe C:\Users\Komp\AppData\Local\Temp\EADD93E.exe C:\Users\Komp\AppData\Local\Temp\EADDC5.exe C:\Users\Komp\AppData\Local\Temp\EADDE3D.exe C:\Users\Komp\AppData\Local\Temp\EADDE4.exe C:\Users\Komp\AppData\Local\Temp\EADE188.exe C:\Users\Komp\AppData\Local\Temp\EADE1F5.exe C:\Users\Komp\AppData\Local\Temp\EADE214.exe C:\Users\Komp\AppData\Local\Temp\EADE32D.exe C:\Users\Komp\AppData\Local\Temp\EADE37B.exe C:\Users\Komp\AppData\Local\Temp\EADE455.exe C:\Users\Komp\AppData\Local\Temp\EADE465.exe C:\Users\Komp\AppData\Local\Temp\EADE61A.exe C:\Users\Komp\AppData\Local\Temp\EADE6E4.exe C:\Users\Komp\AppData\Local\Temp\EADE7AF.exe C:\Users\Komp\AppData\Local\Temp\EADE90.exe C:\Users\Komp\AppData\Local\Temp\EADE926.exe C:\Users\Komp\AppData\Local\Temp\EADEA4E.exe C:\Users\Komp\AppData\Local\Temp\EADEAAB.exe C:\Users\Komp\AppData\Local\Temp\EADEB19.exe C:\Users\Komp\AppData\Local\Temp\EADEBF3.exe C:\Users\Komp\AppData\Local\Temp\EADEDA8.exe C:\Users\Komp\AppData\Local\Temp\EADEE34.exe C:\Users\Komp\AppData\Local\Temp\EADEFDA.exe C:\Users\Komp\AppData\Local\Temp\EADF0E3.exe C:\Users\Komp\AppData\Local\Temp\EADF102.exe C:\Users\Komp\AppData\Local\Temp\EADF44C.exe C:\Users\Komp\AppData\Local\Temp\EADF44D.exe C:\Users\Komp\AppData\Local\Temp\EADF594.exe C:\Users\Komp\AppData\Local\Temp\EADF66F.exe C:\Users\Komp\AppData\Local\Temp\EADF72A.exe C:\Users\Komp\AppData\Local\Temp\EADF7B6.exe C:\Users\Komp\AppData\Local\Temp\EADF7E5.exe C:\Users\Komp\AppData\Local\Temp\EADFAF1.exe C:\Users\Komp\AppData\Local\Temp\EADFBAC.exe C:\Users\Komp\AppData\Local\Temp\EADFC38.exe C:\Users\Komp\AppData\Local\Temp\EADFC39.exe C:\Users\Komp\AppData\Local\Temp\EADFEB8.exe C:\Users\Komp\AppData\Local\Temp\EADFF25.exe C:\Users\Komp\AppData\Local\Temp\EADFF7.exe C:\Users\Komp\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe C:\Users\Komp\AppData\Local\Temp\ggdrive-menu.exe C:\Users\Komp\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\Komp\AppData\Local\Temp\HC2SetupPvt.exe C:\Users\Komp\AppData\Local\Temp\ICReinstall_CamStudio2.7r316-Setup(dobreprogramy.pl).exe C:\Users\Komp\AppData\Local\Temp\incredibar_installer.exe C:\Users\Komp\AppData\Local\Temp\installstats.exe C:\Users\Komp\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe C:\Users\Komp\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe C:\Users\Komp\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe C:\Users\Komp\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\Komp\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe C:\Users\Komp\AppData\Local\Temp\LemurLeap_sm.exe C:\Users\Komp\AppData\Local\Temp\LiveSupport_setup.exe C:\Users\Komp\AppData\Local\Temp\MSETUP4.EXE C:\Users\Komp\AppData\Local\Temp\pdf2rtfd.exe C:\Users\Komp\AppData\Local\Temp\RtkBtMnt.exe C:\Users\Komp\AppData\Local\Temp\setup.exe C:\Users\Komp\AppData\Local\Temp\setup_fsu_cid.exe C:\Users\Komp\AppData\Local\Temp\uninst1.exe C:\Users\Komp\AppData\Local\Temp\UpdateCheckerSetup.exe C:\Users\Tata\AppData\Local\Temp\RtkBtMnt.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\system32\winlogon.exe => MD5 is legit C:\Windows\system32\wininit.exe => MD5 is legit C:\Windows\system32\svchost.exe => MD5 is legit C:\Windows\system32\services.exe => MD5 is legit C:\Windows\system32\User32.dll => MD5 is legit C:\Windows\system32\userinit.exe => MD5 is legit C:\Windows\system32\rpcss.dll => MD5 is legit C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-02-12 09:22 ==================== End Of Log ============================