OTL logfile created on: 2014-05-18 15:00:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\POMOST\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,99 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,75% Memory free 3,84 Gb Paging File | 3,05 Gb Available in Paging File | 79,55% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 66,86 Gb Total Space | 28,52 Gb Free Space | 42,66% Space Free | Partition Type: NTFS Drive D: | 166,01 Gb Total Space | 157,68 Gb Free Space | 94,98% Space Free | Partition Type: NTFS Computer Name: KSIEGOWY | User Name: POMOST | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2014-05-18 14:09:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\POMOST\Moje dokumenty\Pobieranie\OTL.exe PRC - [2014-04-30 13:12:52 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2014-04-14 20:08:53 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2013-10-16 00:30:02 | 005,175,856 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe PRC - [2013-08-26 13:01:26 | 000,154,624 | ---- | M] (Unizeto Technologies SA) -- C:\Program Files\Unizeto\proCertum CardManager\cryptoCertumScanner.exe PRC - [2013-02-27 16:38:44 | 001,259,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe PRC - [2012-11-19 17:25:32 | 002,598,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe PRC - [2012-11-08 03:51:06 | 000,768,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe PRC - [2012-03-19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe PRC - [2012-02-14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe PRC - [2012-02-14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe PRC - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2010-01-09 13:39:48 | 000,413,696 | ---- | M] (Panasonic System Networks Co., Ltd.) -- C:\Program Files\Panasonic\Device Monitor\DMWakeup.exe PRC - [2010-01-09 13:37:20 | 000,049,152 | ---- | M] (Panasonic System Networks Co., Ltd.) -- C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE PRC - [2009-09-06 17:18:00 | 000,593,920 | ---- | M] ( ) -- C:\WINDOWS\system32\lmabcoms.exe PRC - [2008-05-09 16:50:42 | 001,773,568 | ---- | M] (TOSHIBA Inc.) -- C:\Program Files\TOSHIBA\Windows Utilities\Hotkey.exe PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-01-22 08:30:30 | 004,624,384 | ---- | M] () -- C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe PRC - [2007-10-25 15:11:18 | 000,413,696 | ---- | M] (Chicony) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe PRC - [2007-02-12 18:43:44 | 000,065,536 | ---- | M] (O2Micro International) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe PRC - [2005-04-12 09:34:18 | 000,065,536 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe PRC - [2004-02-26 09:15:58 | 000,069,632 | ---- | M] (Panasonic) -- C:\Program Files\Panasonic\TrapMonitor\Trapmnnt.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-05-08 13:22:24 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL MOD - [2014-04-30 13:12:51 | 003,578,992 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2014-02-17 08:50:48 | 000,212,992 | ---- | M] () -- c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8cd995f00848816e3ec49dc326e3d49b\System.ServiceProcess.ni.dll MOD - [2014-02-17 08:50:19 | 000,978,944 | ---- | M] () -- c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b6e70acd99dc22e29b7fc8f9ac340c4\System.Configuration.ni.dll MOD - [2014-02-17 08:05:11 | 005,462,016 | ---- | M] () -- c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7faf645dc46781225cb722edf9e1e738\System.Xml.ni.dll MOD - [2014-02-13 16:12:37 | 007,977,984 | ---- | M] () -- c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\4b0455ae94e3cecca4bb3ba8c96828c9\System.ni.dll MOD - [2014-02-13 16:12:24 | 011,497,984 | ---- | M] () -- c:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll MOD - [2010-12-11 10:00:00 | 003,704,320 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax MOD - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe MOD - [2009-08-11 22:18:28 | 000,497,664 | ---- | M] () -- C:\WINDOWS\system32\ac3filter.acm MOD - [2008-04-15 14:00:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\system32\tsd32.dll MOD - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2008-01-22 08:30:30 | 004,624,384 | ---- | M] () -- C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe -- (vToolbarUpdater18.1.0) SRV - [2014-05-14 12:58:20 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2014-04-30 13:12:51 | 000,118,896 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2014-04-14 20:08:53 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2013-10-16 00:30:02 | 005,175,856 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent) SRV - [2012-02-14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd) SRV - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) SRV - [2010-03-03 09:47:24 | 000,136,192 | ---- | M] (HP) [Auto | Stopped] -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service) SRV - [2010-01-09 13:37:20 | 000,049,152 | ---- | M] (Panasonic System Networks Co., Ltd.) [Auto | Running] -- C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE -- (Panasonic Local Printer Service) SRV - [2009-09-06 17:18:00 | 000,593,920 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\system32\lmabcoms.exe -- (lmab_device) SRV - [2007-02-12 18:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Running] -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe -- (o2flash) SRV - [2004-02-26 09:15:58 | 000,069,632 | ---- | M] (Panasonic) [Auto | Running] -- C:\Program Files\Panasonic\TrapMonitor\Trapmnnt.exe -- (Panasonic Trap Monitor Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\irenum.sys -- (IRENUM) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbdev.sys -- (hwusbdev) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\POMOST\USTAWI~1\Temp\fxtdqpow.sys -- (fxtdqpow) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbnet.sys -- (ewusbnet) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp) DRV - [2013-04-11 03:18:40 | 000,302,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2012-12-10 03:28:36 | 000,142,176 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver) DRV - [2012-11-08 03:49:26 | 000,250,080 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2012-04-19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX) DRV - [2012-03-21 11:51:28 | 000,017,932 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Gt680x.sys -- (GT680xNT) DRV - [2012-01-31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86) DRV - [2011-12-23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-12-23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim) DRV - [2011-12-23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter) DRV - [2010-05-18 18:23:28 | 000,017,432 | ---- | M] (Hewlett Packard) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hpfxbulk.sys -- (HPFXBULK) DRV - [2009-12-16 00:37:14 | 000,038,016 | ---- | M] (Advanced Card Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a38ccid.sys -- (A38CCID) DRV - [2009-12-15 03:18:46 | 000,037,632 | ---- | M] (Advanced Card Systems Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a38usb.sys -- (ACSSCR) DRV - [2009-11-12 14:48:56 | 000,005,504 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2008-11-17 12:53:16 | 003,636,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) DRV - [2008-04-15 14:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008-03-04 11:12:06 | 000,048,600 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\o2media.sys -- (O2MDRDR) DRV - [2008-02-01 14:18:56 | 000,732,160 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CHDAud.sys -- (CnxtHdAudAddService) DRV - [2007-12-28 08:21:00 | 000,285,952 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2007-12-17 09:15:20 | 000,018,432 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\UVCFTR_S.SYS -- (UVCFTR) DRV - [2007-11-01 18:26:36 | 000,989,696 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2007-11-01 18:25:32 | 000,211,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2007-11-01 18:25:22 | 000,731,520 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2007-07-16 15:29:44 | 000,020,504 | ---- | M] (Hewlett Packard) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hpfxfax.sys -- (HPFXFAX) DRV - [2007-05-29 11:01:50 | 000,006,912 | ---- | M] (TOSHIBA) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\QIOMem.sys -- (QIOMem) DRV - [2006-10-23 14:02:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfec.sys -- (tosrfec) DRV - [2006-06-14 12:53:00 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbccid.sys -- (USBCCID) DRV - [2006-01-12 13:51:18 | 000,031,872 | ---- | M] (Quanta Computer, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\qkbfiltr.sys -- (qkbfiltr) DRV - [2005-06-10 22:42:00 | 000,005,504 | ---- | M] (Quanta Computer Corp) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BoiHwSetup.sys -- (BoiHwsetup) DRV - [2005-05-05 11:57:38 | 000,007,936 | ---- | M] (Quanta Computer, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\qmofiltr.sys -- (qmofiltr) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{8241CB3B-1E83-4A9E-AE5B-6D2E4DB01A53}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=0affc9ba-14de-11e1-ab34-001e686ef4c7&q={searchTerms} IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{2E14D921-A49A-4D65-B36F-5F8F751815B2}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=U3&apn_dtid=OSJ000YYPL&apn_uid=EA7AC7C1-744D-4B38-B871-88207B6FA02C&apn_sauid=14C8EC48-69F1-4DD5-A62D-FEF67759E8F2 IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{3144968B-AF1C-4518-A810-68276614AAE0}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=616163&p={searchTerms} IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{5A0EF2D3-6570-4DE9-B339-5036FEC451EA}: "URL" = http://www.google.com/search?hl=pl&q={searchTerms} IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{8241CB3B-1E83-4A9E-AE5B-6D2E4DB01A53}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=0affc9ba-14de-11e1-ab34-001e686ef4c7&q={searchTerms} IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\..\SearchScopes\{B209833B-A999-4451-BAA5-079AB928C494}: "URL" = http://search.avg.com/route/?d=4ba33b22&v=6.10.6.4&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us IE - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:27.0.1 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2014-04-15 07:05:51 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 27.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014-04-30 13:12:39 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 27.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014-05-18 13:16:32 | 000,000,000 | ---D | M] [2010-06-18 08:09:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\POMOST\Dane aplikacji\Mozilla\Extensions [2014-05-07 07:34:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\POMOST\Dane aplikacji\Mozilla\Firefox\Profiles\3fj7nxmh.default-1399440330500\extensions [2014-04-30 13:12:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2014-04-30 13:12:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-04-30 13:12:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-04-30 13:12:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-04-30 13:12:40 | 000,000,000 | ---D | M] (ArcaBit Ext.) -- C:\Program Files\Mozilla Firefox\extensions\arcabit@www.arcabit.pl [2014-04-30 13:12:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2014-04-30 13:12:53 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: http://www.google.com/ CHR - plugin: Pierwszy u\u017cytkownik (Enabled) = default_plugin CHR - plugin: Error reading preferences file CHR - Extension: Google Wallet = C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [AutoRegisterCerts] C:\Program Files\Unizeto\proCertum CardManager\cryptoCertumScanner.exe (Unizeto Technologies SA) O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony) O4 - HKLM..\Run: [Panasonic Device Monitor Wakeup] C:\Program Files\Panasonic\Device Monitor\DMWakeup.exe (Panasonic System Networks Co., Ltd.) O4 - HKLM..\Run: [Toshiba Hotkey Utility] C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe (TOSHIBA Inc.) O4 - HKU\S-1-5-21-823518204-1229272821-1417001333-1003..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TOSHIBA) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-823518204-1229272821-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C8B096E1-02AB-4C76-BDC9-EF7A72E240DA}: DhcpNameServer = 10.0.0.2 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-19 12:25:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{131fdc78-4219-11df-a93a-001e686ef4c7}\Shell - "" = AutoRun O33 - MountPoints2\{131fdc78-4219-11df-a93a-001e686ef4c7}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{42aa9bfa-c21f-11df-a9bd-001e686ef4c7}\Shell\AutoRun\command - "" = F:\d9c.bat O33 - MountPoints2\{42aa9bfa-c21f-11df-a9bd-001e686ef4c7}\Shell\open\Command - "" = F:\d9c.bat O33 - MountPoints2\{54fc08c0-3bbf-11df-a92c-001e686ef4c7}\Shell\AutoRun\command - "" = F:\mi9al8rs.exe O33 - MountPoints2\{54fc08c0-3bbf-11df-a92c-001e686ef4c7}\Shell\open\Command - "" = F:\mi9al8rs.exe O33 - MountPoints2\{62f07c96-5748-11df-a957-001e686ef4c7}\Shell\AutoRun\command - "" = F:\yudald.bat O33 - MountPoints2\{62f07c96-5748-11df-a957-001e686ef4c7}\Shell\open\Command - "" = F:\yudald.bat O33 - MountPoints2\{789873d8-4216-11df-a936-001e686ef4c7}\Shell - "" = AutoRun O33 - MountPoints2\{789873d8-4216-11df-a936-001e686ef4c7}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{789873dc-4216-11df-a936-001e686ef4c7}\Shell - "" = AutoRun O33 - MountPoints2\{789873dc-4216-11df-a936-001e686ef4c7}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{ad1ddfa9-5d8c-11df-a95e-001e686ef4c7}\Shell\AutoRun\command - "" = F:\12gn6id2.exe O33 - MountPoints2\{ad1ddfa9-5d8c-11df-a95e-001e686ef4c7}\Shell\open\Command - "" = F:\12gn6id2.exe O33 - MountPoints2\{e670acaf-3342-11df-a915-cd392ea6461e}\Shell - "" = AutoRun O33 - MountPoints2\{e670acaf-3342-11df-a915-cd392ea6461e}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe O33 - MountPoints2\{ff584871-fea6-11df-a9f5-001e686ef4c7}\Shell - "" = AutoRun O33 - MountPoints2\{ff584871-fea6-11df-a9f5-001e686ef4c7}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2014-05-18 13:15:23 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2014-05-16 14:14:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\POMOST\Recent [2014-05-15 09:50:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2014-05-15 09:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\AVG [2014-05-15 09:16:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\POMOST\Dane aplikacji\AVG [2014-05-15 09:12:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG [2014-05-15 09:12:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} [2014-04-30 13:12:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2014-04-28 09:17:39 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2014-04-28 09:17:39 | 000,145,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2014-04-28 09:17:30 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2014-04-28 09:17:30 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2014-04-28 09:17:30 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2014-04-28 09:17:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Java [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2014-05-18 14:58:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2014-05-18 14:55:50 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{06A6553D-F4A8-4F61-8A56-055C027EF9FB}.job [2014-05-18 14:50:10 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-1229272821-1417001333-1003UA.job [2014-05-18 14:22:44 | 162,566,017 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2014-05-18 13:39:59 | 000,000,224 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job [2014-05-18 13:39:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2014-05-18 13:35:06 | 000,017,408 | ---- | M] () -- C:\WINDOWS\System32\rpcnetp.dll [2014-05-18 13:34:28 | 000,017,408 | ---- | M] () -- C:\WINDOWS\System32\rpcnetp.exe [2014-05-18 12:59:50 | 001,325,827 | ---- | M] () -- C:\Documents and Settings\POMOST\Pulpit\AdwCleaner.exe [2014-05-18 12:30:41 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2014-05-16 14:27:29 | 000,043,008 | ---- | M] (Absolute Software Corp.) -- C:\WINDOWS\System32\agremove.exe [2014-05-16 12:53:59 | 000,002,317 | ---- | M] () -- C:\Documents and Settings\POMOST\Pulpit\Google Chrome.lnk [2014-05-16 12:49:00 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-823518204-1229272821-1417001333-1003Core.job [2014-05-14 15:10:37 | 000,000,016 | ---- | M] () -- C:\WINDOWS\SCNDRVU.INI [2014-05-14 12:58:20 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2014-05-14 12:58:20 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2014-05-14 08:20:58 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjw.avm [2014-05-12 10:55:43 | 000,130,760 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm [2014-05-09 10:05:19 | 215,315,968 | ---- | M] () -- C:\IKwartał2014.bak [2014-05-08 15:00:38 | 000,000,218 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job [2014-05-07 06:52:28 | 000,358,544 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2014-05-06 07:31:13 | 000,008,414 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.ulf [2014-05-05 08:45:41 | 000,000,396 | ---- | M] () -- C:\WINDOWS\KmPcFax.INI [2014-05-05 07:31:54 | 000,221,035 | ---- | M] () -- C:\ADS_ERR.DBF [2014-04-30 10:12:53 | 006,022,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll [2014-04-28 09:16:34 | 000,644,332 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2014-04-28 09:16:34 | 000,577,248 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2014-04-28 09:16:34 | 000,139,596 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2014-04-28 09:16:34 | 000,112,278 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2014-04-22 11:14:44 | 000,011,828 | ---- | M] () -- C:\Documents and Settings\POMOST\Pulpit\dekretacja.odt [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\*.tmp files -> C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014-05-18 14:03:32 | 001,325,827 | ---- | C] () -- C:\Documents and Settings\POMOST\Pulpit\AdwCleaner.exe [2014-05-09 10:04:55 | 215,315,968 | ---- | C] () -- C:\IKwartał2014.bak [2014-05-09 07:15:55 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\rpcnetp.exe [2014-04-17 12:32:34 | 000,160,065 | ---- | C] () -- C:\WINDOWS\hppins08.dat.temp [2014-04-17 12:32:34 | 000,001,116 | ---- | C] () -- C:\WINDOWS\hppmdl08.dat.temp [2014-04-17 12:32:17 | 000,000,432 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini [2014-04-10 12:53:21 | 000,000,608 | -HS- | C] () -- C:\WINDOWS\System32\winzvprt5.sys [2014-04-10 12:48:16 | 000,160,024 | ---- | C] () -- C:\WINDOWS\System32\hppins08.dat [2014-03-10 11:00:41 | 000,000,363 | ---- | C] () -- C:\Documents and Settings\POMOST\eboiSigner.cfg [2014-02-17 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\usbr38.dll [2014-01-22 15:44:54 | 000,651,192 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2014-01-22 11:49:14 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\d3d9caps.dat [2014-01-15 08:13:03 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\rpcnetp.dll [2014-01-10 15:45:48 | 000,126,976 | ---- | C] () -- C:\WINDOWS\MSKeyStoreJNI.dll [2014-01-02 09:01:34 | 000,000,396 | ---- | C] () -- C:\WINDOWS\KmPcFax.INI [2013-12-24 14:57:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\AddMyNewPort.exe [2013-12-24 14:57:08 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\AddMyMonitor.exe [2013-12-24 14:56:07 | 000,000,042 | ---- | C] () -- C:\WINDOWS\iris.ini [2013-12-24 14:56:03 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\irisco32.dll [2013-12-24 14:53:35 | 000,000,258 | ---- | C] () -- C:\WINDOWS\PanaFLB881.ini [2013-11-22 17:28:49 | 000,000,069 | ---- | C] () -- C:\WINDOWS\sysstr32.ini [2012-08-06 10:57:45 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-11-06 17:51:26 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\POMOST\Dane aplikacji\Edg1yFHEEhjE [2010-03-19 11:14:42 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\POMOST\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [color=#E56717]========== ZeroAccess Check ==========[/color] [2010-03-22 08:34:04 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-15 14:00:00 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-15 14:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2011-02-02 12:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2011-04-12 09:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit [2014-05-15 09:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG [2014-05-09 07:16:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2011-06-14 11:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2014-04-15 07:01:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2014-05-16 14:31:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\firebird [2010-03-22 07:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-03-22 07:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2014-04-15 07:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2010-03-22 08:17:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2013-12-24 14:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panasonic [2013-11-22 17:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\StreamSoft [2010-07-16 12:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Zylom [2014-05-15 09:20:53 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} [2011-11-16 10:58:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\ArcaBit [2012-01-05 08:15:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\ArcaVirMicroScan [2014-05-15 09:16:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\AVG [2014-04-15 07:09:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\AVG2012 [2011-06-14 11:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\Canneverbe Limited [2010-03-22 07:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\Gadu-Gadu 10 [2010-03-19 12:42:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\GHISLER [2014-01-22 11:50:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\GofinDruki [2010-03-22 07:27:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\ipla [2012-07-12 07:49:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\JCommerce [2010-04-15 15:03:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\OmegaSys Generator WNA [2010-03-22 08:17:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\OpenFM [2012-01-11 15:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\OpenOffice.org [2013-12-27 11:59:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\Panasonic [2012-05-17 08:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\SmartDraw [2011-11-04 14:37:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\TeamViewer [2010-03-19 12:47:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\TMP [2010-03-19 13:00:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\toshiba [2014-04-15 07:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\POMOST\Dane aplikacji\TuneUp Software [color=#E56717]========== Purity Check ==========[/color] < End of report >