Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-03-2014 Ran by Administrator (administrator) on W-0EF15DAA53A44 on 05-03-2014 20:34:34 Running from C:\Documents and Settings\Administrator\Moje dokumenty Microsoft Windows XP Professional Dodatek Service Pack 2 (X86) OS Language: Polish Internet Explorer Version 6 Boot Mode: Safe Mode (with Networking) The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe () C:\Program Files\Opera\20.0.1387.64\opera_crashreporter.exe (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe (Opera Software) C:\Program Files\Opera\20.0.1387.64\opera.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [20026472 2011-01-21] (Realtek Semiconductor Corp.) HKLM\...\Run: [vProt] - C:\Program Files\AVG Secure Search\vprot.exe [2539544 2014-03-03] () HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM\...\Run: [PrivitizeVPN] - C:\Program Files\PrivitizeVPN\PrivitizeVPN.exe [196784 2013-07-10] (OOO Industry) HKLM\...\Run: [Windows] - C:\WINDOWS\services.exe [133915 2013-08-05] () HKLM\...\Run: [Aeria Ignite] - C:\Program Files\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment) HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe [761024 2013-12-13] () HKLM\...\Run: [fst_pl_31] - C:\Program Files\fst_pl_31\fst_pl_31.exe [3998152 2014-01-02] () HKLM\...\Run: [upfst_pl_31.exe] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fst_pl_31\upfst_pl_31.exe [3153904 2014-01-02] () HKLM\...\Run: [fst_pl_19] - C:\Program Files\fst_pl_19\fst_pl_19.exe [11671024 2013-12-18] () HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [fst_pl_73] - C:\Program Files\fst_pl_73\fst_pl_73.exe [3981824 2014-02-26] () HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [231768 2012-08-15] (SweetIM Technologies Ltd.) HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [115032 2012-10-04] (SweetIM Technologies Ltd.) HKLM\...\Run: [ApnUpdater] - "C:\Program Files\Ask.com\Updater\Updater.exe" HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,C:\Windupdt\winupdate.exe,C:\Windupdt\winupdate.exe Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.) Winlogon\Notify\WgaLogon: WgaLogon.dll [X] HKU\S-1-5-19\...\Policies\Explorer: [NofolderOptions] 0 HKU\S-1-5-20\...\Policies\Explorer: [NofolderOptions] 0 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [winupdater] - C:\Windupdt\winupdate.exe [675328 2013-05-02] () HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-23] (Google Inc.) HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [Akamai NetSession Interface] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.) HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [Steam] - D:\Gry\STeam\steam.exe [1821888 2014-02-25] (Valve Corporation) HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [Melodx] - "C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\melodx.com\Melodx\1.0.6.2\Melodx.exe" -c HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [uTorrent] - "D:\Gry\Toorent\uTorrent.exe" /MINIMIZED HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [se] - C:\Users\user\AppData\Roaming\SkypEmoticons\SE.exe /minimized HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.) HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [NextLive] - C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\Administrator\Dane aplikacji\newnext.me\nengine.dll",EntryPoint -m l HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Run: [DAEMON Tools Lite] - D:\Gry\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd) HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\system: [DisableChangePassword] 1 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\system: [DisableLockWorkStation] 1 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\system: [EnableLUA] 0 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\system: [DisableTaskMgr] 1 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\system: [DisableRegistryTools] 1 HKU\S-1-5-21-1935655697-789336058-682003330-500\...\Policies\Explorer: [NoChangeStartMenu] 1 Lsa: [Authentication Packages] msv1_0 nwprovau Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\wostock416.exe () Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178&type=default&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=66807&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&st=chrome&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=66807&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&st=chrome&q= HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=66807&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&st=chrome&q= URLSearchHook: HKCU - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll (Conduit Ltd.) StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=sc&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 SearchScopes: HKLM - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&q={searchTerms} SearchScopes: HKLM - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = ${SEARCH_URL}{searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?type=ds&ts=1388687579&from=wpm0102&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&q={searchTerms} SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&q={searchTerms} SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchesplace.info/?l=1&q={searchTerms}&pid=512&r=2013/08/02&hid=2071807166&lg=EN&cc=PL&unqvl=30 SearchScopes: HKLM - {FD7259DA-80E7-49F6-AAE9-CE3992BCB732} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={53C66E56-2CF7-11E2-BA65-001D92B82F58} SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&q={searchTerms} SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=5C0B001D92B82F58&affID=122303&tsp=4931 SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://searchab.com/?aff=7&uid=f2d87a7b-4de9-11e2-badb-001d92b82f58&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=cor&from=cor&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1373968689 SearchScopes: HKCU - {479B6259-4AB5-4D59-8A0B-F09535E85E87} URL = http://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={99712F41-812A-4002-B671-FA899F91B366}&mid=c9480f7d548a4bb9aa0257ebddf0cf21-06ce4fc639803a2e3563922518183d8e94088cb9&lang=pl&ds=ik011&pr=&d=2012-11-05 16:27:46&v=14.2.0.1&pid=avg&sg=0&sap=dsp&q={searchTerms} SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=5.6&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&q={searchTerms} SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=5.1&ts=1385314349140&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&q={searchTerms} SearchScopes: HKCU - {DCDBBF03-BC10-457D-911F-EFB0321D22BE} URL = ${SRCH_SCP_URL} SearchScopes: HKCU - {FD7259DA-80E7-49F6-AAE9-CE3992BCB732} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={53C66E56-2CF7-11E2-BA65-001D92B82F58} SearchScopes: HKCU - ŰźĆîZ§’2ąŢpv¨IÍá*X(Ž2s(ŰÎŔJşÔÓµť± vË°!×—(äĽ48иpatm6ęo^Mp`Ëő÷_iŁw˜ľ!„Áű†x˘8€ŮjŔ˙ţ ´Ń;áa´[¦†8 ş~ŹRŮxśňÜ8'Ł-)x­ä­ URL = BHO: ssaVeensehyare - {07D4629D-772B-655C-E0CF-778EA24A2850} - C:\Documents and Settings\All Users\Dane aplikacji\ssaVeensehyare\51fb64c0c0c07.dll () BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\bh\BabylonToolbar.dll No File BHO: saafe asaave - {3284638B-CDE4-4497-3488-DF4E0DBF4B49} - C:\Documents and Settings\All Users\Dane aplikacji\saafe asaave\51e14f522127c.dll () BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited) BHO: DealPly Shopping - {4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly) BHO: SearchNewTab - {588453CF-D5CB-EEFA-5EA1-5EBC7AB42CC6} - C:\Documents and Settings\All Users\Dane aplikacji\SearchNewTab\51d06ac8bf1f6.dll () BHO: SearchNewTab - {69E55BC2-2BC3-7413-34DF-C00893148AF8} - C:\Documents and Settings\All Users\Dane aplikacji\SearchNewTab\51e14f923128c.dll () BHO: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll (Conduit Ltd.) BHO: saafe savea - {75530E84-7BD8-2618-C4B5-05121D41D376} - C:\Documents and Settings\All Users\Dane aplikacji\saafe savea\51d06a9bbf88c.dll () BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.7.0_05\bin\ssv.dll (Oracle Corporation) BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.) BHO: SearchNewTab - {B7A86902-791C-7B66-399D-6B4927A4B9B0} - C:\Documents and Settings\All Users\Dane aplikacji\SearchNewTab\51fb64d649eb6.dll () BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com) BHO: HomeTab - {c5925fcd-25aa-4668-81bd-ed79feca424e} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.) BHO: Zoomex - {D997E923-3C29-C108-44B0-1B5737337216} - C:\Documents and Settings\All Users\Dane aplikacji\Zoomex\50dc598760835.dll () BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.7.0_05\bin\jp2ssv.dll (Oracle Corporation) BHO: holasearch Helper Object - {DFF9B2DA-EF99-4B26-83CB-7058299999D8} - C:\Program Files\holasearch\holasearch\1.8.16.16\bh\holasearch.dll (holasearch.com) BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) BHO: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals) Toolbar: HKLM - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\BabylonToolbarTlbr.dll No File Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search) Toolbar: HKLM - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll (Conduit Ltd.) Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com) Toolbar: HKLM - Holasearch Toolbar - {C510DFFB-0AFE-484C-BA40-CED5B74C4EEF} - C:\Program Files\holasearch\holasearch\1.8.16.16\holasearchTlbr.dll (holasearch.com) Toolbar: HKLM - HomeTab - {c5925fcd-25aa-4668-81bd-ed79feca424e} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - uTorrentControl_v2 Toolbar - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll (Conduit Ltd.) Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_25-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_25-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll (AVG Secure Search) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default FF user.js: detected! => C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\user.js FF NewTab: chrome://quick_start/content/index.html FF DefaultSearchEngine: delta-homes FF SearchEngineOrder.1: Web Search FF SearchEngineOrder.user_pref("browser.search.order.1S", "WebSearch");: user_pref("browser.search.order.1S", "WebSearch"); FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: delta-homes FF Homepage: about:home FF Keyword.URL: hxxp://search.certified-toolbar.com?si=66807&tid=6724&ver=5.1&ts=1385247600000.000008&tguid=66807-6724-1385314349140-6107A6B7726DE63181B51A679BCD62C5&st=chrome&q= FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll (AVG Technologies) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files\Java\jre1.7.0_05\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals) FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.2 - D:\Gry\VLC\npvlc.dll No File FF Plugin: Adobe Reader - D:\Gry\Adobe\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @powerchallenge.com/PowerLoader - C:\DOCUME~1\ADMINI~1\DANEAP~1\POWERC~1\nppowerloader.dll (Power Challenge Sweden AB) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\babylon.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\bingp.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\BitGuard.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\BrowserDefender.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\delta.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\holasearch.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\Web Search.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\searchplugins\WebSearch.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\delta-homes.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml FF Extension: DealPly Shopping - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\addon@dealplyshopping.com [2013-07-02] FF Extension: saafe asaave - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\ebme0nsr@jkqsetj-.net [2013-08-11] FF Extension: Delta Toolbar - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\ffxtlbr@delta.com [2013-02-02] FF Extension: HolaSearch - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\ffxtlbr@holasearch.com [2013-07-04] FF Extension: SearchNewTab - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\ooai@eiiu.edu [2013-06-30] FF Extension: SearchNewTab - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\oqwdd@jgskv.edu [2013-08-11] FF Extension: saafe savea - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\p4oeoy2eei@a-ysw.com [2013-06-30] FF Extension: Quick Start - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\quick_start@gmail.com [2014-02-26] FF Extension: SearchNewTab - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\s_zpsa@lgmeumsez.net [2013-08-11] FF Extension: ssaVeensehyare - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\wjk4pi@hiecbzw-.co.uk [2013-08-11] FF Extension: HomeTab - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\{487f499a-039d-416f-90d7-8ee8d015cb39} [2013-12-11] FF Extension: BonanzaDeals - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\Extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca} [2013-12-01] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\staged [2012-11-16] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} [2012-11-16] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [] FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2013-07-05] FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\17.3.0.49 FF Extension: AVG Security Toolbar - C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\17.3.0.49 [2014-01-08] FF HKLM\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\extensions\quick_start@gmail.com FF Extension: Quick Start - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\hpyjprjk.default\extensions\quick_start@gmail.com [2014-02-26] FF HKCU\...\Firefox\Extensions: [{b64982b1-d112-42b5-b1e4-d3867c4533f8}] - C:\Documents and Settings\All Users\Dane aplikacji\PC Performer Manager\2.3.811.154\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\FirefoxExtension Chrome: ======= CHR HomePage: hxxp://www.delta-homes.com/?type=hp&ts=1388676824&from=wpm0102&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX CHR RestoreOnStartup: "hxxp://www.delta-homes.com/?type=hp&ts=1388676824&from=wpm0102&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX" CHR DefaultSearchKeyword: delta-homes CHR DefaultSearchProvider: delta-homes CHR DefaultSearchURL: http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178&type=default&q={searchTerms} CHR DefaultNewTabURL: CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll No File CHR Plugin: (Babylon ToolBar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.8_0\BabylonChromeToolBar.dll No File CHR Plugin: (SweetIM GC Helper) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\mgHelperGCFB.dll No File CHR Plugin: (SweetIM GC Helper) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\mgHelperGC.dll No File CHR Plugin: (Application Manager) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll No File CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation) CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.)) CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation) CHR Plugin: (Adobe Acrobat) - D:\Gry\Adobe\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Power Challenge Loader) - C:\DOCUME~1\ADMINI~1\DANEAP~1\POWERC~1\nppowerloader.dll (Power Challenge Sweden AB) CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll (AVG Technologies) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File CHR Plugin: (Java(TM) Platform SE 7 U4) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.40.255) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (VLC Web Plugin) - D:\Gry\VLC\npvlc.dll No File CHR Extension: (saafe asaave) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\agpojlmnbocopmnkielpfhpbgpklbdnl [2013-07-13] CHR Extension: (SearchNewTab) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ajkbhdnnlhlglkapmginifmenajhngld [2013-06-30] CHR Extension: (Zoomex) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cmijbnhgpkmgonfdkkhmjhedjekcefep [2012-12-27] CHR Extension: (Destructoid Live) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cnppfnoedimbhcckdaadmihapdmjoeci [2013-05-02] CHR Extension: (SearchNewTab) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dacmjofgflakbppgnalnpniefcgjhekh [2013-08-02] CHR Extension: (Claro Toolbar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl [2012-11-25] CHR Extension: (Babylon Toolbar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb [2012-11-25] CHR Extension: (uTorrentControl_v2) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda [2012-12-24] CHR Extension: (JTV Live) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\eojkhidnkbolpneigllnelngopamnafa [2013-05-02] CHR Extension: (Delta Toolbar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2013-02-02] CHR Extension: (hola Toolbar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fagpjgjmoaccgkkpjeoinehnoaimnbla [2013-07-04] CHR Extension: (saafe savea) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\hkiijbiahnphklbkajeopehcpchcmnkj [2013-06-30] CHR Extension: (BonanzaDeals) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj [2013-12-01] CHR Extension: (Lightning Newtab) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo [2014-01-02] CHR Extension: (SweetIM for Facebook) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn [2012-11-25] CHR Extension: (SearchNewTab) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lgcmccieojjpogkfacnmonpcjigmjddf [2013-07-13] CHR Extension: (HomeTab) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mogghledidghdiflflogciceeebapeke [2013-11-24] CHR Extension: (AVG Security Toolbar) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2012-11-25] CHR Extension: (Twitch Now) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2013-05-02] CHR Extension: (ssaVeensehyare ) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\oeoeefclgmobgmnpbdblnkijfphnkpnp [2013-08-02] CHR Extension: (SweetPacks Chrome Extension) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2012-11-25] CHR Extension: (Extended Protection) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo [2014-02-26] CHR Extension: (DealPly Shopping) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn [2013-07-02] CHR Extension: (GoPhoto.it) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2012-11-25] CHR HKLM\...\Chrome\Extension: [cmijbnhgpkmgonfdkkhmjhedjekcefep] - C:\Documents and Settings\All Users\Dane aplikacji\Zoomex\cmijbnhgpkmgonfdkkhmjhedjekcefep.crx [2012-12-27] CHR HKLM\...\Chrome\Extension: [dcillohgikpecbmgioknapdpcjofaafl] - C:\Documents and Settings\Administrator\Dane aplikacji\Claro\claro.crx [2012-11-01] CHR HKLM\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Documents and Settings\Administrator\Dane aplikacji\BabSolution\CR\BabylonChrome1.crx [2013-01-02] CHR HKLM\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19] CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Documents and Settings\Administrator\Dane aplikacji\BabSolution\CR\Delta.crx [2013-07-02] CHR HKLM\...\Chrome\Extension: [fagpjgjmoaccgkkpjeoinehnoaimnbla] - C:\Documents and Settings\Administrator\Dane aplikacji\BabSolution\CR\hola.crx [2013-07-04] CHR HKLM\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2013-07-02] CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-01-02] CHR HKLM\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files\TornTV.com\torn10.crx [2014-01-02] CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-11-12] CHR HKLM\...\Chrome\Extension: [mogghledidghdiflflogciceeebapeke] - C:\Program Files\HomeTab\chrome\HomeTab.crx [2013-11-24] CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx [2014-01-08] CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx [2012-11-12] CHR HKLM\...\Chrome\Extension: [ogfjmhfnldnajmfaofeiaepghjenbgjo] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ep.crx [2014-02-26] CHR HKLM\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files\Gophoto.it\gophotoit14.crx [2012-07-31] CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19] CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=sc&from=wpm0226&uid=HitachiXHDS721616PLA380_PVC300Z2S6LDPJS6LDPJX&ts=1393410178 CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ========================== Services (Whitelisted) ================= S2 BitGuard; C:\Documents and Settings\All Users\Dane aplikacji\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3780064 2013-11-18] () S2 bonanzadealslive; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-12-01] (BonanzaDeals) S3 bonanzadealslivem; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-12-01] (BonanzaDeals) S2 DokanMounter; D:\Gry\SpeedyDrive\mounter.exe [25088 2012-02-11] () S2 IePluginService; C:\Documents and Settings\All Users\Dane aplikacji\IePluginService\PluginService.exe [508016 2014-02-26] (Cherished Technololgy LIMITED) S2 JavaQuickStarterService; C:\Program Files\Java\jre1.7.0_05\bin\jqs.exe [161776 2013-10-28] (Oracle Corporation) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [235696 2014-01-16] (McAfee, Inc.) S3 npggsvc; C:\WINDOWS\system32\GameMon.des [4066168 2011-04-25] (INCA Internet Co., Ltd.) S2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [64000 2004-08-03] (Microsoft Corporation) S2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2014-02-05] () S2 vToolbarUpdater17.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [1771544 2014-01-08] (AVG Secure Search) S2 winzipersvc; C:\Program Files\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.) S2 Wpm; C:\Documents and Settings\All Users\Dane aplikacji\WPM\wprotectmanager.exe [501904 2014-02-26] (Cherished Technololgy LIMITED) S2 Akamai; c:\program files\common files\akamai/netsession_win_e286960.dll [X] ==================== Drivers (Whitelisted) ==================== S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) S1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2006-07-02] (Advanced Micro Devices) S3 apf003; C:\WINDOWS\system32\apf003.sys [13232 2013-11-24] () S3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [101904 2010-11-17] (Advanced Micro Devices) R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-03-03] (AVG Technologies) S2 Dokan; C:\WINDOWS\system32\drivers\dokan.sys [91904 2012-02-11] (Windows (R) Win 7 DDK provider) R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-01-10] (Disc Soft Ltd) S3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2004-08-03] (Microsoft Corporation) S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation) R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2010-04-09] (NVIDIA Corporation) R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation) S2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88448 2004-08-03] (Microsoft Corporation) S2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-08-17] (Microsoft Corporation) S2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-08-17] (Microsoft Corporation) S3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2004-08-03] (Microsoft Corporation) S3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [4090920 2010-11-23] (Realtek Semiconductor Corp.) S3 s1039mdm; C:\WINDOWS\System32\DRIVERS\s1039mdm.sys [124016 2010-03-01] (MCCI Corporation) S3 SCREAMINGBDRIVER; C:\WINDOWS\System32\drivers\ScreamingBAudio.sys [34896 2010-07-01] (Screaming Bee LLC) S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [90112 2009-03-20] (MCCI) S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14976 2009-03-20] (MCCI Corporation) S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [121856 2009-03-20] (MCCI Corporation) S3 VCSVADHWSer; C:\WINDOWS\System32\DRIVERS\vcsvad.sys [17792 2008-12-26] (Avnex) S3 WinRing0_1_2_0; D:\Gry\Game Booster 3\Driver\WinRing0.sys [14416 2010-11-01] (OpenLibSys.org) R1 zmocoxek5; C:\WINDOWS\System32\drivers\zmocoxek5.sys [72704 2012-09-17] () S3 catchme; \??\C:\ComboFix\catchme.sys [X] S4 IntelIde; No ImagePath S3 vtany; \??\C:\WINDOWS\vtany.sys [X] S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-05 20:34 - 2014-03-05 20:34 - 00042329 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\FRST.txt 2014-03-05 20:33 - 2014-03-05 20:34 - 00000000 ____D () C:\FRST 2014-03-05 20:32 - 2014-03-05 20:32 - 01145344 _____ (Farbar) C:\Documents and Settings\Administrator\Moje dokumenty\FRST.exe 2014-03-05 20:32 - 2014-03-05 20:32 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Administrator\Moje dokumenty\OTL.exe 2014-03-05 20:32 - 2014-03-05 20:32 - 00259584 _____ (OldTimer Tools) C:\Documents and Settings\Administrator\Moje dokumenty\OTH.exe 2014-03-03 16:21 - 2014-03-03 20:13 - 00000000 __SHD () C:\WINDOWS\CSC 2014-03-03 15:59 - 2014-03-03 15:59 - 00094208 _____ () C:\WINDOWS\Minidump\Mini030314-01.dmp 2014-03-01 18:27 - 2014-03-01 18:27 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\remek.bmp 2014-03-01 10:53 - 2014-03-01 10:54 - 06932067 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Nodus 1.7.4.zip 2014-03-01 00:41 - 2014-03-01 00:41 - 00002193 _____ () C:\Documents and Settings\Administrator\Pulpit\Minecraft.lnk 2014-03-01 00:41 - 2014-03-01 00:41 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy\Minecraft 2014-03-01 00:19 - 2014-03-01 00:37 - 287423479 _____ (TeamExtreme ) C:\Documents and Settings\Administrator\Moje dokumenty\Minecraft 1.7.4.exe 2014-02-28 11:22 - 2014-02-28 11:22 - 00000000 ____D () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\uTorrentControl_v2 2014-02-28 11:22 - 2014-02-28 11:22 - 00000000 ____D () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Apple 2014-02-27 18:29 - 2014-02-27 18:29 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera 20.lnk 2014-02-27 18:29 - 2014-02-27 18:29 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera 20.lnk 2014-02-27 15:16 - 2014-02-27 15:16 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2014-02-27 15:16 - 2014-02-27 15:16 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2014-02-27 15:16 - 2014-02-27 15:16 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-02-27 09:43 - 2014-02-27 11:58 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Ad Muncher 2014-02-27 09:43 - 2014-02-27 09:43 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy\Ad Muncher 2014-02-27 09:40 - 2014-02-27 09:41 - 02152168 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\CodecPerformerSetup.exe 2014-02-27 09:39 - 2014-02-27 09:39 - 00016564 ____H () C:\WINDOWS\system32\mlfcache.dat 2014-02-27 09:37 - 2014-02-27 14:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Apple Computer 2014-02-27 09:37 - 2014-02-27 09:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Apple Computer 2014-02-27 09:35 - 2014-02-28 11:22 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job 2014-02-27 09:35 - 2014-02-27 09:35 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Apple 2014-02-27 09:34 - 2014-02-27 09:34 - 00001830 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Apple Software Update.lnk 2014-02-27 09:34 - 2014-02-27 09:34 - 00000000 ____D () C:\Program Files\Apple Software Update 2014-02-27 09:34 - 2014-02-27 09:34 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Apple 2014-02-27 09:32 - 2014-02-27 09:33 - 38494576 _____ (Apple Inc.) C:\Documents and Settings\Administrator\Moje dokumenty\SafariSetup.exe 2014-02-27 09:21 - 2014-03-03 08:29 - 00000262 _____ () C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job 2014-02-27 09:21 - 2014-02-28 08:52 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IObit 2014-02-27 09:21 - 2014-02-27 09:21 - 00000571 _____ () C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk 2014-02-27 09:21 - 2014-02-27 09:21 - 00000559 _____ () C:\Documents and Settings\All Users\Pulpit\Game Booster 3.lnk 2014-02-27 09:21 - 2014-02-27 09:21 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Game Booster 3 2014-02-27 09:19 - 2014-02-27 09:20 - 04359432 _____ (IObit ) C:\Documents and Settings\Administrator\Moje dokumenty\gamebooster.exe 2014-02-27 09:10 - 2014-02-27 09:10 - 00000000 ____D () C:\Program Files\fst_pl_73 2014-02-27 09:10 - 2014-02-27 09:10 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fst_pl_73 2014-02-26 19:41 - 2014-02-26 19:41 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\CS GO.bmp 2014-02-26 16:56 - 2014-02-26 16:56 - 00000076 _____ () C:\Documents and Settings\Administrator\Pulpit\Counter-Strike Global Offensive.url 2014-02-26 11:24 - 2014-03-02 13:10 - 00000000 ____D () C:\Program Files\WinZipper 2014-02-26 11:24 - 2014-03-01 10:55 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\WinZipper 2014-02-26 11:24 - 2014-02-26 11:24 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\WinZipper 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Program Files\SupTab 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\SupTab 2014-02-23 18:37 - 2014-02-23 18:42 - 12778064 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\_nfsmvpatch1.3.zip 2014-02-22 23:23 - 2014-02-22 23:23 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\flatout.bmp 2014-02-22 23:22 - 2014-02-22 23:23 - 00094444 _____ () C:\Documents and Settings\Administrator\Pulpit\flatout 2.rar 2014-02-22 23:18 - 2014-02-22 23:18 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\sadasd 2014-02-22 22:50 - 2014-02-22 23:00 - 254070262 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\turnajovymod_7_1.zip 2014-02-22 15:13 - 2014-02-22 15:13 - 00000968 _____ () C:\Documents and Settings\Administrator\Pulpit\Kontynuuj instalację ReForce 1.10.lnk 2014-02-22 15:13 - 2014-02-22 15:13 - 00000725 _____ () C:\Documents and Settings\All Users\Pulpit\RegClean Pro.lnk 2014-02-22 15:13 - 2014-02-22 15:13 - 00000000 ____D () C:\Program Files\RegClean Pro 2014-02-22 15:13 - 2014-02-22 15:13 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\RegClean Pro 2014-02-22 15:12 - 2014-02-22 15:12 - 00680520 _____ ( ) C:\Documents and Settings\Administrator\Moje dokumenty\reforce-1.10.exe 2014-02-22 12:11 - 2014-02-22 12:11 - 00778139 _____ () C:\Documents and Settings\Administrator\Pulpit\grzes.rar 2014-02-22 12:10 - 2014-02-22 12:11 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\grzes.bmp 2014-02-21 17:10 - 2014-02-21 17:10 - 00000348 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (3).zip 2014-02-21 16:44 - 2014-02-21 16:44 - 00000347 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (2).zip 2014-02-21 15:50 - 2014-02-21 15:51 - 00000075 _____ () C:\Documents and Settings\Administrator\Pulpit\Counter-Strike.url 2014-02-20 20:48 - 2014-02-20 20:49 - 00326514 _____ () C:\Documents and Settings\Administrator\Pulpit\reklama.rar 2014-02-20 20:48 - 2014-02-20 20:48 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\reklama.bmp 2014-02-20 15:48 - 2014-02-20 15:48 - 00333032 _____ (GreatSoft) C:\Documents and Settings\Administrator\Moje dokumenty\R.A.U. - RIKITIKI (CYWIL - ĆWIERĆFINAŁ ŻYWY RAP).exe 2014-02-20 14:47 - 2014-02-20 14:47 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\staty.bmp 2014-02-19 16:57 - 2014-02-19 16:59 - 09311437 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\gsaf.zip 2014-02-19 15:15 - 2014-02-19 15:15 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\fk.bmp 2014-02-18 20:10 - 2014-02-18 20:10 - 00001018 _____ () C:\Documents and Settings\Administrator\Pulpit\Kontynuuj instalację Hamachi.lnk 2014-02-18 20:09 - 2014-02-18 20:09 - 00643880 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Hamachi_Downloader (1).exe 2014-02-18 19:42 - 2014-02-18 19:42 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\blok.bmp 2014-02-18 19:00 - 2014-02-18 19:00 - 00000627 _____ () C:\Documents and Settings\Administrator\Pulpit\Giants Obywatel Kabuto.lnk 2014-02-18 16:17 - 2014-02-18 16:17 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\ub od creep.bmp 2014-02-17 16:31 - 2014-02-17 16:31 - 00000356 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (1).zip 2014-02-17 16:30 - 2014-02-17 16:30 - 00000344 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001.zip 2014-02-15 20:12 - 2014-02-15 20:13 - 02972431 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\cstrike (1).rar 2014-02-14 16:53 - 2014-02-14 16:53 - 00131405 _____ () C:\Documents and Settings\Administrator\Pulpit\zlodziej.rar 2014-02-13 17:54 - 2014-02-13 17:54 - 00001777 _____ () C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk 2014-02-13 17:54 - 2014-02-13 17:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus 2014-02-13 17:53 - 2014-02-13 17:53 - 00000000 ____D () C:\Program Files\McAfee Security Scan 2014-02-13 17:30 - 2014-02-13 17:30 - 08161620 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\2xSSY AVENGER KURWA MAC HAHA.zip 2014-02-12 19:51 - 2014-02-12 19:52 - 00365879 _____ () C:\Documents and Settings\Administrator\Pulpit\powod.rar 2014-02-07 12:01 - 2014-02-07 12:01 - 00018775 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\EA.zip 2014-02-07 11:51 - 2014-02-07 11:51 - 00912572 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Aim cod4.rar 2014-02-06 17:55 - 2014-02-06 17:55 - 00000000 ____D () C:\Documents and Settings\LocalService\Dane aplikacji\McAfee 2014-02-05 17:03 - 2014-02-05 17:04 - 01213263 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Crack do Cod4 MW.rar 2014-02-05 15:51 - 2014-02-23 22:07 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.xtr 2014-02-05 15:49 - 2014-02-05 15:50 - 00794408 _____ () C:\WINDOWS\system32\pbsvc.exe 2014-02-05 15:47 - 2014-02-05 15:47 - 00794408 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\pbsvc.exe 2014-02-05 15:42 - 2014-02-05 15:42 - 00276378 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Call of Duty - Multikeygen.rar 2014-02-05 15:40 - 2014-02-05 15:40 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\PunkBuster 2014-02-05 15:06 - 2014-02-05 15:10 - 296330688 _____ (Activision ) C:\Documents and Settings\Administrator\Moje dokumenty\CoD4MW-1.6-PatchSetup.exe 2014-02-05 15:04 - 2014-02-05 15:04 - 39968152 _____ (Activision ) C:\Documents and Settings\Administrator\Moje dokumenty\CoD4MW-1.6-1.7-PatchSetup.exe 2014-02-05 14:07 - 2014-02-05 14:07 - 00000391 _____ () C:\Documents and Settings\Administrator\Pulpit\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk 2014-02-05 14:07 - 2014-02-05 14:07 - 00000391 _____ () C:\Documents and Settings\Administrator\Pulpit\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk 2014-02-05 14:06 - 2014-02-23 22:11 - 00139832 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys 2014-02-05 14:06 - 2014-02-23 22:07 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.exe 2014-02-05 14:06 - 2014-02-23 21:47 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.ex0 2014-02-05 14:06 - 2014-02-05 15:52 - 00076888 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2014-02-05 14:06 - 2014-02-05 15:50 - 00139152 _____ () C:\Documents and Settings\Administrator\Dane aplikacji\PnkBstrK.sys 2014-02-05 13:43 - 2014-02-05 13:43 - 00114352 _____ (GameRanger Technologies) C:\Documents and Settings\Administrator\Moje dokumenty\GameRangerSetup (1).exe 2014-02-04 17:51 - 2014-02-04 17:51 - 00010047 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\FREE MINECRAFT PREMIUM ACCOUNT GENERATOR.odt 2014-02-04 17:47 - 2014-02-04 17:47 - 00675988 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Minecraft (1).exe 2014-02-04 17:12 - 2014-02-04 17:12 - 00000000 ____D () C:\Program Files\Common Files\Thraex Software 2014-02-04 16:29 - 2014-02-04 16:29 - 00000673 _____ () C:\Documents and Settings\Administrator\Pulpit\Jurasic Park.lnk 2014-02-04 16:28 - 2014-02-04 16:29 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\Jurrasic Park Operation Genesis 2014-02-04 16:24 - 2014-02-04 16:27 - 185509740 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Jurrasic Park Operation Genesis.rar ==================== One Month Modified Files and Folders ======= 2014-03-05 20:34 - 2014-03-05 20:34 - 00042329 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\FRST.txt 2014-03-05 20:34 - 2014-03-05 20:33 - 00000000 ____D () C:\FRST 2014-03-05 20:34 - 2011-10-14 15:10 - 00000000 ___RD () C:\Documents and Settings\Administrator\Moje dokumenty 2014-03-05 20:32 - 2014-03-05 20:32 - 01145344 _____ (Farbar) C:\Documents and Settings\Administrator\Moje dokumenty\FRST.exe 2014-03-05 20:32 - 2014-03-05 20:32 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Administrator\Moje dokumenty\OTL.exe 2014-03-05 20:32 - 2014-03-05 20:32 - 00259584 _____ (OldTimer Tools) C:\Documents and Settings\Administrator\Moje dokumenty\OTH.exe 2014-03-05 19:32 - 2011-12-01 20:36 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat 2014-03-05 19:29 - 2013-05-02 12:18 - 00000000 ____D () C:\WINDOWS\pss 2014-03-05 19:29 - 2011-10-14 16:46 - 00000327 __RSH () C:\boot.ini 2014-03-05 19:29 - 2011-10-14 15:10 - 00000188 ___SH () C:\Documents and Settings\Administrator\ntuser.ini 2014-03-05 19:29 - 2011-10-14 15:10 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart 2014-03-05 19:29 - 2011-10-14 15:01 - 01848508 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-05 19:29 - 2001-07-21 21:16 - 00000477 _____ () C:\WINDOWS\win.ini 2014-03-05 19:29 - 2001-07-21 21:15 - 00000246 _____ () C:\WINDOWS\system.ini 2014-03-05 19:18 - 2011-10-14 16:49 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-03-05 19:18 - 2011-10-14 16:49 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy 2014-03-05 19:18 - 2011-10-14 16:17 - 00000000 ____D () C:\Program Files\Opera 2014-03-05 19:14 - 2001-07-21 21:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl 2014-03-03 20:13 - 2014-03-03 16:21 - 00000000 __SHD () C:\WINDOWS\CSC 2014-03-03 16:01 - 2011-10-14 15:10 - 00000000 __SHD () C:\Documents and Settings\LocalService 2014-03-03 16:01 - 2011-10-14 15:10 - 00000000 ____D () C:\Documents and Settings\Administrator 2014-03-03 16:01 - 2011-10-14 15:05 - 00000000 __SHD () C:\Documents and Settings\NetworkService 2014-03-03 16:01 - 2011-10-14 15:00 - 00000000 ____D () C:\WINDOWS\Registration 2014-03-03 15:59 - 2014-03-03 15:59 - 00094208 _____ () C:\WINDOWS\Minidump\Mini030314-01.dmp 2014-03-03 08:30 - 2013-05-04 14:33 - 00000000 ____D () C:\WINDOWS\system32\cache 2014-03-03 08:30 - 2012-11-05 16:27 - 00042784 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys 2014-03-03 08:30 - 2012-11-05 16:27 - 00000000 ____D () C:\Program Files\AVG Secure Search 2014-03-03 08:29 - 2014-02-27 09:21 - 00000262 _____ () C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job 2014-03-03 08:29 - 2013-12-01 17:47 - 00000924 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job 2014-03-03 08:29 - 2013-07-02 08:34 - 00000290 _____ () C:\WINDOWS\Tasks\Express FilesUpdate.job 2014-03-03 08:29 - 2013-06-30 17:38 - 00000574 ____H () C:\WINDOWS\Tasks\schedule!567381930.job 2014-03-03 08:29 - 2013-05-02 18:25 - 00000282 _____ () C:\WINDOWS\Tasks\GoforFilesUpdate.job 2014-03-03 08:29 - 2013-02-02 09:01 - 00000332 _____ () C:\WINDOWS\Tasks\OFMLBXKXJ.job 2014-03-03 08:29 - 2012-12-27 15:03 - 00000522 ____H () C:\WINDOWS\Tasks\ZoomExUpdaterTask{98D57C3D-FE5E-4DE5-A7F2-C572C2A61934}.job 2014-03-03 08:29 - 2012-01-17 15:39 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-03-03 08:29 - 2012-01-17 15:39 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-03-03 08:29 - 2011-10-14 16:16 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-03 08:29 - 2011-10-14 15:10 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-02 17:05 - 2012-09-24 16:31 - 01405154 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1935655697-789336058-682003330-500-0.dat 2014-03-02 17:05 - 2012-09-23 14:10 - 00140506 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat 2014-03-02 17:05 - 2011-10-14 15:10 - 00032344 _____ () C:\WINDOWS\SchedLgU.Txt 2014-03-02 16:53 - 2011-10-29 12:45 - 00000456 ____H () C:\WINDOWS\Tasks\Norton Security Scan for Administrator.job 2014-03-02 16:52 - 2013-12-01 17:47 - 00000928 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job 2014-03-02 16:40 - 2011-10-14 16:15 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Skype 2014-03-02 16:39 - 2013-11-02 09:17 - 00002265 _____ () C:\Documents and Settings\All Users\Pulpit\Skype.lnk 2014-03-02 16:37 - 2011-10-14 16:16 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-02 16:35 - 2013-07-06 08:18 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-02 16:24 - 2013-07-09 10:27 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\.minecraft 2014-03-02 16:13 - 2014-01-10 15:32 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fst_pl_31 2014-03-02 13:10 - 2014-02-26 11:24 - 00000000 ____D () C:\Program Files\WinZipper 2014-03-02 13:10 - 2013-12-18 14:29 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\newnext.me 2014-03-02 01:50 - 2013-12-11 18:35 - 00000426 _____ () C:\WINDOWS\Tasks\SystemSockets.job 2014-03-02 01:50 - 2013-11-24 18:33 - 00000436 _____ () C:\WINDOWS\Tasks\Protected Search.job 2014-03-02 01:06 - 2013-11-24 18:33 - 00000422 _____ () C:\WINDOWS\Tasks\Browser Updater.job 2014-03-01 23:47 - 2013-05-02 15:32 - 00000288 _____ () C:\WINDOWS\Tasks\EPUpdater.job 2014-03-01 19:22 - 2013-11-23 18:14 - 00000772 _____ () C:\Documents and Settings\Administrator\Pulpit\WolfTeam-PL.lnk 2014-03-01 19:21 - 2011-10-14 15:10 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit 2014-03-01 18:27 - 2014-03-01 18:27 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\remek.bmp 2014-03-01 17:52 - 2011-10-14 15:10 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji 2014-03-01 10:55 - 2014-02-26 11:24 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\WinZipper 2014-03-01 10:54 - 2014-03-01 10:53 - 06932067 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Nodus 1.7.4.zip 2014-03-01 00:41 - 2014-03-01 00:41 - 00002193 _____ () C:\Documents and Settings\Administrator\Pulpit\Minecraft.lnk 2014-03-01 00:41 - 2014-03-01 00:41 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy\Minecraft 2014-03-01 00:41 - 2011-10-14 15:10 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy 2014-03-01 00:37 - 2014-03-01 00:19 - 287423479 _____ (TeamExtreme ) C:\Documents and Settings\Administrator\Moje dokumenty\Minecraft 1.7.4.exe 2014-03-01 00:12 - 2013-12-01 18:56 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\.cichyLauncher 2014-02-28 17:41 - 2013-08-11 11:29 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\TS3Client 2014-02-28 11:22 - 2014-02-28 11:22 - 00000000 ____D () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\uTorrentControl_v2 2014-02-28 11:22 - 2014-02-28 11:22 - 00000000 ____D () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Apple 2014-02-28 11:22 - 2014-02-27 09:35 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job 2014-02-28 11:22 - 2011-10-14 15:05 - 00000000 ___HD () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji 2014-02-28 08:52 - 2014-02-27 09:21 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IObit 2014-02-28 08:52 - 2014-01-09 15:59 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\Gry 2014-02-27 18:29 - 2014-02-27 18:29 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera 20.lnk 2014-02-27 18:29 - 2014-02-27 18:29 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera 20.lnk 2014-02-27 18:28 - 2011-10-14 16:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-02-27 18:27 - 2011-10-14 16:16 - 00000000 ____D () C:\Program Files\Google 2014-02-27 15:23 - 2011-10-14 16:47 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji 2014-02-27 15:16 - 2014-02-27 15:16 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2014-02-27 15:16 - 2014-02-27 15:16 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2014-02-27 15:16 - 2014-02-27 15:16 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-02-27 14:08 - 2014-02-27 09:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Apple Computer 2014-02-27 11:58 - 2014-02-27 09:43 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Ad Muncher 2014-02-27 09:43 - 2014-02-27 09:43 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy\Ad Muncher 2014-02-27 09:41 - 2014-02-27 09:40 - 02152168 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\CodecPerformerSetup.exe 2014-02-27 09:39 - 2014-02-27 09:39 - 00016564 ____H () C:\WINDOWS\system32\mlfcache.dat 2014-02-27 09:37 - 2014-02-27 09:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Apple Computer 2014-02-27 09:37 - 2011-10-14 15:10 - 00000000 __RHD () C:\Documents and Settings\Administrator\Dane aplikacji 2014-02-27 09:35 - 2014-02-27 09:35 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Apple 2014-02-27 09:34 - 2014-02-27 09:34 - 00001830 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Apple Software Update.lnk 2014-02-27 09:34 - 2014-02-27 09:34 - 00000000 ____D () C:\Program Files\Apple Software Update 2014-02-27 09:34 - 2014-02-27 09:34 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Apple 2014-02-27 09:33 - 2014-02-27 09:32 - 38494576 _____ (Apple Inc.) C:\Documents and Settings\Administrator\Moje dokumenty\SafariSetup.exe 2014-02-27 09:21 - 2014-02-27 09:21 - 00000571 _____ () C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk 2014-02-27 09:21 - 2014-02-27 09:21 - 00000559 _____ () C:\Documents and Settings\All Users\Pulpit\Game Booster 3.lnk 2014-02-27 09:21 - 2014-02-27 09:21 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Game Booster 3 2014-02-27 09:20 - 2014-02-27 09:19 - 04359432 _____ (IObit ) C:\Documents and Settings\Administrator\Moje dokumenty\gamebooster.exe 2014-02-27 09:10 - 2014-02-27 09:10 - 00000000 ____D () C:\Program Files\fst_pl_73 2014-02-27 09:10 - 2014-02-27 09:10 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fst_pl_73 2014-02-26 19:55 - 2013-12-20 15:02 - 00114583 _____ () C:\WINDOWS\setupapi.log 2014-02-26 19:55 - 2011-10-14 15:01 - 00000000 ____D () C:\WINDOWS\system32\DirectX 2014-02-26 19:41 - 2014-02-26 19:41 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\CS GO.bmp 2014-02-26 19:27 - 2011-10-14 16:47 - 00134872 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-02-26 16:56 - 2014-02-26 16:56 - 00000076 _____ () C:\Documents and Settings\Administrator\Pulpit\Counter-Strike Global Offensive.url 2014-02-26 11:24 - 2014-02-26 11:24 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\WinZipper 2014-02-26 11:24 - 2011-02-19 23:03 - 00421008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100.dll 2014-02-26 11:24 - 2011-02-19 00:40 - 00773776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100.dll 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Program Files\SupTab 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService 2014-02-26 11:23 - 2014-02-26 11:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\SupTab 2014-02-26 11:22 - 2014-01-02 16:32 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\WPM 2014-02-25 19:21 - 2014-01-14 16:59 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\tt 2014-02-24 17:28 - 2012-10-07 17:42 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\GG 2014-02-23 22:11 - 2014-02-05 14:06 - 00139832 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys 2014-02-23 22:07 - 2014-02-05 15:51 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.xtr 2014-02-23 22:07 - 2014-02-05 14:06 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.exe 2014-02-23 21:47 - 2014-02-05 14:06 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.ex0 2014-02-23 18:42 - 2014-02-23 18:37 - 12778064 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\_nfsmvpatch1.3.zip 2014-02-22 23:23 - 2014-02-22 23:23 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\flatout.bmp 2014-02-22 23:23 - 2014-02-22 23:22 - 00094444 _____ () C:\Documents and Settings\Administrator\Pulpit\flatout 2.rar 2014-02-22 23:18 - 2014-02-22 23:18 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\sadasd 2014-02-22 23:00 - 2014-02-22 22:50 - 254070262 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\turnajovymod_7_1.zip 2014-02-22 15:13 - 2014-02-22 15:13 - 00000968 _____ () C:\Documents and Settings\Administrator\Pulpit\Kontynuuj instalację ReForce 1.10.lnk 2014-02-22 15:13 - 2014-02-22 15:13 - 00000725 _____ () C:\Documents and Settings\All Users\Pulpit\RegClean Pro.lnk 2014-02-22 15:13 - 2014-02-22 15:13 - 00000000 ____D () C:\Program Files\RegClean Pro 2014-02-22 15:13 - 2014-02-22 15:13 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\RegClean Pro 2014-02-22 15:12 - 2014-02-22 15:12 - 00680520 _____ ( ) C:\Documents and Settings\Administrator\Moje dokumenty\reforce-1.10.exe 2014-02-22 12:11 - 2014-02-22 12:11 - 00778139 _____ () C:\Documents and Settings\Administrator\Pulpit\grzes.rar 2014-02-22 12:11 - 2014-02-22 12:10 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\grzes.bmp 2014-02-22 10:03 - 2013-12-18 19:01 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\HomeTab 2014-02-21 17:10 - 2014-02-21 17:10 - 00000348 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (3).zip 2014-02-21 16:44 - 2014-02-21 16:44 - 00000347 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (2).zip 2014-02-21 15:51 - 2014-02-21 15:50 - 00000075 _____ () C:\Documents and Settings\Administrator\Pulpit\Counter-Strike.url 2014-02-21 15:50 - 2012-11-16 18:15 - 00000000 ____D () C:\Documents and Settings\Administrator\Menu Start\Programy\Steam 2014-02-21 10:36 - 2013-07-06 08:18 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2014-02-21 10:36 - 2011-10-15 12:14 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2014-02-20 20:49 - 2014-02-20 20:48 - 00326514 _____ () C:\Documents and Settings\Administrator\Pulpit\reklama.rar 2014-02-20 20:48 - 2014-02-20 20:48 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\reklama.bmp 2014-02-20 15:48 - 2014-02-20 15:48 - 00333032 _____ (GreatSoft) C:\Documents and Settings\Administrator\Moje dokumenty\R.A.U. - RIKITIKI (CYWIL - ĆWIERĆFINAŁ ŻYWY RAP).exe 2014-02-20 14:47 - 2014-02-20 14:47 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\staty.bmp 2014-02-19 16:59 - 2014-02-19 16:57 - 09311437 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\gsaf.zip 2014-02-19 15:15 - 2014-02-19 15:15 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\fk.bmp 2014-02-18 20:10 - 2014-02-18 20:10 - 00001018 _____ () C:\Documents and Settings\Administrator\Pulpit\Kontynuuj instalację Hamachi.lnk 2014-02-18 20:09 - 2014-02-18 20:09 - 00643880 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Hamachi_Downloader (1).exe 2014-02-18 19:42 - 2014-02-18 19:42 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\blok.bmp 2014-02-18 19:41 - 2011-10-14 15:10 - 00000000 ___RD () C:\Documents and Settings\Administrator\Moje dokumenty\Moje obrazy 2014-02-18 19:00 - 2014-02-18 19:00 - 00000627 _____ () C:\Documents and Settings\Administrator\Pulpit\Giants Obywatel Kabuto.lnk 2014-02-18 16:17 - 2014-02-18 16:17 - 02986038 _____ () C:\Documents and Settings\Administrator\Pulpit\ub od creep.bmp 2014-02-17 16:31 - 2014-02-17 16:31 - 00000356 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001 (1).zip 2014-02-17 16:30 - 2014-02-17 16:30 - 00000344 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\player001.zip 2014-02-15 20:13 - 2014-02-15 20:12 - 02972431 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\cstrike (1).rar 2014-02-15 14:57 - 2013-12-21 10:01 - 00000157 _____ () C:\WINDOWS\setupact.log 2014-02-14 18:11 - 2013-08-10 16:19 - 00000567 _____ () C:\Documents and Settings\Administrator\Pulpit\Total Commander.lnk 2014-02-14 16:53 - 2014-02-14 16:53 - 00131405 _____ () C:\Documents and Settings\Administrator\Pulpit\zlodziej.rar 2014-02-13 19:06 - 2013-11-24 18:32 - 00000000 ____D () C:\Program Files\HomeTab 2014-02-13 17:54 - 2014-02-13 17:54 - 00001777 _____ () C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk 2014-02-13 17:54 - 2014-02-13 17:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus 2014-02-13 17:53 - 2014-02-13 17:53 - 00000000 ____D () C:\Program Files\McAfee Security Scan 2014-02-13 17:53 - 2011-10-14 16:49 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy\Autostart 2014-02-13 17:30 - 2014-02-13 17:30 - 08161620 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\2xSSY AVENGER KURWA MAC HAHA.zip 2014-02-12 19:52 - 2014-02-12 19:51 - 00365879 _____ () C:\Documents and Settings\Administrator\Pulpit\powod.rar 2014-02-07 12:01 - 2014-02-07 12:01 - 00018775 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\EA.zip 2014-02-07 11:51 - 2014-02-07 11:51 - 00912572 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Aim cod4.rar 2014-02-06 17:55 - 2014-02-06 17:55 - 00000000 ____D () C:\Documents and Settings\LocalService\Dane aplikacji\McAfee 2014-02-06 17:55 - 2011-10-14 15:10 - 00000000 ____D () C:\Documents and Settings\LocalService\Dane aplikacji 2014-02-05 17:04 - 2014-02-05 17:03 - 01213263 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Crack do Cod4 MW.rar 2014-02-05 15:52 - 2014-02-05 14:06 - 00076888 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2014-02-05 15:50 - 2014-02-05 15:49 - 00794408 _____ () C:\WINDOWS\system32\pbsvc.exe 2014-02-05 15:50 - 2014-02-05 14:06 - 00139152 _____ () C:\Documents and Settings\Administrator\Dane aplikacji\PnkBstrK.sys 2014-02-05 15:47 - 2014-02-05 15:47 - 00794408 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\pbsvc.exe 2014-02-05 15:42 - 2014-02-05 15:42 - 00276378 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Call of Duty - Multikeygen.rar 2014-02-05 15:40 - 2014-02-05 15:40 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\PunkBuster 2014-02-05 15:16 - 2011-10-15 10:17 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-02-05 15:10 - 2014-02-05 15:06 - 296330688 _____ (Activision ) C:\Documents and Settings\Administrator\Moje dokumenty\CoD4MW-1.6-PatchSetup.exe 2014-02-05 15:04 - 2014-02-05 15:04 - 39968152 _____ (Activision ) C:\Documents and Settings\Administrator\Moje dokumenty\CoD4MW-1.6-1.7-PatchSetup.exe 2014-02-05 14:07 - 2014-02-05 14:07 - 00000391 _____ () C:\Documents and Settings\Administrator\Pulpit\Call of Duty(R) 4 - Modern Warfare(TM) Wielu graczy.lnk 2014-02-05 14:07 - 2014-02-05 14:07 - 00000391 _____ () C:\Documents and Settings\Administrator\Pulpit\Call of Duty(R) 4 - Modern Warfare(TM) Jeden gracz.lnk 2014-02-05 14:07 - 2014-01-30 10:32 - 00118764 _____ () C:\WINDOWS\Directx.log 2014-02-05 14:06 - 2012-11-03 14:40 - 00000275 _____ () C:\WINDOWS\game.ini 2014-02-05 14:06 - 2012-11-03 14:40 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Activision 2014-02-05 14:06 - 2011-10-24 11:57 - 00000000 ____D () C:\WINDOWS\system32\LogFiles 2014-02-05 13:43 - 2014-02-05 13:43 - 00114352 _____ (GameRanger Technologies) C:\Documents and Settings\Administrator\Moje dokumenty\GameRangerSetup (1).exe 2014-02-04 17:51 - 2014-02-04 17:51 - 00010047 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\FREE MINECRAFT PREMIUM ACCOUNT GENERATOR.odt 2014-02-04 17:47 - 2014-02-04 17:47 - 00675988 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Minecraft (1).exe 2014-02-04 17:12 - 2014-02-04 17:12 - 00000000 ____D () C:\Program Files\Common Files\Thraex Software 2014-02-04 16:29 - 2014-02-04 16:29 - 00000673 _____ () C:\Documents and Settings\Administrator\Pulpit\Jurasic Park.lnk 2014-02-04 16:29 - 2014-02-04 16:28 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit\Jurrasic Park Operation Genesis 2014-02-04 16:27 - 2014-02-04 16:24 - 185509740 _____ () C:\Documents and Settings\Administrator\Moje dokumenty\Jurrasic Park Operation Genesis.rar 2014-02-04 06:36 - 2013-11-24 18:32 - 00033864 _____ () C:\WINDOWS\Launcher.exe Some content of TEMP: ==================== C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\8d230b67273fc539dddb9129c2d49472.dll C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\aiw7996046.EXE C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\bitool.dll C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\drm_dialogs.dll C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\drm_dyndata_7330004.dll C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\dxwebsetup.exe C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\ggdrive-menu.exe C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\ggdrive-overlay.exe C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\ICReinstall_Hamachi_Downloader (1).exe C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\ICReinstall_reforce-1.10.exe C:\Documents and Settings\Administrator\Ustawienia lokalne\temp\installstats.exe ==================== Bamital & volsnap Check ================= C:\WINDOWS\explorer.exe [2004-08-03 23:44] - [2004-08-03 23:44] - 1033728 ____A (Microsoft Corporation) 379098a96e6c165b659de7e4328010ea C:\WINDOWS\system32\winlogon.exe [2004-08-03 23:44] - [2004-08-03 23:44] - 0504832 ____A (Microsoft Corporation) 0344407089b08548d4feba62bb0f32d0 C:\WINDOWS\system32\svchost.exe [2004-08-03 23:44] - [2004-08-03 23:44] - 0014336 ____A (Microsoft Corporation) ba98327e90022dbd6ee76490e0622e2e C:\WINDOWS\system32\services.exe [2004-08-03 23:44] - [2009-02-09 11:10] - 0111104 ____A (Microsoft Corporation) ed4e5391100287b9eabf8f2cf4b42235 C:\WINDOWS\system32\User32.dll [2004-08-03 23:44] - [2004-08-03 23:44] - 0578560 ____A (Microsoft Corporation) 0c81764f50f32d376e6e4b9e9f4b01a0 C:\WINDOWS\system32\userinit.exe [2004-08-03 23:44] - [2004-08-03 23:44] - 0025088 ____A (Microsoft Corporation) bd768099b4c44aa631728cb74eb54396 C:\WINDOWS\system32\rpcss.dll [2004-08-03 23:44] - [2009-02-09 11:22] - 0399360 ____A (Microsoft Corporation) b5d78596effbeb82f3b86d9a002538e1 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected. C:\WINDOWS\system32\Drivers\volsnap.sys [2004-08-03 23:36] - [2004-08-03 23:36] - 0052864 ____A (Microsoft Corporation) ecd173739b8ec10a814cc18653df5a36 ==================== End Of Log ============================