OTL logfile created on: 2014-08-09 17:47:44 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = D:\Pobieraczkujemy
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,50 Gb Available Physical Memory | 75,26% Memory free
3,85 Gb Paging File | 3,52 Gb Available in Paging File | 91,50% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,04 Gb Total Space | 2,68 Gb Free Space | 14,06% Space Free | Partition Type: NTFS
Drive D: | 55,48 Gb Total Space | 33,31 Gb Free Space | 60,05% Space Free | Partition Type: NTFS
 
Computer Name: KRYSTYNA | User Name: Krysia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-08-09 17:44:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Pobieraczkujemy\OTL.exe
PRC - [2014-08-01 10:50:54 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-04-29 19:11:48 | 000,099,896 | ---- | M] (HP) -- C:\WINDOWS\system32\HPSIsvc.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014-08-01 10:50:51 | 003,800,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010-03-31 11:50:14 | 000,069,632 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\HPM1210PP.dll
MOD - [2010-03-31 11:50:12 | 000,167,936 | ---- | M] () -- C:\WINDOWS\system32\HPM1210LM.DLL
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Auto | Stopped] -- C:\Program Files\004\rqpbhevlkc32.exe run options=01100010040000000000000000000000 sourceguid=C78087A8-C960-4464-A618-3D351DF6C0D7 -- (rqpbhevlkc32)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\Program Files\C78087A8-C960-4464-A618-3D351DF6C0D7\eexvlcbkbu.exe -- (CouponDownloaderService)
SRV - [2014-07-09 19:27:53 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2010-04-29 19:11:48 | 000,099,896 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPSIsvc.exe -- (HPSIService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2014-07-25 16:03:52 | 000,047,488 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\netfilter.sys -- (netfilter)
DRV - [2011-08-10 12:56:46 | 000,067,968 | ---- | M] (ZTE) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\zte_cdc_acm.sys -- (zte_cdc_acm)
DRV - [2011-08-10 12:56:46 | 000,009,984 | ---- | M] (ZTE) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zte_cpo.sys -- (zte_cpo)
DRV - [2010-04-28 17:49:50 | 000,017,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mvusbews.sys -- (mvusbews)
DRV - [2009-12-15 04:46:26 | 000,024,192 | ---- | M] (Bytemobile, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\tcpipBM.sys -- (tcpipBM)
DRV - [2009-12-15 04:46:18 | 000,013,184 | ---- | M] (Bytemobile, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BMLoad.sys -- (BMLoad)
DRV - [2008-04-14 02:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2003-07-02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\VIAAGP1.SYS -- (viaagp1)
DRV - [1998-09-16 09:07:10 | 000,041,472 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SFC4.SYS -- (SFC4)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=180&d=20140603
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-789336058-57989841-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=180&d=20140603
IE - HKU\S-1-5-21-789336058-57989841-1417001333-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-789336058-57989841-1417001333-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-789336058-57989841-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/ig?hl=pl&aig=0&reason=1"
FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "https://www.google.pl/?gws_rd=ssl"
FF - prefs.js..extensions.enabledAddons: ff-bmboc%40bytemobile.com:4.2.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: admin@mp3j.pl:1.0
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2776682&SearchSource=2&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ff-bmboc@bytemobile.com: C:\Program Files\T-Mobile\InternetManager_Z\Bin\addon [2010-04-01 14:29:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014-08-01 10:50:30 | 000,000,000 | ---D | M]
 
[2014-04-12 15:29:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Extensions
[2014-08-06 08:56:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Firefox\Profiles\1uv1qt12.default\extensions
[2014-04-12 15:34:37 | 000,000,000 | ---D | M] (BrotherSoft Extreme Community Toolbar) -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Firefox\Profiles\1uv1qt12.default\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13}(2)
[2014-08-06 08:56:16 | 000,000,000 | ---D | M] ("Site Matcher") -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Firefox\Profiles\1uv1qt12.default\extensions\sitematcher_srcs@sitematcher_srcs.com
[2014-08-06 08:55:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Firefox\Profiles1uv1qt12.default\extensions
[2014-08-06 08:55:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Krysia\Dane aplikacji\Mozilla\Firefox\Profiles1uv1qt12.default\extensions\staged
[2014-08-01 10:50:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2014-08-01 10:50:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}
[2014-08-01 10:50:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-08-01 10:50:55 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010-04-01 14:29:34 | 000,000,000 | ---D | M] (Bytemobile Optimization Client) -- C:\PROGRAM FILES\T-MOBILE\INTERNETMANAGER_Z\BIN\ADDON
[2009-02-21 00:21:49 | 000,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
 
O1 HOSTS File: ([2001-10-26 18:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (CouponDownloader) - {c817d3d8-b9da-521d-971d-2c0a747ea697} - C:\Program Files\C78087A8-C960-4464-A618-3D351DF6C0D7\gohymlmtrh.dll File not found
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-789336058-57989841-1417001333-1003\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [EPSON Stylus C45 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I3T1.EXE /P23 "EPSON Stylus C45 Series" /O6 "USB001" /M "Stylus C45" File not found
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\mcserver.lnk = C:\Program Files\T-Mobile\InternetManager_Z\Bin\mcserver.exe (ZTE)
O4 - Startup: C:\Documents and Settings\Krysia\Menu Start\Programy\Autostart\tdklujfl.exe ()
O4 - Startup: C:\Documents and Settings\Krysia\Menu Start\Programy\Autostart\Watch.lnk = C:\WINDOWS\twain_32\A4CIS600\WATCH.exe (Common Group)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-789336058-57989841-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B4866D93-84BD-4078-B65E-128D24D92976}: NameServer = 213.158.199.1 213.158.199.5
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Program Files\lasykjvx\tdklujfl.exe) - C:\Program Files\lasykjvx\tdklujfl.exe ()
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-12-09 20:39:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{db8efbbc-09ed-11e4-b242-b1ab76518f6e}\Shell - "" = AutoRun
O33 - MountPoints2\{db8efbbc-09ed-11e4-b242-b1ab76518f6e}\Shell\AutoRun\command - "" = G:\SISetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-08-09 17:48:32 | 000,000,000 | ---D | C] -- C:\FRST
[2014-08-09 17:38:29 | 000,000,000 | ---D | C] -- C:\Program Files\lasykjvx
[2014-08-06 10:24:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Dane aplikacji\WinRAR
[2014-08-06 10:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Menu Start\Programy\WinRAR
[2014-08-06 10:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\WinRAR
[2014-08-06 09:00:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Dane aplikacji\FLV and Media Player
[2014-08-06 08:59:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Applian Technologies
[2014-08-06 08:55:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Dane aplikacji\SimilarAddon
[2014-08-06 08:49:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2014-08-06 08:38:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\IsoBuster
[2014-08-01 10:50:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014-07-25 16:03:52 | 000,047,488 | ---- | C] (NetFilterSDK.com) -- C:\WINDOWS\System32\drivers\netfilter.sys
[2014-07-21 11:30:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Pulpit\104_PANA
[2014-07-21 11:16:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Krysia\Pulpit\103_PANA
[2014-07-12 20:19:11 | 000,099,896 | ---- | C] (HP) -- C:\WINDOWS\System32\HPSIsvc.exe
[2014-07-12 20:19:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\HP
[2014-07-12 20:18:28 | 002,219,152 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltwvc15u.dll
[2014-07-12 20:18:28 | 001,711,248 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltclr15u.dll
[2014-07-12 20:18:28 | 001,035,408 | ---- | C] (The OpenSSL Project) -- C:\WINDOWS\System32\ltcry15u.dll
[2014-07-12 20:18:28 | 000,482,448 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltkrn15u.dll
[2014-07-12 20:18:28 | 000,445,584 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimgsfx15u.dll
[2014-07-12 20:18:28 | 000,212,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimgclr15u.dll
[2014-07-12 20:18:28 | 000,117,904 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltimgutl15u.dll
[2014-07-12 20:18:28 | 000,105,616 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltpnt15u.dll
[2014-07-12 20:18:28 | 000,068,752 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltpdg15u.dll
[2014-07-12 20:18:27 | 000,646,288 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltdlgfile15u.dll
[2014-07-12 20:18:27 | 000,384,144 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfcmp15u.dll
[2014-07-12 20:18:27 | 000,302,224 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimgcor15u.dll
[2014-07-12 20:18:27 | 000,261,264 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDIS15u.dll
[2014-07-12 20:18:27 | 000,257,168 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltefx15u.dll
[2014-07-12 20:18:27 | 000,232,592 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltdlgkrn15u.dll
[2014-07-12 20:18:27 | 000,216,208 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimgefx15u.dll
[2014-07-12 20:18:27 | 000,150,672 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltfil15u.dll
[2014-07-12 20:18:27 | 000,146,576 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lftif15u.dll
[2014-07-12 20:18:27 | 000,117,904 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lttwn15u.dll
[2014-07-12 20:18:27 | 000,097,424 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lffax15u.dll
[2014-07-12 20:18:27 | 000,064,656 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTCON15u.dll
[2014-07-12 20:18:27 | 000,038,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimgopt15u.dll
[2014-07-12 20:18:27 | 000,024,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfbmp15u.dll
[2014-07-12 20:18:01 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01007.dll
[2014-07-12 20:18:01 | 000,017,408 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\WINDOWS\System32\drivers\mvusbews.sys
[2014-07-12 20:17:28 | 000,316,416 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Difxapi.dll
[2014-07-12 20:17:28 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-08-09 17:38:23 | 000,104,807 | ---- | M] () -- C:\Documents and Settings\Krysia\Menu Start\Programy\Autostart\tdklujfl.exe
[2014-08-09 17:38:23 | 000,104,807 | ---- | M] () -- C:\WINDOWS\Explorermgr.exe
[2014-08-09 17:27:05 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014-08-09 09:54:28 | 000,021,828 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2014-08-09 09:54:20 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2014-08-09 09:54:20 | 000,000,224 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
[2014-08-09 09:54:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014-08-09 09:54:08 | 2146,750,464 | -HS- | M] () -- C:\hiberfil.sys
[2014-08-08 15:00:00 | 000,000,218 | ---- | M] () -- C:\WINDOWS\tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
[2014-08-06 08:59:33 | 000,000,549 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\FLV and Media Player.lnk
[2014-08-06 08:57:21 | 023,750,568 | ---- | M] () -- C:\Documents and Settings\Krysia\Moje dokumenty\FLVPlayerInstall.exe
[2014-08-05 19:29:23 | 000,000,463 | ---- | M] () -- C:\WINDOWS\System\CmiCnfg.ini
[2014-08-03 11:01:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014-07-26 19:30:59 | 000,045,566 | ---- | M] () -- C:\Documents and Settings\Krysia\Pulpit\Potwierdzenie_przyjecia_dyspozycji_rejestracji_zlecenia_2014-07-26_19-30-19.pdf
[2014-07-25 16:03:52 | 000,047,488 | ---- | M] (NetFilterSDK.com) -- C:\WINDOWS\System32\drivers\netfilter.sys
[2014-07-21 11:15:40 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\Krysia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-07-12 20:18:24 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-08-06 08:59:33 | 000,000,549 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\FLV and Media Player.lnk
[2014-08-06 08:57:21 | 023,750,568 | ---- | C] () -- C:\Documents and Settings\Krysia\Moje dokumenty\FLVPlayerInstall.exe
[2014-07-26 19:30:59 | 000,045,566 | ---- | C] () -- C:\Documents and Settings\Krysia\Pulpit\Potwierdzenie_przyjecia_dyspozycji_rejestracji_zlecenia_2014-07-26_19-30-19.pdf
[2014-07-12 20:18:34 | 001,167,360 | ---- | C] () -- C:\WINDOWS\System32\HPM1210SM.exe
[2014-07-12 20:18:34 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\HPM1210LM.DLL
[2014-07-12 20:18:24 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_mvusbews_01007.Wdf
[2014-07-12 20:18:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\HPM1210SMs.dll
[2014-07-12 20:18:02 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\m1130wia.dll
[2014-07-12 20:18:01 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\mvusbews.dll
[2014-07-12 20:17:28 | 000,284,672 | ---- | C] () -- C:\WINDOWS\System32\mvhlewsi.dll
[2014-06-11 19:56:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WATCH.INI
[2014-04-27 20:26:50 | 000,000,160 | ---- | C] () -- C:\WINDOWS\pixcache.ini
[2014-04-27 20:26:45 | 000,000,114 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2014-04-27 20:26:38 | 000,026,112 | ---- | C] () -- C:\WINDOWS\System32\PIXTHK32.DLL
[2014-04-27 20:26:38 | 000,012,126 | ---- | C] () -- C:\WINDOWS\System32\PIXPCZ.DLL
[2014-04-27 20:26:38 | 000,011,934 | ---- | C] () -- C:\WINDOWS\System32\PIXPNR.DLL
[2014-04-27 20:26:38 | 000,000,081 | ---- | C] () -- C:\WINDOWS\TB96.INI
[2014-04-27 20:26:14 | 000,001,942 | ---- | C] () -- C:\WINDOWS\ACROREAD.INI
[2014-04-27 20:26:14 | 000,001,901 | ---- | C] () -- C:\WINDOWS\ATM.INI
[2014-04-27 20:26:14 | 000,000,027 | ---- | C] () -- C:\WINDOWS\ACROGRAF.INI
[2014-04-27 20:26:07 | 000,041,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\SFC4.SYS
[2014-04-12 16:57:56 | 000,104,807 | ---- | C] () -- C:\WINDOWS\Explorermgr.exe
[2014-04-12 16:03:17 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2014-04-12 16:01:47 | 000,093,480 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014-04-12 16:00:40 | 000,233,472 | R--- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2014-04-12 16:00:40 | 000,028,672 | R--- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2014-04-12 16:00:24 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2014-04-12 16:00:22 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2014-04-12 16:00:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2014-04-12 16:00:11 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2014-04-12 16:00:11 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2014-04-12 16:00:11 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2014-04-12 15:47:10 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2014-04-12 14:50:34 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\Krysia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-04-12 14:46:06 | 000,000,182 | ---- | C] () -- C:\WINDOWS\System32\EBPPORT4.DAT
[2014-04-12 14:45:28 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CDEC45Euro.ini
[2014-04-12 14:40:09 | 000,072,192 | R--- | C] () -- C:\WINDOWS\System32\changeAcl.exe
[2014-04-12 14:25:33 | 000,003,030 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2014-04-12 14:25:32 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2014-04-12 14:20:38 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2014-04-12 14:13:58 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2014-02-25 05:30:38 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 21:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009-02-21 00:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit
[2010-01-27 18:11:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Gadu-Gadu 10
[2009-11-17 20:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\GetRightToGo
[2010-03-16 18:56:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IrfanView
[2009-08-15 22:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IVONA Player
[2009-07-09 16:32:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu
[2009-07-26 14:02:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\OpenFM
[2009-02-15 18:56:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\OpenOffice.org
[2009-08-14 15:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Opera
[2010-08-04 14:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\RobinsonCrusoe
[2010-03-31 15:35:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Xerox
[2014-04-12 14:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\UDL
[2014-08-06 15:12:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krysia\Dane aplikacji\FLV and Media Player
[2014-04-25 20:05:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krysia\Dane aplikacji\Foxit Software
[2014-04-12 14:40:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krysia\Dane aplikacji\InternetManager_Z
[2014-08-06 08:55:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Krysia\Dane aplikacji\SimilarAddon
[2013-08-27 19:59:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT.000\Dane aplikacji\Foxit Software
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2014-04-20 17:37:34 | 000,000,068 | ---- | M] ()(C:\Documents and Settings\Krysia\Pulpit\? Tajemnice długowiecznosci czyli jak dożyć 100-ki w pełnym zdrowiu. - YouTube.URL) -- C:\Documents and Settings\Krysia\Pulpit\▶ Tajemnice długowiecznosci czyli jak dożyć 100-ki w pełnym zdrowiu. - YouTube.URL
[2014-04-20 17:37:34 | 000,000,068 | ---- | C] ()(C:\Documents and Settings\Krysia\Pulpit\? Tajemnice długowiecznosci czyli jak dożyć 100-ki w pełnym zdrowiu. - YouTube.URL) -- C:\Documents and Settings\Krysia\Pulpit\▶ Tajemnice długowiecznosci czyli jak dożyć 100-ki w pełnym zdrowiu. - YouTube.URL

< End of report >